Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Chrome öffnet automatisch tabs (https://www.trojaner-board.de/170894-chrome-oeffnet-automatisch-tabs.html)

Panzer0312 09.09.2015 11:40
Chrome öffnet automatisch tabs
 
Hallo;
Immer kurze Zeit nach start des Rechners öffnen sich automatisch mehrere Seiten, die z.B. ein neues Browsergame, "sie haben xxx Euro gewonnen" etc., (und u.a. die uch bei schließen der Seite auch meistens nachfragen, ob du diese wirklich verlassen willst) beinhalten. Meistens bemerke ich diese erst nach einer weile, so dass es etw. dauert, bis sich alle Seiten schließen...

da ich des öfter AdwCleaner nützte, hänge ich die logfiles vom 5.9-9.9 von diesem als winrar datei an (hab sie hochgeladen, hab jedoch keinen blassen Schimmer, ob es geht, da es mein erster Beitrag ist und immer so ein(Anhang 75966) beim draufklicken kommt).

voraus noch: ich downloadete mir früher nicht ganz legale Dateien, löschte diese aber unverzüglich vor starten der von diesem Forum genannten Dateien.

Die Datei Gmer.exe öffnet sich bei mir, jedoch erscheint anschließend :"Gmer.exe funktioniert nicht mehr" obwohl ich den Anweisungen mit Netzwerktrennung und Ausschalten des Virenschutzprogrammes folgte.

Ich lud mir auch Bitdefender Antivirus free edition runter... jedoch sind dort die logs so unübersichtlich und nicht grad nötig (wie mir scheint), da sie fast nur aus Sperrungen von eigentlich 100% cleanen Spielen (wie z.B. lol oder rocket league beinhalten).

so... jetzt aber die logfiles von den von diesem Forum vorgeschriebenen Dateien:

-Frst.txt:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-09-2015
durchgeführt von Daniel Drechsler (Administrator) auf DANIELDRECHSLER (09-09-2015 11:35:58)
Gestartet von C:\Users\Daniel Drechsler\Desktop
Geladene Profile: Daniel Drechsler (Verfügbare Profile: Daniel Drechsler & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Hi-Rez Studios) S:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.4318\Agent.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.6119\Battle.net.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.25.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Blizzard Entertainment, Inc.) C:\Program Files (x86)\StarCraft II\Versions\Base32283\SC2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Spotify Web Helper] => C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2022968 2015-05-25] (Spotify Ltd)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Spotify] => C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\Spotify.exe [7298616 2015-05-25] (Spotify Ltd)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [GoogleChromeAutoLaunch_7B03E5BC46D3B6036BDF83C531BB1F93] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-06-05] (Google Inc.)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53735968 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
Startup: C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2015-06-01]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
GroupPolicy: Gruppenrichtline auf Chrome erkannt <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\..\Interfaces\{3088d3ca-bac6-4f72-a8e6-4b1ef398030d}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {35E2F16F-47B3-4433-87A7-5DE0FE5BCCD6} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3319741&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP50E52BA9-6187-4D65-9E6D-0E3FF275218D&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> {35E2F16F-47B3-4433-87A7-5DE0FE5BCCD6} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> {FC739C94-F44E-4EBA-9B70-87AB45DFD999} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-03] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-03] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-07] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-07] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-09-03] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-03] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-07] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-06-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-06-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3057496629-3853623942-2176478709-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-08-01] ()
FF SearchPlugin: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\searchplugins\google-images.xml [2014-10-07]
FF SearchPlugin: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\searchplugins\google-maps.xml [2014-10-07]
FF Extension: Cliqz Beta - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\Extensions\cliqz@cliqz.com.xpi [2014-11-03]
FF Extension: Kein Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\extensions\cliqz@cliqz.com
FF HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Firefox\Extensions: [{ba2c82b0-7fa8-11e4-b4a9-0800200c9a66}] - C:\Users\DANIEL~1\AppData\Local\Temp\search.xpi
FF Extension: Kein Name - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [nicht gefunden]

Chrome:
=======
CHR Profile: C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ghostery) - C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-09-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-29]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-06-01] (Adobe Systems) [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-23] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-17] (NVIDIA Corporation)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
R2 HiPatchService; S:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-02] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-02] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
S1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [Datei ist nicht signiert]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [Datei ist nicht signiert]
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-09] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-02] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
-Addition.txt:

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:07-09-2015
durchgeführt von Daniel Drechsler (2015-09-09 11:36:43)
Gestartet von C:\Users\Daniel Drechsler\Desktop
Windows 10 Home (X64) (2015-08-02 19:23:01)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3057496629-3853623942-2176478709-500 - Administrator - Disabled)
Daniel Drechsler (S-1-5-21-3057496629-3853623942-2176478709-1000 - Administrator - Enabled) => C:\Users\Daniel Drechsler
DefaultAccount (S-1-5-21-3057496629-3853623942-2176478709-503 - Limited - Disabled)
Gast (S-1-5-21-3057496629-3853623942-2176478709-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3057496629-3853623942-2176478709-1004 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

0 A.D. (HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\0 A.D.) (Version: r16411P-alpha - Wildfire Games)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Premiere Pro 2.0 (HKLM-x32\...\Adobe Premiere Pro 2.0) (Version: 2.000.000 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.12) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Armagetron Advanced 0.2.8.3.3.gcc (HKLM-x32\...\Armagetron Advanced) (Version: 0.2.8.3.3.gcc - Armagetron Advanced Team)
Banished (HKLM-x32\...\Steam App 242920) (Version:  - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
Bontago (HKLM-x32\...\Bontago) (Version: 1.0 - )
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC Universe Online Live (HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\SOE-DC Universe Online Live) (Version:  - Sony Online Entertainment)
Die Siedler 7 (HKLM-x32\...\{9C916142-C18C-429D-BFED-40094A7E0BEB}) (Version: 1.12.1396 - Ubisoft)
EaseUS Partition Master 9.2.2 (HKLM-x32\...\EaseUS Partition Master_is1) (Version:  - EaseUS)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Freeciv 2.5.1 (GTK+2 client) (HKLM-x32\...\Freeciv-2.5.1-gtk2) (Version:  - )
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GameRanger (HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\GameRanger) (Version:  - GameRanger Technologies)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Git version 1.9.5-preview20150319 (HKLM-x32\...\Git_is1) (Version: 1.9.5-preview20150319 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.23.0 - SaveSense) Hidden <==== ACHTUNG
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Guns And Robots (HKLM-x32\...\Guns And Robots) (Version: 1.0 - Mastheadstudios Ltd.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hotfix für Microsoft Visual C# 2010 Express - DEU (KB2635973) (HKLM-x32\...\{D81641E8-ABF1-3D07-803B-60E8FC619368}.KB2635973) (Version: 1 - Microsoft Corporation)
Java 7 Update 75 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417075F0}) (Version: 7.0.750 - Oracle)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java SE Development Kit 8 Update 51 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180510}) (Version: 8.0.510.16 - Oracle Corporation)
Java SE Development Kit 8 Update 60 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}) (Version: 15.0.1.415 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.1.415 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
Lollipop (HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\lollipop_03241720) (Version:  - Lollipop Network, S.L.) <==== ACHTUNG
Macromedia Extension Manager (HKLM-x32\...\{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}) (Version: 1.7.240 - Macromedia, Inc.)
Macromedia Flash 8 (HKLM-x32\...\{2BD5C305-1B27-4D41-B690-7A61172D2FEB}) (Version: 8.00.0000 - Macromedia)
Macromedia Flash 8 Video Encoder (HKLM-x32\...\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}) (Version: 1.00.0000 - Macromedia)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{8FB1B528-E260-451E-9B55-E9152F94B80B}) (Version: 3.2.3.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.1 Language Pack - DEU) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{E9089B6A-1FDE-47F3-8D29-175F5B7A0722}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C668416A-9213-4058-B7F2-01A42D85559D}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C# 2010 Express - DEU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{68ADAEAA-DABD-45C1-9CC2-F995407549CD}) (Version: 7601 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (HKLM-x32\...\XNA Game Studio 4.0) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (HKLM-x32\...\{0666E46E-A860-4353-BE6D-13AA72FABB57}) (Version: 1.3.0.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
My Program version 1.5 (HKLM-x32\...\My Program_is1) (Version: 1.5 - )
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.0 - Vitalwerks Internet Solutions LLC)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.2 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.44 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Update 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.5.12.11 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
OpenTTD 1.5.1 (HKLM-x32\...\OpenTTD) (Version: 1.5.1 - OpenTTD)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.101.0 - Overwolf Ltd.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
PlanetSide 2 (HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SecuROM Diagnostic Tool (HKLM-x32\...\SecuROM Diagnostic Tool) (Version:  - Sony DADC Austria)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.44 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - Firaxis Games)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.13.2948.1 - Hi-Rez Studios)
Spotify (HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Spotify) (Version: 1.0.5.186.ga9c24d6a - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Starpoint Gemini Gold Version 1.013 (HKLM-x32\...\{BE885917-A3C1-458F-AF3A-8AFF9FC2792C}_is1) (Version: 1.013 - Iceberg Interactive)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellarium 0.13.0 (HKLM-x32\...\Stellarium_is1) (Version: 0.13.0 - Stellarium team)
Stronghold (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.20.0000 - Firefly Studios)
Stronghold Crusader Extreme (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.20.0000 - Firefly Studios)
Stronghold Legends (HKLM-x32\...\{66A405D2-BA14-4594-BF36-B3B544F0754E}) (Version: 1.20.0000 - Firefly Studios)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Websuche (HKLM-x32\...\Websuche) (Version:  - Websuche)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

05-09-2015 17:30:41 Removed AVG 2015
07-09-2015 09:53:28 Installed Java SE Development Kit 8 Update 60

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0A2AE309-50C6-4F5A-B8B3-C9C990062EC1} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1A2AB3C9-31E7-4704-9173-DD720A3C59AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {1C5D2C13-24FD-4A7C-B6F0-CC27FCC52D02} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {21065CF7-3E21-4207-A99C-9929193C6DAE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {211AA455-CC13-4971-89A6-4EBF5E72B451} - System32\Tasks\{6F9DAE36-963A-4116-839A-7C2B8B25E2B4} => S:\Steam\Steam.exe
Task: {22FD127A-9F10-4A70-B9E4-975AAA1B2459} - System32\Tasks\{11C9E9AB-3592-4405-96AB-D435477047AA} => S:\Steam\Steam.exe
Task: {2362BF4E-E1F2-403F-90B2-47552734FB1E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {2BFA7CB5-37CA-4E0F-ABF7-92E86F3C7F33} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {385A4AE6-54B2-449C-BBC3-1FF3495B2524} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {3A1971E6-445D-40B1-B64F-ABE92F246FB6} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3B9D8315-6290-483A-86DC-6DEFD939ADF8} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {46037951-10C8-4527-80A4-07842A06833B} - System32\Tasks\{4612BEC1-7200-4209-BEE2-E16E3EFA3078} => Firefox.exe
Task: {488CDFEB-60FD-461B-BA99-8B124605D298} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {51E50417-9AA4-4F21-9617-B47C0484D9DC} - \SPBIW_UpdateTask_Time_323032323235373536312d50552d6c455a37575a417834 -> Keine Datei <==== ACHTUNG
Task: {559968EB-E6A3-469A-9004-4CF73859316E} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-07-09] (Dll-FIles.Com)
Task: {593BA41B-49FC-405E-83DD-9ECD04B56FF8} - System32\Tasks\{E563A360-D89C-466D-9034-9659C0AE0BFD} => Firefox.exe
Task: {59F50148-8F5B-47F2-9EF6-223F0EAA828D} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-19] (Overwolf LTD)
Task: {601047A4-506A-4505-8F33-A2EE814673AA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe
Task: {61825048-42AD-49CC-80F2-A827A6DDB8C5} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {684E0D55-CBF0-4FF1-8384-9AC7D4493380} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {685791F7-91C4-4693-9A9D-55898795065D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {6EAC50DC-F5D0-47E9-AC50-4F341373C0F7} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7C4FFBAA-6BC9-4D00-8892-8690F527E6BF} - System32\Tasks\{F315590C-BDDE-4554-A217-EAD390832427} => Firefox.exe
Task: {7F2B78C8-43B8-40E3-8E86-EA70233DE697} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {87C2F61A-BCC6-4CB9-8E7D-4C269F73454B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {8D76667F-CFE5-4AC1-B101-B8B8FA820851} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {8D88356E-7534-449A-8774-14E331E3645E} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-02] (Microsoft Corporation)
Task: {8E3FE785-9863-4382-AB92-F38019C6F8E3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-03] (Adobe Systems Incorporated)
Task: {8FE341FD-745F-4CBE-8704-E0F06793AFC0} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {8FE6AD8E-9749-44E5-B7E2-A94D8C6D4204} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {92530F13-A770-4F3E-86B2-D4118B17F5AB} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-07-09] (Dll-FIles.Com)
Task: {9797C0DD-C70C-4D26-9EF0-CED87A1BC5E4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {996A4FFB-6D95-4B66-98D5-6808D479B643} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {A2FD9D76-C16B-4AEB-B48F-BBDDB866F2C4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AED51CD9-AC4E-41EE-B2CE-308A80501A43} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {B0554FFA-FF9A-4827-BBD3-86E110C01F47} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe
Task: {B679F243-C559-4652-A97B-43AB93CE239A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {B9FA5963-4AF0-4CA3-A19B-B5D9CE898C22} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04] (Oracle Corporation)
Task: {BA86EB25-2B3B-40CE-ADC2-7C526BB642E7} - System32\Tasks\{5E2BA013-08A6-4D9C-950E-82F76FB90A09} => S:\Steam\Steam.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {C9D4C3CF-269E-4775-AF79-9313FF04D72E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {CD8C0FBF-F86D-46CB-A2BE-1648640D979E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {D26E4D60-F07E-42CA-BEF0-0203AF68A4A7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {D94FEBD5-C585-4AB6-8F3A-6590C72059D6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {DE7D9909-2EF8-42DA-9F35-5E9C4C13B283} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F1D3E1BE-83BF-43F3-906F-E789274F6E27} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-07-09] (Dll-FIles.Com)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-02 19:41 - 2015-08-02 19:41 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-05 17:39 - 2013-03-19 12:07 - 00696632 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2015-09-05 17:39 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2015-06-11 09:48 - 2015-06-11 09:48 - 00022528 _____ () C:\WINDOWS\System32\sst9clm.dll
2015-08-19 22:41 - 2015-08-11 10:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-31 09:09 - 2015-08-18 08:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-31 09:09 - 2015-08-18 08:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-29 15:23 - 2015-08-29 15:27 - 08241152 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.25.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-08-29 15:23 - 2015-08-29 15:27 - 02238976 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.25.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-08-15 13:20 - 2015-08-03 02:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-15 13:20 - 2015-08-03 02:14 - 00882688 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2015-08-19 22:41 - 2015-08-11 09:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-15 13:20 - 2015-08-03 02:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-02 19:41 - 2015-08-02 19:41 - 00577024 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll
2015-08-02 19:41 - 2015-08-02 19:41 - 00181248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00559616 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00643072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation.diagnostics\bin\NodeRT_Windows_Foundation_Diagnostics.node
2015-07-10 12:00 - 2015-07-10 17:45 - 00037888 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00796160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00961536 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00204288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00397824 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00074240 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.networking\bin\NodeRT_Windows_Networking.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00093696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.security.cryptography\bin\NodeRT_Windows_Security_Cryptography.node
2015-08-02 19:41 - 2015-08-02 19:41 - 00124416 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.cortana.pal\bin\NodeRT_Windows_Cortana_PAL.node
2015-08-15 13:20 - 2015-08-03 02:09 - 00928768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll
2015-07-29 11:51 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-09-05 19:45 - 2015-07-03 17:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-09-05 19:45 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-09-05 19:45 - 2015-08-19 21:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll
2015-09-05 19:45 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-09-05 19:45 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-09-05 19:45 - 2014-12-01 22:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-05 19:45 - 2014-12-01 22:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-05 19:45 - 2014-12-01 22:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-05 19:45 - 2014-12-01 22:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-05 19:45 - 2014-12-01 22:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-09-05 19:45 - 2015-08-19 21:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-09-05 19:45 - 2015-07-27 02:13 - 00171008 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-09-05 19:45 - 2015-07-03 17:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 26065408 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\libcef.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00739840 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\libGLESv2.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00909312 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\platforms\qwindows.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00130048 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\libEGL.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00020992 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\imageformats\qgif.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00021504 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\imageformats\qico.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00205312 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\imageformats\qjpeg.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00225792 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\imageformats\qmng.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00015872 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\imageformats\qsvg.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00312832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\imageformats\qtiff.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00010240 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\qml\QtQuick.2\qtquick2plugin.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00054272 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-08-31 08:56 - 2015-08-31 08:56 - 00010240 _____ () C:\Program Files (x86)\Battle.net\Battle.net.6119\qml\QtQml\Models.2\modelsplugin.dll
2014-06-11 17:12 - 2014-06-05 14:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-06-11 17:12 - 2014-06-05 14:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-06-11 17:12 - 2014-06-05 14:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-11 17:12 - 2014-06-05 14:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-11 17:12 - 2014-06-05 14:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
AlternateDataStreams: C:\Users\Daniel Drechsler\Desktop\Defogger.exe:BDU
AlternateDataStreams: C:\Users\Daniel Drechsler\Desktop\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Daniel Drechsler\Downloads\FRST64.exe:BDU

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\sony.com -> sony.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^Users^Daniel Drechsler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MyPC Backup.lnk => C:\Windows\pss\MyPC Backup.lnk.Startup
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe
MSCONFIG\startupreg: GoogleChromeAutoLaunch_7B03E5BC46D3B6036BDF83C531BB1F93 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Spotify => "C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: TeamSpeak 3 Client => "S:\Teamspeak\ts3client_win32.exe"
HKLM\...\StartupApproved\Run: => "Zune Launcher"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_7B03E5BC46D3B6036BDF83C531BB1F93"
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\StartupApproved\Run: => "Spotify Web Helper"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{5B1F185D-E3B6-4BFB-AA42-7484F93F64C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4DC4061D-0940-4D0C-8035-72DE91E07921}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C0B1D1AD-69A7-440F-8A57-EBD1A35393A7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{8E7BDC95-A3D0-455C-96D1-58DAD232BECF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{86163482-BE90-4BD6-9449-FC31D9DF4797}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{62CEE1C2-C944-4C46-A2DB-D94BBB303CB0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5DEAAF88-5D89-4850-A597-FFA1B5802849}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{79C82BAD-5964-4ED8-987A-92F37284726F}] => (Allow) C:\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{0B996297-C533-4D53-B391-6A3113C0D087}] => (Allow) C:\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{EFF33CF5-DD74-4271-9CCA-D6654C853BFF}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{D94A6532-1114-4413-BA51-2ED68C3A2047}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{1B951231-B490-4A4E-A9F5-C86B7D2D0C48}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{4D0E9958-9FA2-4C9D-A9E5-E648F95803B6}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{53093F94-CFAC-43F5-AF67-A529EB5D9E85}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{7DB0653E-AED9-4B54-99AB-0E05D61729BB}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{21F10167-EB18-48D0-B8BA-40C14C065914}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{8095FB93-DEA9-49E7-B200-0BB73FF1E68E}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{9D7C7BAF-A1F8-457C-A986-ECA8F2B92C05}] => (Allow) %ProgramFiles%\Zune\Zune.exe
FirewallRules: [{E0B5BBC5-C867-4F25-B2A8-D967FF024443}] => (Allow) C:\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{073AA5A9-5B20-45CB-894A-2A9583BA1874}] => (Allow) C:\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{02A8B562-2D79-4E16-9A1E-691C019DAEE1}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{2DFEEB3E-54D7-4A14-984F-35878DF7240D}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{969274B2-FCE0-4872-8E32-2B20BB2A49DE}] => (Allow) C:\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{8FDC6B98-F486-4B1B-8B10-7441FBE63958}] => (Allow) C:\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{8A71D80E-0418-4272-82D2-5B1FE9C0CAEA}] => (Allow) C:\Steam\steamapps\common\Planetary Annihilation\bin_x64\PA.exe
FirewallRules: [{2BCB2825-8E21-4FD4-A11E-38FB8D6D4CF7}] => (Allow) C:\Steam\steamapps\common\Planetary Annihilation\bin_x64\PA.exe
FirewallRules: [{39ACE070-9162-4295-BF7B-A4E6A2463D70}] => (Allow) S:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{7682C8E3-6065-4D64-BE1A-6F2C522DEAEF}] => (Allow) S:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{F261A1B8-56B9-486D-B7DC-BABB16ADF735}] => (Allow) S:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{FAEA328E-5FDE-439B-AE28-B7C49A4B3A59}] => (Allow) S:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{6874DCB6-15BE-422C-AB88-72FE5E03B342}] => (Allow) S:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{996B8403-8439-4DD0-BC8B-DA5DDCF1A32D}] => (Allow) S:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{F682E407-7D18-4F5E-AB1A-939DEB72A1C6}] => (Allow) S:\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{3E57ED7B-5D81-4F41-9C70-F22429CADAFF}] => (Allow) S:\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{42A46751-E6B4-4992-A863-4D915C34137D}] => (Allow) S:\Steam\SteamApps\common\War in the North\witn.exe
FirewallRules: [{95D1D9A5-5EE2-4AB6-A21C-0C51F5D7D78F}] => (Allow) S:\Steam\SteamApps\common\War in the North\witn.exe
FirewallRules: [{98274B42-B069-4CF7-A8A5-6AD2B3E5A279}] => (Allow) S:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{FA688739-C367-48AD-A0A5-2365B9EDFCC3}] => (Allow) S:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [UDP Query User{ECD8C06E-3785-4B94-9F0A-CB111E3BA2C3}C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{D5070B2E-6D18-4A39-B916-F7C6DB575121}C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DB132FBB-E220-4EEE-B08C-129D0515FE51}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [UDP Query User{57122940-0347-421E-A727-805EE9D1CFC9}C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{86A3EA84-7ABD-449D-AF9B-4C97B3FF7A85}C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel drechsler\appdata\roaming\spotify\spotify.exe
FirewallRules: [{AF5F4C55-87DA-4DF4-9892-0D89270247AB}] => (Allow) S:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{E4F7D03C-DA36-4AEA-A0D9-D68728085797}] => (Allow) S:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{1B64A4D3-9F1C-4483-AB29-D0EB748D687A}] => (Allow) S:\Steam\SteamApps\common\Tribes\Binaries\Win32\HirezBridge.exe
FirewallRules: [{B81D85CC-AE40-40AD-91AC-CF26718BC563}] => (Allow) S:\Steam\SteamApps\common\Tribes\Binaries\Win32\HirezBridge.exe
FirewallRules: [{A575E063-BFF8-4B34-B4CF-BE0EBAE36791}] => (Allow) S:\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{794DAEE5-3FEE-4192-B937-DD2FF704D348}] => (Allow) S:\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{D5A2CFD7-C4EE-4B5B-A24D-9856B70C3035}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{F7599277-DD1C-4643-94FB-DF62BB1AB152}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{082272F8-6636-41A1-B092-F32EA386878E}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{AC8A2460-39DB-472A-BECE-03143092147E}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{DC4B1ED4-D1CE-4312-B372-3704944D81DD}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{7BD26120-BE2D-40E2-816C-39F115849C1A}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{B7479389-B29D-4BA6-A9C8-714231A4FD8D}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{11A1F0E5-15E0-4992-BD69-579700C9D521}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{01C8AD8E-D05C-4D2D-96E3-BBCAD0C36409}] => (Allow) LPort=25565
FirewallRules: [{A47D26E0-EBBF-4705-9A7E-AC003D58A95E}] => (Allow) LPort=25565
FirewallRules: [{A4CC26C3-9E1E-4E55-89C2-ECECA6268AB5}] => (Allow) S:\Steam\bin\steamwebhelper.exe
FirewallRules: [{8EE89AEF-C86B-46E7-8FAA-46D9C539F244}] => (Allow) S:\Steam\bin\steamwebhelper.exe
FirewallRules: [{82147C6A-729B-4E49-ADF0-5F282D93C106}] => (Allow) S:\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{FC1663D8-B25A-4D9C-B3DD-91951CBDF158}] => (Allow) S:\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{F0BAC360-6EA9-45A7-B275-B45A4CEB818D}] => (Allow) S:\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{4A59F73E-CC3D-427B-A3F8-095428A11619}] => (Allow) S:\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{CAFAADA2-74DB-4567-AD93-5F1BDF278038}] => (Allow) S:\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{632E2278-6F06-4CBF-B22F-22227B973822}] => (Allow) S:\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{E40CFED6-EA14-4EB8-85EC-27AE2B019763}] => (Allow) S:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{8033730D-6BD7-404F-849A-25902F976CEE}] => (Allow) S:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{60D69460-13C9-4140-8ACC-A8B2167DDC7D}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{146C9EF4-1417-4EE5-AA15-DCFDD738DFBD}] => (Allow) S:\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{24149222-6632-464B-8FAA-F66F1C5471B8}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{35A1E607-7868-4E64-A7FD-86220A8DE2BD}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{065C96E7-3640-4F99-9F77-7FF9FC77CBA9}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{EC41AD16-DD86-4373-B4A3-3BE25B34379B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{38027432-7C8E-4594-9535-8645887D7137}] => (Allow) S:\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{B9C935A0-4255-480F-842A-33F97B3436B6}] => (Allow) S:\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{CD018EE1-A969-4D50-A543-DB20C447F01E}] => (Allow) S:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{F5065E7B-BCB1-4E40-B503-59E68C56820A}] => (Allow) S:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B397872B-0DD1-49FD-861A-E317E270B3EB}] => (Allow) S:\Steam\Steam.exe
FirewallRules: [{CFAFCD9B-DDCF-47B1-BD52-B2218F9B5406}] => (Allow) S:\Steam\Steam.exe
FirewallRules: [{FD80144D-3C00-41A3-AD28-B9F85336EB6E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{FBA594EF-AA1F-47F0-B105-2B9793BFAC9B}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{3F0052CF-7282-409F-865A-B9F1E87310DB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{5D8D9325-CE3B-4D0B-B972-E2B2F157AFD3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{52C0245B-E45C-4B60-96B1-50172ADE2520}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{D8D03A28-7F8C-4F64-A6F8-EF381A383495}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{D4E73103-429C-48B5-8075-4C544641A4E7}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{A1787FDA-5D3D-4E9F-8551-5C1DA71320A3}C:\users\daniel drechsler\desktop\stronghold crusader\stronghold crusader\stronghold crusader.exe] => (Allow) C:\users\daniel drechsler\desktop\stronghold crusader\stronghold crusader\stronghold crusader.exe
FirewallRules: [UDP Query User{A57177CA-C156-4159-8526-C56F81566097}C:\users\daniel drechsler\desktop\stronghold crusader\stronghold crusader\stronghold crusader.exe] => (Allow) C:\users\daniel drechsler\desktop\stronghold crusader\stronghold crusader\stronghold crusader.exe
FirewallRules: [TCP Query User{A9141064-2249-4427-8A72-3B1BE0D51FDF}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{624967AD-7ABB-4E42-86D3-72CDA088C4EA}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{CDE04B39-52DC-4331-9557-28F66A35CCA2}S:\ages of empire 3\age3.exe] => (Allow) S:\ages of empire 3\age3.exe
FirewallRules: [UDP Query User{084F4B87-0E42-4E98-9A18-2AE1E2CE885D}S:\ages of empire 3\age3.exe] => (Allow) S:\ages of empire 3\age3.exe
FirewallRules: [TCP Query User{3190DB29-DFD9-49BA-9A2B-0EC7F42CD985}C:\games\magicite\magicite.exe] => (Allow) C:\games\magicite\magicite.exe
FirewallRules: [UDP Query User{18E68C7F-02D3-4EA5-AB40-A4761042D4D9}C:\games\magicite\magicite.exe] => (Allow) C:\games\magicite\magicite.exe
FirewallRules: [TCP Query User{91B22566-B5CB-42DE-ADC8-FDB52984698D}C:\gog games\empire earth gold edition\empire earth\empire earth.exe] => (Allow) C:\gog games\empire earth gold edition\empire earth\empire earth.exe
FirewallRules: [UDP Query User{AF6FAC6E-2199-40CC-8F15-5EC1122C83B7}C:\gog games\empire earth gold edition\empire earth\empire earth.exe] => (Allow) C:\gog games\empire earth gold edition\empire earth\empire earth.exe
FirewallRules: [TCP Query User{86D07E47-10ED-4C7F-A34F-D7DDFD05BA58}C:\program files (x86)\gog.com\empire earth iii\ee3.exe] => (Allow) C:\program files (x86)\gog.com\empire earth iii\ee3.exe
FirewallRules: [UDP Query User{972EBD2E-2484-43E0-B872-8CD01E262D40}C:\program files (x86)\gog.com\empire earth iii\ee3.exe] => (Allow) C:\program files (x86)\gog.com\empire earth iii\ee3.exe
FirewallRules: [TCP Query User{72B104AD-30A4-4752-93F9-224250250C59}S:\warcraft 3\warcraft iii\war3.exe] => (Allow) S:\warcraft 3\warcraft iii\war3.exe
FirewallRules: [UDP Query User{1A6A5171-CC3C-4CC4-897B-99905E23CEF0}S:\warcraft 3\warcraft iii\war3.exe] => (Allow) S:\warcraft 3\warcraft iii\war3.exe
FirewallRules: [TCP Query User{FB2DFC11-1372-418D-9FA7-946ADF8803FF}C:\users\daniel drechsler\desktop\downloader_warcraft3_the_frozen_throne_dede.exe] => (Allow) C:\users\daniel drechsler\desktop\downloader_warcraft3_the_frozen_throne_dede.exe
FirewallRules: [UDP Query User{7BFCF497-FBE0-42A0-9F90-7930EAE10912}C:\users\daniel drechsler\desktop\downloader_warcraft3_the_frozen_throne_dede.exe] => (Allow) C:\users\daniel drechsler\desktop\downloader_warcraft3_the_frozen_throne_dede.exe
FirewallRules: [TCP Query User{A2FB5337-9F7F-4A25-9F7D-86E8EF666652}S:\warcraft 3\warcraft iii\lancraft.exe] => (Allow) S:\warcraft 3\warcraft iii\lancraft.exe
FirewallRules: [UDP Query User{6BF0CAEF-FD48-4E10-A163-9FBC32559083}S:\warcraft 3\warcraft iii\lancraft.exe] => (Allow) S:\warcraft 3\warcraft iii\lancraft.exe
FirewallRules: [{32403F6B-E472-4CB4-A8AF-C1D6B6CC02A0}] => (Allow) C:\steamcmd\steamcmd.exe
FirewallRules: [{6C252ED7-0DDA-40CC-8B96-26580976D16C}] => (Allow) C:\steamcmd\steamcmd.exe
FirewallRules: [{974D2E84-4473-4842-91A0-10ED26CA48F3}] => (Allow) C:\steamcmd\steamcmd.exe
FirewallRules: [{525EBE14-27DB-4CC0-9006-2B8BA87F03A3}] => (Allow) C:\steamcmd\steamcmd.exe
FirewallRules: [TCP Query User{6D6A5438-64C8-48B0-8828-652434BCC050}C:\my_garrrysmod_server\srcds.exe] => (Allow) C:\my_garrrysmod_server\srcds.exe
FirewallRules: [UDP Query User{63E2A734-6F99-4569-823E-D572CC4E8001}C:\my_garrrysmod_server\srcds.exe] => (Allow) C:\my_garrrysmod_server\srcds.exe
FirewallRules: [{9B4B4618-D69D-4C44-B51B-ED1845B275DE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [TCP Query User{FA8665FA-B00D-47DF-AF73-9CCFE87134D3}C:\program files (x86)\armagetron advanced\armagetronad.exe] => (Allow) C:\program files (x86)\armagetron advanced\armagetronad.exe
FirewallRules: [UDP Query User{F92BD15E-EE05-4A8C-8328-CAF1B15A8180}C:\program files (x86)\armagetron advanced\armagetronad.exe] => (Allow) C:\program files (x86)\armagetron advanced\armagetronad.exe
FirewallRules: [{F699C575-B42F-4649-94D4-25B9D8AFF5AA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{D5CCB936-F212-41B3-AB03-633F582DD54C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{DF00E48A-2353-4A3C-8F88-6A525F3840DD}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [TCP Query User{E54FFA71-3074-4CF2-921E-647A00CEEB84}C:\program files\openttd\openttd.exe] => (Allow) C:\program files\openttd\openttd.exe
FirewallRules: [UDP Query User{608C89DD-67D7-4D35-8F04-A4CA95A9C128}C:\program files\openttd\openttd.exe] => (Allow) C:\program files\openttd\openttd.exe
FirewallRules: [TCP Query User{7749ED06-86AF-4DEA-BFD4-E0549411B98A}C:\program files (x86)\freeciv-2.5.1-gtk2\freeciv-gtk2.exe] => (Allow) C:\program files (x86)\freeciv-2.5.1-gtk2\freeciv-gtk2.exe
FirewallRules: [UDP Query User{09C36022-38A3-4AFA-A3DA-D4C46F469687}C:\program files (x86)\freeciv-2.5.1-gtk2\freeciv-gtk2.exe] => (Allow) C:\program files (x86)\freeciv-2.5.1-gtk2\freeciv-gtk2.exe
FirewallRules: [TCP Query User{36C8B481-44F2-410B-9F5B-778AE748948F}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{5D28A79D-21BD-4BDC-A3FB-45DCCB91EB37}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [TCP Query User{1A65CD96-4C5C-4FE0-905B-2B72C168A658}C:\users\daniel drechsler\downloads\age of empires 2\age of empires ii\empires2.exe] => (Allow) C:\users\daniel drechsler\downloads\age of empires 2\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{E02418E4-B29B-473A-A790-A62E2B906168}C:\users\daniel drechsler\downloads\age of empires 2\age of empires ii\empires2.exe] => (Allow) C:\users\daniel drechsler\downloads\age of empires 2\age of empires ii\empires2.exe
FirewallRules: [{FCE11C87-EB32-4647-88CD-2BA2B433E07D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{799C6217-1846-4615-9274-8A6680FEDBDB}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [TCP Query User{F146E16B-EF20-46DD-A93B-D2FFF8C8308C}C:\users\daniel drechsler\desktop\client.exe] => (Allow) C:\users\daniel drechsler\desktop\client.exe
FirewallRules: [UDP Query User{CFE5F4C0-C8A6-489A-9277-83607A412B43}C:\users\daniel drechsler\desktop\client.exe] => (Allow) C:\users\daniel drechsler\desktop\client.exe
FirewallRules: [TCP Query User{D96854BB-3E12-4CA8-B82E-78B6997041A9}C:\games\risk of rain v1.2.2\ror_gms_controller.exe] => (Allow) C:\games\risk of rain v1.2.2\ror_gms_controller.exe
FirewallRules: [UDP Query User{7876D323-0EF4-4D4F-834E-2BA3AF8425F6}C:\games\risk of rain v1.2.2\ror_gms_controller.exe] => (Allow) C:\games\risk of rain v1.2.2\ror_gms_controller.exe
FirewallRules: [{3CE51D13-AB9C-4F27-8F76-438B99C5BFBA}] => (Allow) C:\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{18E363EE-F05D-4188-B869-688192290A4A}] => (Allow) C:\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{0ADF7366-20F8-4D2F-9C63-3283B762D876}S:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) S:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{9119AE4F-DCC9-46ED-A9DB-A79A75FE4EBE}S:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) S:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{593847BB-BD3E-4397-AEC8-AA461492A125}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{3A68833E-4F3F-4E13-AAE3-6AAE6EA39605}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{8D7798E9-8600-47FA-8318-ED5BD5DD1210}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [UDP Query User{3367B99D-6400-43F8-9E99-1D67B8A5A809}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{22003875-2A0C-47D8-AB0B-5DB26F0180E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5C9DC0B6-480A-4CEB-8968-C2A7E9969A98}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{231C796E-315B-40A7-B428-6C11C98D0619}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D3AA38E0-E8A7-47B9-9EB8-1D1C9F373F28}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{915EE4D2-4C6E-4887-A4CA-82DBDC46EDF5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{48794D66-A00B-49BC-8967-946DA4DB197C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{0CB267C7-800D-4E4B-955F-E4E5F2A8A5C3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F2FFDBF8-AF88-485F-9CF6-0C46D12F8583}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{22737DCE-FD69-4D27-90A2-04588EA2731F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{88CC705A-437D-4B44-B62C-E6CD0389DF58}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{85C88DA4-589E-45BE-AF80-2EB0EA118338}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{A73C90DB-086A-48D9-A4C7-B1D1A21E59F8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E6E40661-8DD4-4D71-9A42-32917DB615A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{FA6CE4E4-38D1-4391-A700-C140ADB976B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{50D66C09-31EE-44F6-B82B-B204FC7EDB9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{8341E1AE-AE94-4FB3-AA1E-37C0ADCB9112}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{4D0EF267-EF95-4341-ADFB-E02C70D7EEB0}C:\program files (x86)\guns and robots\updater\garupdater.exe] => (Allow) C:\program files (x86)\guns and robots\updater\garupdater.exe
FirewallRules: [UDP Query User{6D295B13-4C54-491F-A3BF-E82B6F6A2027}C:\program files (x86)\guns and robots\updater\garupdater.exe] => (Allow) C:\program files (x86)\guns and robots\updater\garupdater.exe
FirewallRules: [{71925EF6-45B9-4D8D-9CD3-5E6D7471E274}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{71F2848B-D457-4F44-96A0-4E2B68CE4A88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{BCC22B3E-ECA9-4114-A5E5-CEDC06337AEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{82045B24-0626-4376-997C-008FB27B748E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{F2F218EA-6ADC-4CB8-9673-70114C66FE61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{889350B4-1DF4-4875-BF4D-79C1EFB94292}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{A3CBB708-811F-41A3-8EE9-F3DB39482404}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{D796A7E9-1B04-4973-B5D5-E5692489AE53}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/09/2015 10:45:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/09/2015 10:45:31 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: DANIELDRECHSLER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (09/09/2015 10:45:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: HxTsr.exe, Version: 16.0.6121.4200, Zeitstempel: 0x55d79dee
Name des fehlerhaften Moduls: Mso20Imm.dll, Version: 16.0.6121.4200, Zeitstempel: 0x55d79e6c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000c19b0
ID des fehlerhaften Prozesses: 0x2a00
Startzeit der fehlerhaften Anwendung: 0xHxTsr.exe0
Pfad der fehlerhaften Anwendung: HxTsr.exe1
Pfad des fehlerhaften Moduls: HxTsr.exe2
Berichtskennung: HxTsr.exe3
Vollständiger Name des fehlerhaften Pakets: HxTsr.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HxTsr.exe5

Error: (09/09/2015 10:44:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/09/2015 10:44:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5
Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10240.16397, Zeitstempel: 0x55af1390
Ausnahmecode: 0xc000027b
Fehleroffset: 0x000000000006687f
ID des fehlerhaften Prozesses: 0x17f8
Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0
Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1
Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2
Berichtskennung: backgroundTaskHost.exe3
Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5

Error: (09/09/2015 10:44:25 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: DANIELDRECHSLER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (09/09/2015 10:44:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: HxTsr.exe, Version: 16.0.6121.4200, Zeitstempel: 0x55d79dee
Name des fehlerhaften Moduls: Mso20Imm.dll, Version: 16.0.6121.4200, Zeitstempel: 0x55d79e6c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000c19b0
ID des fehlerhaften Prozesses: 0x4cc
Startzeit der fehlerhaften Anwendung: 0xHxTsr.exe0
Pfad der fehlerhaften Anwendung: HxTsr.exe1
Pfad des fehlerhaften Moduls: HxTsr.exe2
Berichtskennung: HxTsr.exe3
Vollständiger Name des fehlerhaften Pakets: HxTsr.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HxTsr.exe5

Error: (09/09/2015 10:39:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: Bei der Aktivierung der App „Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/09/2015 10:39:34 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm OHub.exe, Version 16.0.6203.2351 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 272c

Startzeit: 01d0eae33c507743

Beendigungszeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbwe\OHub.exe

Berichts-ID: acd21f7c-56d6-11e5-9bd1-d43d7ebc9377

Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbwe

Auf das fehlerhafte Paket bezogene Anwendungs-ID: Microsoft.MicrosoftOfficeHub

Error: (09/09/2015 10:38:02 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: Bei der Aktivierung der App „Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


Systemfehler:
=============
Error: (09/09/2015 10:39:34 AM) (Source: DCOM) (EventID: 10010) (User: DANIELDRECHSLER)
Description: Microsoft.MicrosoftOfficeHub.AppXrqs94aemecwbtd1veqtvyn34m9ks80g7.mca

Error: (09/09/2015 10:38:32 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (09/09/2015 10:38:02 AM) (Source: DCOM) (EventID: 10010) (User: DANIELDRECHSLER)
Description: Microsoft.MicrosoftOfficeHub.AppXrqs94aemecwbtd1veqtvyn34m9ks80g7.mca

Error: (09/09/2015 10:31:20 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (09/09/2015 10:31:17 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (09/09/2015 10:30:59 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (09/09/2015 10:30:51 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (09/09/2015 10:30:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (09/09/2015 10:29:29 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/09/2015 10:29:29 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office:
=========================
Error: (09/09/2015 10:45:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147023170

Error: (09/09/2015 10:45:31 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: DANIELDRECHSLER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (09/09/2015 10:45:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: HxTsr.exe16.0.6121.420055d79deeMso20Imm.dll16.0.6121.420055d79e6cc000000500000000000c19b02a0001d0eae4448033e2C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6121.42001.0_x64__8wekyb3d8bbwe\HxTsr.exeC:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6121.42001.0_x64__8wekyb3d8bbwe\Mso20Imm.dll4f609e84-3c8a-4f59-bbcc-b17dcc8bc02dmicrosoft.windowscommunicationsapps_17.6121.42001.0_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (09/09/2015 10:44:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147023170

Error: (09/09/2015 10:44:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: backgroundTaskHost.exe10.0.10240.16384559f38c5twinapi.appcore.dll10.0.10240.1639755af1390c000027b000000000006687f17f801d0eae41d3f6bdbC:\WINDOWS\system32\backgroundTaskHost.exeC:\Windows\System32\twinapi.appcore.dll8a88b3ec-d7ab-44c7-ae2a-eb04dca20a56Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbweApp

Error: (09/09/2015 10:44:25 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: DANIELDRECHSLER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe3

Error: (09/09/2015 10:44:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: HxTsr.exe16.0.6121.420055d79deeMso20Imm.dll16.0.6121.420055d79e6cc000000500000000000c19b04cc01d0eae41d3f3584C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6121.42001.0_x64__8wekyb3d8bbwe\HxTsr.exeC:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6121.42001.0_x64__8wekyb3d8bbwe\Mso20Imm.dll6eb14e82-aadb-439a-baa7-b68199adf28dmicrosoft.windowscommunicationsapps_17.6121.42001.0_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (09/09/2015 10:39:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub-2144927142

Error: (09/09/2015 10:39:34 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: OHub.exe16.0.6203.2351272c01d0eae33c5077434294967295C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbwe\OHub.exeacd21f7c-56d6-11e5-9bd1-d43d7ebc9377Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (09/09/2015 10:38:02 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIELDRECHSLER)
Description: Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub-2144927141


CodeIntegrity:
===================================
  Date: 2015-09-03 12:16:08.386
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:16:08.328
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:16:07.514
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:16:07.444
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:15:58.523
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:15:58.455
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:15:58.283
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:15:58.224
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:15:57.994
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-03 12:15:57.919
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 31%
Installierter physikalischer RAM: 16296.58 MB
Verfügbarer physikalischer RAM: 11162.18 MB
Summe virtueller Speicher: 32680.58 MB
Verfügbarer virtueller Speicher: 26802.16 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:468.75 GB) (Free:199.56 GB) NTFS
Drive o: (Volume) (Fixed) (Total:9.77 GB) (Free:9.67 GB) NTFS
Drive s: () (Fixed) (Total:312.49 GB) (Free:88.04 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F8D1D45B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=468.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=11 GB) - (Type=27)
Partition 4: (Not Active) - (Size=322.3 GB) - (Type=OF Extended)

==================== Ende von Addition.txt ============================
und zum Schluss (da sich bei mir Gmer wie oben genannt zwar öffnet, jedoch anschließend :"Gmer.exe funktioniert nicht mehr" kommt, womit ich diese Logfile nicht vorzeigen kann.

-defogger_disable.log:

Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 11:34 on 09/09/2015 (Daniel Drechsler)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
Vielen Dank schon mal im voraus

PS: Bitte beachtet (falls Fehler enthalten sind) meine Rechtschreibung nicht so.

schrauber 09.09.2015 11:41
hi,

Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    Google Update Helper

    Lollipop



  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 




Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

Panzer0312 10.09.2015 08:43
Hi,
Danke erst einmal für die schnelle Antwort...

-die mbam.txt

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 09.09.2015
Suchlaufzeit: 13:19
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.09.09.04
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Daniel Drechsler

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 502217
Abgelaufene Zeit: 40 Min., 18 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 5
PUP.Optional.OpenCandy, C:\Users\Daniel Drechsler\AppData\Local\Temp\HYD6183.tmp.1441794573\HTA\install.1441794573.zip, In Quarantäne, [f6e263ca0685063055afe1abb055c937],
PUP.Optional.OpenCandy, C:\Users\Daniel Drechsler\AppData\Local\Temp\HYD6183.tmp.1441794573\HTA\3rdparty\OCSetupHlp.dll, In Quarantäne, [63759a93d0bbf73f8c7843491ee7b54b],
PUP.Optional.OpenCandy, C:\Users\Daniel Drechsler\AppData\Local\Temp\HYD7440.tmp.1441794578\HTA\install.1441794578.zip, In Quarantäne, [9a3ed65743487abc60a4aede29dcda26],
PUP.Optional.OpenCandy, C:\Users\Daniel Drechsler\AppData\Local\Temp\HYD7440.tmp.1441794578\HTA\3rdparty\OCSetupHlp.dll, In Quarantäne, [a236ce5fb6d558deb74dabe151b4817f],
Trojan.Agent, C:\Users\Daniel Drechsler\WinRAR.exe, In Quarantäne, [8a4ed05d9af18fa709c9d16f0df646ba],

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
-adwcleaner.txt

Code:
# AdwCleaner v5.007 - Bericht erstellt am 09/09/2015 um 14:37:55
# Aktualisiert am 08/09/2015 von Xplode
# Datenbank : 2015-09-08.2 [Server]
# Betriebssystem : Windows 10 Home  (x64)
# Benutzername : Daniel Drechsler - DANIELDRECHSLER
# Gestartet von : C:\Users\Daniel Drechsler\Desktop\AdwCleaner_5.007.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Users\Public\Documents\Goobzo

***** [ Dateien ] *****


***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****


***** [ Registrierungsdatenbank ] *****

[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Sense-bg.exe]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\Sense
[!] Schlüssel Nicht Gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\Sense
[!] Schlüssel Nicht Gelöscht : HKU\S-1-5-18\Software\AppDataLow\Software\Sense

***** [ Internetbrowser ] *****


*************************

:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C15].txt - [1399 Bytes] ##########
-die jrt.txt

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.0 (08.31.2015:1)
OS: Windows 10 Home x64
Ran by Daniel Drechsler on 09.09.2015 at 14:48:07,16
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks

Successfully deleted: [Task] C:\WINDOWS\system32\tasks\DLL-Files.Com Fixer_MONTHLY
Successfully deleted: [Task] C:\WINDOWS\system32\tasks\DLL-Files.Com Fixer_Updates
Successfully deleted: [Task] C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job
Successfully deleted: [Task] C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_7B03E5BC46D3B6036BDF83C531BB1F93



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\ProgramData\1441470975.bdinstall.bin
Successfully deleted: [File] C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\dll-files fixer.lnk
Successfully deleted: [File] C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\worldoftanks.lnk
Successfully deleted: [File] C:\WINDOWS\SysWOW64\REN2EBD.tmp
Successfully deleted: [File] C:\WINDOWS\SysWOW64\REN404C.tmp
Successfully deleted: [File] C:\WINDOWS\SysWOW64\REN404D.tmp
Successfully deleted: [File] C:\WINDOWS\SysWOW64\REN9F7C.tmp
Successfully deleted: [File] C:\WINDOWS\SysWOW64\REN9F7D.tmp
Successfully deleted: [File] C:\WINDOWS\SysWOW64\RENE84A.tmp



~~~ Folders

Successfully deleted: [Folder] C:\Program Files (x86)\browse~2
Successfully deleted: [Folder] C:\Program Files (x86)\dll-files.com fixer
Successfully deleted: [Folder] C:\Users\Daniel Drechsler\Appdata\LocalLow\company
Successfully deleted: [Folder] C:\Users\Daniel Drechsler\AppData\Roaming\dll-files.com
Successfully deleted: [Folder] C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\worldoftanks
Successfully deleted: [Folder] C:\WINDOWS\system32\abis
Successfully deleted: [Folder] C:\WINDOWS\SysWOW64\ai_recyclebin



~~~ FireFox

Successfully deleted the following from C:\Users\Daniel Drechsler\AppData\Roaming\mozilla\firefox\profiles\rkhhb3ye.default\prefs.js

user_pref(extensions.ZMe.scode, try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\acebook\)>-1||url.indexOf(\warnalert11.com\)>-
Emptied folder: C:\Users\Daniel Drechsler\AppData\Roaming\mozilla\firefox\profiles\rkhhb3ye.default\minidumps [28 files]
-und die Frst.txt (musste ich aufspalten, da etw. zu groß)

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-09-2015
durchgeführt von Daniel Drechsler (Administrator) auf DANIELDRECHSLER (09-09-2015 15:00:20)
Gestartet von C:\Users\Daniel Drechsler\Desktop\logfilesgeneratoren
Geladene Profile: Daniel Drechsler (Verfügbare Profile: Daniel Drechsler & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Spotify Web Helper] => C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2022968 2015-05-25] (Spotify Ltd)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Spotify] => C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\Spotify.exe [7298616 2015-05-25] (Spotify Ltd)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53735968 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
Startup: C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2015-06-01]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\..\Interfaces\{3088d3ca-bac6-4f72-a8e6-4b1ef398030d}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {35E2F16F-47B3-4433-87A7-5DE0FE5BCCD6} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3319741&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP50E52BA9-6187-4D65-9E6D-0E3FF275218D&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> {35E2F16F-47B3-4433-87A7-5DE0FE5BCCD6} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> {FC739C94-F44E-4EBA-9B70-87AB45DFD999} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-03] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-03] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-07] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-07] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-09-03] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-03] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-07] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-06-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-06-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3057496629-3853623942-2176478709-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-08-01] ()
FF SearchPlugin: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\searchplugins\google-images.xml [2014-10-07]
FF SearchPlugin: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\searchplugins\google-maps.xml [2014-10-07]
FF Extension: Cliqz Beta - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\Extensions\cliqz@cliqz.com.xpi [2014-11-03]
FF Extension: Kein Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\extensions\cliqz@cliqz.com
FF HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Firefox\Extensions: [{ba2c82b0-7fa8-11e4-b4a9-0800200c9a66}] - C:\Users\DANIEL~1\AppData\Local\Temp\search.xpi
FF Extension: Kein Name - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [nicht gefunden]

Chrome:
=======
CHR Profile: C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ghostery) - C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-09-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-29]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-06-01] (Adobe Systems) [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-23] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-17] (NVIDIA Corporation)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
S2 HiPatchService; S:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-02] (Microsoft Corporation)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
S2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-02] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
S1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [Datei ist nicht signiert]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [Datei ist nicht signiert]
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-09] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-02] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S1 KLIM6; \SystemRoot\system32\DRIVERS\klim6.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-09 14:57 - 2015-09-09 14:57 - 00003314 _____ C:\Users\Daniel Drechsler\Desktop\JRT.txt
2015-09-09 14:47 - 2015-09-09 14:47 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Daniel Drechsler\Downloads\JRT_7600.exe
2015-09-09 14:46 - 2015-09-09 14:46 - 00016148 _____ C:\WINDOWS\system32\DANIELDRECHSLER_Daniel Drechsler_HistoryPrediction.bin
2015-09-09 14:35 - 2015-09-09 14:35 - 01660416 _____ C:\Users\Daniel Drechsler\Downloads\AdwCleaner_5.007.exe
2015-09-09 14:35 - 2015-09-09 14:35 - 01660416 _____ C:\Users\Daniel Drechsler\Desktop\AdwCleaner_5.007.exe
2015-09-09 14:29 - 2015-09-09 14:29 - 00001956 _____ C:\Users\Daniel Drechsler\Desktop\mbam.txt
2015-09-09 14:21 - 2015-09-09 14:39 - 00002228 _____ C:\WINDOWS\PFRO.log
2015-09-09 12:40 - 2015-09-09 12:40 - 00007487 _____ C:\Users\Daniel Drechsler\Downloads\AdwCleaner logs (05.09-09.09).zip
2015-09-09 12:10 - 2015-02-15 13:01 - 00187480 _____ (Alexander Roshal) C:\Users\Daniel Drechsler\Uninstall.exe
2015-09-09 12:10 - 2015-02-15 13:01 - 00061528 _____ C:\Users\Daniel Drechsler\Ace32Loader.exe
2015-09-09 12:10 - 2015-01-03 22:30 - 00176640 _____ (Igor Pavlov) C:\Users\Daniel Drechsler\7zxa.dll
2015-09-09 12:10 - 2005-08-26 01:50 - 00077312 _____ C:\Users\Daniel Drechsler\UNACEV2.DLL
2015-09-09 12:09 - 2015-09-09 12:10 - 02058768 _____ C:\Users\Daniel Drechsler\Downloads\winrar-x64-521d.exe
2015-09-09 11:38 - 2015-09-09 15:00 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\logfilesgeneratoren
2015-09-09 11:38 - 2015-09-09 11:38 - 00380416 _____ C:\Users\Daniel Drechsler\Downloads\Gmer-19357.exe
2015-09-09 11:35 - 2015-09-09 15:00 - 00000000 ____D C:\FRST
2015-09-09 11:35 - 2015-09-09 11:35 - 02190336 _____ (Farbar) C:\Users\Daniel Drechsler\Downloads\FRST64.exe
2015-09-09 11:34 - 2015-09-09 11:34 - 00000000 _____ C:\Users\Daniel Drechsler\defogger_reenable
2015-09-09 11:30 - 2015-09-09 14:43 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-09 11:13 - 2015-09-09 11:13 - 00001348 _____ C:\Users\Daniel Drechsler\Desktop\Revo Uninstaller.lnk
2015-09-09 11:13 - 2015-09-09 11:13 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-09 11:03 - 2015-09-02 02:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 11:03 - 2015-09-02 01:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 11:03 - 2015-09-02 01:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 11:03 - 2015-08-27 07:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 11:03 - 2015-08-27 07:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 11:03 - 2015-08-27 07:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 11:03 - 2015-08-27 06:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 11:03 - 2015-08-27 06:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 11:03 - 2015-08-27 06:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 11:03 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 11:03 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 11:03 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 11:03 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 11:03 - 2015-08-27 06:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 11:03 - 2015-08-27 06:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 11:03 - 2015-08-27 06:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 11:03 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 11:03 - 2015-08-27 06:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 11:03 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 11:03 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 11:03 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 11:03 - 2015-08-27 06:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 11:03 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 11:03 - 2015-08-27 06:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 11:03 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 11:03 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 11:03 - 2015-08-27 06:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 11:03 - 2015-08-27 06:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 11:03 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 11:03 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 11:03 - 2015-08-27 06:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 11:03 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-08 16:06 - 2015-09-08 16:06 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Apple Computer
2015-09-08 16:05 - 2015-09-08 16:06 - 00000000 ____D C:\Program Files (x86)\Guns And Robots
2015-09-08 16:05 - 2015-09-08 16:05 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-09-08 16:05 - 2015-09-08 16:05 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-09-08 16:05 - 2015-09-08 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guns And Robots
2015-09-07 20:15 - 2015-09-09 14:46 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-07 20:15 - 2015-09-07 20:15 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-07 20:15 - 2015-09-07 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-07 20:15 - 2015-09-07 20:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-07 20:15 - 2015-09-07 20:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-07 20:15 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-07 20:15 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-07 20:15 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-07 12:33 - 2015-09-07 12:33 - 00000000 ____D C:\ProgramData\GZ
2015-09-07 11:28 - 2015-09-07 11:28 - 00004272 _____ C:\Users\Daniel Drechsler\AppData\Local\recently-used.xbel
2015-09-07 11:23 - 2015-09-07 11:28 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\gtk-2.0
2015-09-07 11:18 - 2015-09-07 11:18 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\gegl-0.2
2015-09-07 10:02 - 2015-09-07 10:02 - 00001338 _____ C:\Users\Daniel Drechsler\Desktop\eclipsec.exe - Shortcut.lnk
2015-09-07 09:42 - 2015-09-07 10:25 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\mc mod 1.8 forge
2015-09-05 19:42 - 2015-09-09 14:46 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-05 19:42 - 2015-09-05 19:42 - 00001043 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-05 19:42 - 2015-09-05 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-05 17:39 - 2015-09-05 17:39 - 00002256 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Free Edition.lnk
2015-09-05 17:39 - 2015-09-05 17:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antivirus Free Edition
2015-09-05 17:39 - 2013-04-17 14:59 - 00718840 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-09-05 17:39 - 2013-04-17 14:59 - 00593144 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-09-05 17:39 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-09-05 17:36 - 2015-09-05 17:39 - 00000000 ____D C:\Program Files\Bitdefender
2015-09-05 17:36 - 2015-09-05 17:36 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\QuickScan
2015-09-05 17:36 - 2013-05-28 12:12 - 00382536 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-09-05 17:36 - 2013-04-22 13:21 - 00148696 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-09-05 16:18 - 2015-09-05 16:18 - 00000000 ___HD C:\OneDriveTemp
2015-09-03 18:03 - 2015-09-03 18:03 - 00003798 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2015-09-03 17:47 - 2015-09-03 17:47 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\AVG
2015-09-03 17:46 - 2015-09-03 17:46 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Avg
2015-09-03 17:45 - 2015-09-03 17:48 - 00000000 ____D C:\ProgramData\AVG
2015-09-03 12:38 - 2015-09-03 12:38 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\TuneUp Software
2015-09-03 12:38 - 2015-09-03 12:38 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\AVG2015
2015-09-03 12:37 - 2015-09-07 09:23 - 00000000 ____D C:\ProgramData\AVG2015
2015-09-03 12:37 - 2015-09-07 09:23 - 00000000 ____D C:\Program Files (x86)\AVG
2015-09-03 12:37 - 2015-09-05 17:34 - 00000000 ___HD C:\$AVG
2015-09-03 12:35 - 2015-09-09 14:26 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9FC2608E-444A-4431-ADD3-E1106083797A}
2015-09-03 12:35 - 2015-09-07 09:23 - 00000000 ____D C:\ProgramData\MFAData
2015-09-03 12:35 - 2015-09-03 12:43 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Avg2015
2015-09-03 12:35 - 2015-09-03 12:35 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\MFAData
2015-09-03 12:30 - 2015-09-03 12:30 - 00000000 ____D C:\ProgramData\AVAST Software
2015-09-03 12:14 - 2015-09-03 12:15 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Mozilla
2015-09-03 12:07 - 2015-09-03 12:07 - 00000003 _____ C:\Users\Daniel\HRUPPROG.EXIT
2015-09-03 10:42 - 2015-09-03 10:40 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-09-03 10:40 - 2015-09-03 10:41 - 00000000 ____D C:\Users\Daniel Drechsler\.oracle_jre_usage
2015-09-03 10:40 - 2015-09-03 10:40 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Sun
2015-09-01 15:41 - 2015-09-01 15:41 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\ROR_GMS_controller
2015-09-01 15:30 - 2015-09-01 15:30 - 00001781 _____ C:\Users\Daniel Drechsler\Desktop\Risk of Rain.lnk
2015-09-01 12:42 - 2015-09-01 12:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-31 10:16 - 2015-08-31 10:16 - 03333571 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.7.10-10.13.4.1492-1.7.10-installer-win.exe
2015-08-31 09:49 - 2015-08-31 09:49 - 03563264 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.8-11.14.3.1506-installer-win.exe
2015-08-31 09:09 - 2015-08-20 07:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-31 09:09 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-31 09:09 - 2015-08-20 07:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-31 09:09 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-31 09:09 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-31 09:09 - 2015-08-20 06:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-31 09:09 - 2015-08-20 06:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-31 09:09 - 2015-08-18 08:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-31 09:09 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-31 09:09 - 2015-08-18 08:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-31 09:09 - 2015-08-18 08:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-31 09:09 - 2015-08-18 08:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-31 09:09 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-31 09:09 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-31 09:09 - 2015-08-18 08:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-31 09:09 - 2015-08-18 08:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-31 09:09 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-31 09:09 - 2015-08-18 08:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-31 09:09 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-31 09:09 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-31 09:09 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-31 09:09 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-31 09:09 - 2015-08-18 07:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-31 09:09 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-31 09:09 - 2015-08-18 07:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-31 09:09 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-31 09:09 - 2015-08-18 07:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-31 09:09 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-31 09:09 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-31 09:09 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-31 09:09 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-31 09:09 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-31 09:09 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-31 09:09 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-31 09:09 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-31 09:09 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-31 09:09 - 2015-08-18 05:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-29 19:32 - 2015-08-29 19:34 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\ftblauncher
2015-08-29 16:48 - 2015-08-29 16:50 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\NBTExplorer
Code:
2015-08-29 16:48 - 2015-08-29 16:48 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\NbtExplorer
2015-08-29 16:40 - 2015-09-03 12:03 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Adobe
2015-08-29 16:32 - 2015-08-29 16:32 - 03262305 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.8-11.14.3.1506-universal.jar
2015-08-29 16:20 - 2015-08-29 16:21 - 25590399 _____ C:\Users\Daniel Drechsler\Desktop\SkyGrid 1_5.zip
2015-08-28 12:44 - 2015-08-28 12:44 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\openvr
2015-08-27 20:55 - 2015-08-27 20:55 - 00012800 _____ () C:\Users\Daniel Drechsler\Desktop\Client.exe
2015-08-26 12:16 - 2015-08-26 12:16 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Skype
2015-08-26 08:41 - 2015-08-26 08:41 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Publishers
2015-08-25 12:37 - 2015-09-09 10:17 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\TmForever
2015-08-25 12:37 - 2015-08-25 12:45 - 00000000 ____D C:\ProgramData\TmForever
2015-08-25 11:54 - 2015-08-25 11:54 - 00009001 _____ C:\Users\Daniel Drechsler\AppData\Roaming\.freeciv-client-rc-2.5
2015-08-25 11:51 - 2015-08-25 11:54 - 00000000 ____D C:\Program Files (x86)\Freeciv-2.5.1-gtk2
2015-08-25 11:51 - 2015-08-25 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freeciv 2.5.1 (GTK+2 client)
2015-08-25 11:29 - 2015-08-25 11:46 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\OpenTTD
2015-08-25 11:29 - 2015-08-25 11:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2015-08-25 11:29 - 2015-08-25 11:29 - 00000000 ____D C:\Program Files\OpenTTD
2015-08-25 11:25 - 2015-09-04 21:20 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\VirtualStore
2015-08-25 11:22 - 2015-08-25 11:22 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bontago
2015-08-25 11:22 - 2015-08-25 11:22 - 00000000 ____D C:\Program Files (x86)\Bontago
2015-08-25 09:58 - 2015-08-25 09:58 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Macromedia
2015-08-25 09:57 - 2015-08-25 10:03 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Deutsche Telekom AG
2015-08-25 09:56 - 2015-09-09 11:39 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Battle.net
2015-08-25 09:56 - 2015-08-25 09:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\WB Games
2015-08-25 09:56 - 2015-08-25 09:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Blizzard Entertainment
2015-08-25 09:54 - 2015-08-25 09:54 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Steam
2015-08-25 09:54 - 2015-08-25 09:54 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\CEF
2015-08-25 09:51 - 2015-09-01 15:57 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Spotify
2015-08-25 09:50 - 2015-09-09 14:24 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\LogMeIn Hamachi
2015-08-25 09:50 - 2015-08-25 09:50 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\LogMeIn
2015-08-24 18:39 - 2015-08-24 18:39 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\MicrosoftEdge
2015-08-24 17:49 - 2015-08-24 17:50 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Armagetron
2015-08-24 17:49 - 2015-08-24 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Armagetron Advanced
2015-08-24 17:49 - 2015-08-24 17:49 - 00000000 ____D C:\ProgramData\Armagetron
2015-08-24 17:49 - 2015-08-24 17:49 - 00000000 ____D C:\Program Files (x86)\Armagetron Advanced
2015-08-24 17:20 - 2015-09-04 19:20 - 00000338 _____ C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job
2015-08-24 17:20 - 2015-08-24 17:20 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2015-08-24 17:20 - 2015-08-24 17:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2015-08-24 12:40 - 2015-08-24 13:30 - 00000000 ____D C:\my_garrrysmod_server
2015-08-24 12:33 - 2015-08-24 13:29 - 00000000 ____D C:\steamcmd
2015-08-22 15:58 - 2015-09-04 19:20 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Server
2015-08-21 13:58 - 2015-08-21 15:00 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Tunngle
2015-08-21 13:58 - 2015-08-21 13:58 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\Tunngle
2015-08-21 13:58 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2015-08-21 13:41 - 2015-08-21 13:41 - 00001002 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-08-21 13:41 - 2015-08-21 13:41 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-08-20 18:08 - 2015-08-20 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-20 13:19 - 2015-08-20 13:19 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Sierra Entertainment
2015-08-19 22:49 - 2015-08-20 14:05 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Tropico 5
2015-08-19 22:42 - 2015-09-09 11:29 - 00000000 ____D C:\Program Files (x86)\Tropico 5
2015-08-19 22:41 - 2015-08-13 05:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 22:41 - 2015-08-13 05:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 22:41 - 2015-08-13 04:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 22:41 - 2015-08-11 11:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 22:41 - 2015-08-11 11:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 22:41 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 22:41 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 22:41 - 2015-08-11 11:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 22:41 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 22:41 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 22:41 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 22:41 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 22:41 - 2015-08-11 10:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 22:41 - 2015-08-11 10:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 22:41 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 22:41 - 2015-08-11 10:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 22:41 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 22:41 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 22:41 - 2015-08-11 10:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 22:41 - 2015-08-11 10:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 22:41 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 22:41 - 2015-08-11 10:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 22:41 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 22:41 - 2015-08-11 10:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 22:41 - 2015-08-11 10:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 22:41 - 2015-08-11 10:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 22:41 - 2015-08-11 10:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 22:41 - 2015-08-11 10:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 22:41 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 22:41 - 2015-08-11 10:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 22:41 - 2015-08-11 10:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 22:41 - 2015-08-11 10:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 22:41 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 22:41 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 22:41 - 2015-08-11 10:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 22:41 - 2015-08-11 10:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 22:41 - 2015-08-11 10:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 22:41 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 22:41 - 2015-08-11 10:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 22:41 - 2015-08-11 10:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 22:41 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 22:41 - 2015-08-11 10:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 22:41 - 2015-08-11 10:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 22:41 - 2015-08-11 10:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 22:41 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 22:41 - 2015-08-11 10:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 22:41 - 2015-08-11 09:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 22:41 - 2015-08-11 09:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 22:41 - 2015-08-11 09:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 22:41 - 2015-08-11 09:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 22:41 - 2015-08-11 09:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 22:41 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 22:41 - 2015-08-11 09:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 22:41 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 22:41 - 2015-08-11 09:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 22:41 - 2015-08-11 09:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 22:41 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 22:41 - 2015-08-11 09:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 22:41 - 2015-08-11 09:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 22:41 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 22:41 - 2015-08-11 09:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 22:41 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 22:41 - 2015-08-11 09:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 22:41 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 22:41 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-19 11:52 - 2015-08-19 11:52 - 00313264 ____N (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-08-18 23:10 - 2015-08-18 23:10 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-08-16 15:09 - 2015-09-09 11:30 - 00000000 ____D C:\Games
2015-08-16 14:43 - 2015-08-16 14:43 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\0ad
2015-08-16 14:38 - 2015-09-03 18:03 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\0 A.D. alpha
2015-08-16 14:04 - 2015-08-16 14:35 - 601503717 _____ C:\Users\Daniel Drechsler\Desktop\0ad-0.0.18-alpha-win32.exe
2015-08-15 19:42 - 2015-08-15 19:42 - 00002279 _____ C:\Users\Daniel Drechsler\Desktop\0 A.D. - CHIP Downloader.lnk
2015-08-15 19:26 - 2015-08-15 19:26 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Aoe3 loader
2015-08-15 19:25 - 2015-08-15 19:25 - 00320552 _____ C:\Users\Daniel Drechsler\Desktop\aoe3loader_1.6.3.zip
2015-08-15 13:21 - 2015-08-08 08:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-15 13:21 - 2015-08-08 08:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-15 13:21 - 2015-08-08 07:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-15 13:21 - 2015-08-08 07:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-15 13:21 - 2015-08-08 07:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-15 13:21 - 2015-08-06 04:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-15 13:21 - 2015-08-06 04:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-15 13:21 - 2015-08-06 03:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-15 13:21 - 2015-08-05 05:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-15 13:21 - 2015-08-05 05:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-15 13:21 - 2015-08-05 05:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-15 13:21 - 2015-08-05 04:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-15 13:21 - 2015-08-05 04:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-15 13:21 - 2015-08-04 05:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-15 13:21 - 2015-08-04 05:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-15 13:21 - 2015-08-04 04:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-15 13:21 - 2015-08-04 03:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-15 13:21 - 2015-08-04 03:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-15 13:21 - 2015-08-03 03:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-15 13:21 - 2015-08-03 03:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-15 13:21 - 2015-08-03 03:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-15 13:21 - 2015-08-03 03:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-15 13:21 - 2015-08-03 03:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-15 13:21 - 2015-08-03 03:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-15 13:21 - 2015-08-03 03:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-15 13:21 - 2015-08-03 03:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-15 13:21 - 2015-08-03 02:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-15 13:21 - 2015-08-03 02:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-15 13:21 - 2015-08-03 02:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-15 13:21 - 2015-08-03 02:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-15 13:21 - 2015-08-03 02:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-15 13:21 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-15 13:21 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-15 13:21 - 2015-08-03 02:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-15 13:21 - 2015-08-03 02:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-15 13:21 - 2015-08-03 02:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-15 13:21 - 2015-08-03 02:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-15 13:21 - 2015-08-03 02:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-15 13:21 - 2015-08-03 02:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-15 13:21 - 2015-08-03 02:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-15 13:21 - 2015-08-03 02:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-15 13:21 - 2015-08-03 02:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-15 13:21 - 2015-08-03 02:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-15 13:21 - 2015-08-03 02:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-15 13:21 - 2015-08-03 02:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-15 13:21 - 2015-08-03 01:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-15 13:20 - 2015-08-04 05:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-15 13:20 - 2015-08-03 03:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-15 13:20 - 2015-08-03 03:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-15 13:20 - 2015-08-03 03:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-15 13:20 - 2015-08-03 02:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-15 13:20 - 2015-08-03 02:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-15 13:20 - 2015-08-03 02:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-15 13:20 - 2015-08-03 02:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-15 13:20 - 2015-08-03 02:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-15 13:20 - 2015-08-03 02:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-15 13:20 - 2015-08-03 02:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-15 13:20 - 2015-08-03 02:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-15 13:20 - 2015-08-03 02:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-15 13:20 - 2015-08-03 02:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-15 13:20 - 2015-08-03 02:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-15 13:10 - 2015-08-15 13:41 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\Stronghold Crusader
2015-08-15 13:00 - 2015-08-15 13:10 - 00001713 _____ C:\Users\Daniel Drechsler\Desktop\Stronghold Crusader - Shortcut.lnk
2015-08-15 13:00 - 2015-08-15 13:00 - 00001705 _____ C:\Users\Daniel Drechsler\Desktop\Stronghold_Crusader_Extreme - Shortcut.lnk
2015-08-15 12:58 - 2015-08-15 12:59 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Stronghold Crusader
2015-08-14 17:55 - 2015-08-14 17:55 - 00000097 _____ C:\Users\Daniel Drechsler\.lobby
2015-08-14 17:55 - 2015-08-14 17:55 - 00000000 ____D C:\Users\Daniel Drechsler\Domination Maps
2015-08-14 17:54 - 2015-08-14 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Domination
2015-08-14 17:54 - 2015-08-14 17:54 - 00000000 ____D C:\Program Files\Domination

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-09 14:47 - 2013-11-30 21:54 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Skype
2015-09-09 14:41 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-09 14:39 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-09 14:38 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-09 14:37 - 2015-02-22 12:30 - 00000000 ____D C:\AdwCleaner
2015-09-09 14:31 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-09 14:25 - 2013-12-03 14:20 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-09 14:22 - 2015-07-10 13:20 - 00243096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-09 14:21 - 2015-08-02 19:56 - 00000000 ____D C:\Users\Daniel Drechsler
2015-09-09 14:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Registration
2015-09-09 14:20 - 2015-07-10 17:46 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 14:20 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-09 14:07 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-09 14:07 - 2014-10-24 14:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 12:10 - 2014-01-03 21:02 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-09 12:10 - 2014-01-03 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-09 11:28 - 2014-10-06 14:20 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Spiele
2015-09-09 10:30 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Cursors
2015-09-08 22:00 - 2015-02-12 17:55 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-08 16:06 - 2014-04-05 12:08 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Apple Computer
2015-09-08 09:06 - 2013-12-21 22:33 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\My Games
2015-09-08 08:42 - 2014-06-29 19:27 - 00000000 ____D C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62
2015-09-07 20:20 - 2014-01-30 19:47 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-07 12:14 - 2015-01-29 19:09 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\eclipse
2015-09-07 11:28 - 2015-07-29 15:54 - 00000000 ____D C:\Users\Daniel Drechsler\.gimp-2.8
2015-09-07 11:20 - 2014-06-18 12:14 - 00000000 ____D C:\Users\Daniel Drechsler\.thumbnails
2015-09-07 09:55 - 2015-01-23 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-09-07 09:55 - 2013-11-30 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-07 09:54 - 2015-02-10 17:17 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-07 09:44 - 2013-11-30 21:39 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\.minecraft
2015-09-05 18:35 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-05 17:44 - 2015-08-02 20:32 - 00000000 ____D C:\Users\Daniel Drechsler\OneDrive
2015-09-05 17:32 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-05 16:56 - 2014-02-24 19:47 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\Sicherung reg
2015-09-03 18:03 - 2015-08-02 19:44 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-03 18:03 - 2014-10-29 16:24 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Programme
2015-09-03 13:16 - 2014-06-24 14:03 - 00000000 ____D C:\temp
2015-09-03 12:43 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-03 12:20 - 2014-05-14 14:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-03 12:07 - 2014-10-24 16:48 - 00000003 _____ C:\Users\Daniel\HRUPPROG.TXT
2015-09-03 12:07 - 2014-10-24 16:48 - 00000000 ____D C:\Users\Daniel
2015-09-03 12:05 - 2014-06-11 17:31 - 00000000 ____D C:\Program Files (x86)\Deutsche Telekom AG
2015-09-03 10:44 - 2013-11-30 21:45 - 00000000 ____D C:\ProgramData\Oracle
2015-09-03 10:43 - 2014-08-04 10:46 - 00000000 ____D C:\Program Files\Java
2015-09-03 10:41 - 2015-07-29 14:44 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-09-03 10:14 - 2013-12-21 13:46 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\StarCraft II
2015-09-02 14:52 - 2015-08-02 20:23 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Packages
2015-09-01 15:57 - 2015-02-17 17:12 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Spotify
2015-09-01 15:56 - 2015-06-30 15:09 - 00000000 ___RD C:\Users\Daniel Drechsler\Podcasts
2015-09-01 15:53 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-31 12:10 - 2014-01-15 16:25 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-08-31 08:56 - 2014-05-12 18:04 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-08-26 18:37 - 2014-10-24 14:29 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-26 08:54 - 2009-07-14 03:34 - 00000505 _____ C:\WINDOWS\win.ini
2015-08-26 08:48 - 2015-07-10 12:00 - 00680256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-08-26 08:48 - 2015-07-10 12:00 - 00534064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-08-25 09:56 - 2015-08-02 20:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Comms
2015-08-25 09:50 - 2015-07-29 11:52 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\NVIDIA Corporation
2015-08-24 18:33 - 2015-07-27 18:08 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\NVIDIA
2015-08-24 18:33 - 2014-02-24 14:49 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Google
2015-08-24 12:28 - 2015-03-30 18:35 - 03842048 _____ (Blue Byte ) C:\Users\Daniel Drechsler\Desktop\s3.exe
2015-08-23 13:30 - 2014-12-25 11:27 - 02691217 _____ (Blizzard Entertainment) C:\Users\Daniel Drechsler\Desktop\Downloader_Warcraft3_The_Frozen_Throne_deDE.exe
2015-08-23 13:25 - 2014-05-12 18:09 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-08-22 17:18 - 2013-12-11 17:36 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\.technic
2015-08-22 14:33 - 2013-12-11 18:01 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\ftblauncher
2015-08-21 13:41 - 2015-08-05 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-08-20 20:06 - 2015-08-02 19:56 - 02077126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-20 20:06 - 2015-07-10 17:34 - 00883662 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-20 20:06 - 2015-07-10 17:34 - 00195796 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-20 19:59 - 2015-07-27 17:08 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-20 19:59 - 2015-07-27 17:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-20 19:57 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-20 19:57 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-20 19:57 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-20 18:08 - 2014-10-14 13:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-20 18:08 - 2013-11-30 21:53 - 00000000 ____D C:\ProgramData\Skype
2015-08-19 22:01 - 2015-08-02 20:32 - 00002444 _____ C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-17 15:41 - 2015-07-25 16:59 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\spigotserver
2015-08-15 20:33 - 2015-07-27 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-15 13:02 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-15 13:02 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-15 13:00 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-08-15 13:00 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-08-15 13:00 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-08-15 13:00 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-08-14 17:25 - 2013-12-03 14:20 - 00003858 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-08-25 11:54 - 2015-08-25 11:54 - 0009001 _____ () C:\Users\Daniel Drechsler\AppData\Roaming\.freeciv-client-rc-2.5
2014-02-09 16:44 - 2014-08-20 07:44 - 0000157 _____ () C:\Users\Daniel Drechsler\AppData\Roaming\WB.CFG
2015-09-07 11:28 - 2015-09-07 11:28 - 0004272 _____ () C:\Users\Daniel Drechsler\AppData\Local\recently-used.xbel

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Daniel Drechsler\7zxa.dll
C:\Users\Daniel Drechsler\Ace32Loader.exe
C:\Users\Daniel Drechsler\Rar.exe
C:\Users\Daniel Drechsler\RarExt.dll
C:\Users\Daniel Drechsler\RarExt32.dll
C:\Users\Daniel Drechsler\rarnew.dat
C:\Users\Daniel Drechsler\UNACEV2.DLL
C:\Users\Daniel Drechsler\Uninstall.exe
C:\Users\Daniel Drechsler\UnRAR.exe
C:\Users\Daniel Drechsler\zipnew.dat


Einige Dateien in TEMP:
====================
C:\Users\Daniel Drechsler\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\sqlite3.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll
[2015-07-10 12:00] - [2015-08-26 08:48] - 0680256 ____A (Microsoft Corporation) D72F00D038CAF288009C8A7FC3BA2B11

C:\WINDOWS\SysWOW64\dnsapi.dll
[2015-07-10 12:00] - [2015-08-26 08:48] - 0534064 ____A (Microsoft Corporation) 4111492514CD8085E67C844E9C9FD74D

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-04 21:16

==================== Ende von FRST.txt ============================
PS: Google update Helper war in Revo uninstaller leider nicht auffindbar

schrauber 10.09.2015 19:59

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

Panzer0312 14.09.2015 17:36
Liste der Anhänge anzeigen (Anzahl: 2)
Hallo Schrauber;

Tut mir wegen der verspäteten Antwort leid, aber: entweder ist Eset paranoid, oder der Virus hat sich "vermehrt" (~250 "infizierte Programme")

wie auch immer:

hier die logfile von Eset (da ich 7 mal versuchte, die Datei aufzuspalten und es immer zu viele Zeichen waren, habe ich beschlossen, die datei anzuhängen... (musste ich auch spalten) Anhang 76035

Anhang 76036

die checkup.txt:

Code:
Results of screen317's Security Check version 1.008 
  x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
Windows Defender                   
Bitdefender Antivirus Free Edition 
 Antivirus up to date! 
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 80 
 Java 8 Update 60 
 Java SE Development Kit 8 Update 60
 Adobe Flash Player        18.0.0.232 
 Adobe Reader XI 
 Google Chrome 35.0.1916.153 Google Chrome out of date! 
````````Process Check: objlist.exe by Laurent```````` 
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbam.exe 
 Bitdefender Antivirus Free Edition gzserv.exe 
 Bitdefender Antivirus Free Edition gziface.exe 
 Malwarebytes Anti-Malware mbamscheduler.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

Panzer0312 14.09.2015 17:46
und hier die Frst.log

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:14-09-2015
durchgeführt von Daniel Drechsler (Administrator) auf DANIELDRECHSLER (14-09-2015 18:39:14)
Gestartet von C:\Users\Daniel Drechsler\Desktop\logfiles
Geladene Profile: Daniel Drechsler (Verfügbare Profile: Daniel Drechsler & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\System32\spacedeskService.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Windows\System32\SpaceDeskServiceTray.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.25.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
() C:\Users\Daniel Drechsler\Desktop\SecurityCheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Spotify Web Helper] => C:\Users\Daniel Drechsler\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-10] (Spotify Ltd)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53735968 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Daniel Drechsler\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
Startup: C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2015-06-01]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\..\Interfaces\{3088d3ca-bac6-4f72-a8e6-4b1ef398030d}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {35E2F16F-47B3-4433-87A7-5DE0FE5BCCD6} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3319741&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP50E52BA9-6187-4D65-9E6D-0E3FF275218D&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> {35E2F16F-47B3-4433-87A7-5DE0FE5BCCD6} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> {FC739C94-F44E-4EBA-9B70-87AB45DFD999} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-03] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-03] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-07] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-07] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3057496629-3853623942-2176478709-1000 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-09-03] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-03] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-07] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-06-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-06-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3057496629-3853623942-2176478709-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-08-01] ()
FF SearchPlugin: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\searchplugins\google-images.xml [2014-10-07]
FF SearchPlugin: C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\searchplugins\google-maps.xml [2014-10-07]
FF Extension: Cliqz Beta - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\Extensions\cliqz@cliqz.com.xpi [2014-11-03]
FF Extension: Kein Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Firefox\Profiles\rkhhb3ye.default\extensions\cliqz@cliqz.com
FF HKU\S-1-5-21-3057496629-3853623942-2176478709-1000\...\Firefox\Extensions: [{ba2c82b0-7fa8-11e4-b4a9-0800200c9a66}] - C:\Users\DANIEL~1\AppData\Local\Temp\search.xpi
FF Extension: Kein Name - C:\Users\Daniel Drechsler\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [nicht gefunden]

Chrome:
=======
CHR Profile: C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ghostery) - C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-09-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Daniel Drechsler\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-29]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-06-01] (Adobe Systems) [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-23] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-17] (NVIDIA Corporation)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
S2 HiPatchService; S:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-02] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
R2 spacedeskService; C:\Windows\system32\spacedeskService.exe [528048 2015-04-30] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-02] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
S1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 DCamUSBNovatek; C:\Windows\System32\Drivers\nvtcam.sys [2770432 2011-06-10] (AONI)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [Datei ist nicht signiert]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [Datei ist nicht signiert]
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-14] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-02] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R0 spacedeskHookKmode; C:\Windows\system32\DRIVERS\spacedeskHookKmode.sys [192176 2015-04-30] ()
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S1 KLIM6; \SystemRoot\system32\DRIVERS\klim6.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-14 18:07 - 2015-09-14 18:08 - 00852704 _____ C:\Users\Daniel Drechsler\Desktop\SecurityCheck.exe
2015-09-14 18:07 - 2015-09-14 18:07 - 00852704 _____ C:\Users\Daniel Drechsler\Downloads\SecurityCheck.exe
2015-09-14 18:04 - 2015-09-14 18:04 - 00016148 _____ C:\WINDOWS\system32\DANIELDRECHSLER_Daniel Drechsler_HistoryPrediction.bin
2015-09-14 14:46 - 2015-09-14 14:46 - 02870984 _____ (ESET) C:\Users\Daniel Drechsler\Downloads\esetsmartinstaller_deu (1).exe
2015-09-14 13:30 - 2015-09-14 13:31 - 01397608 _____ C:\WINDOWS\Minidump\091415-33109-01.dmp
2015-09-14 13:30 - 2015-09-14 13:30 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-14 13:29 - 2015-09-14 13:29 - 1033478087 _____ C:\WINDOWS\MEMORY.DMP
2015-09-13 21:19 - 2015-09-13 21:19 - 00797640 _____ C:\Users\Daniel Drechsler\Downloads\Growthcraft-1.7.10 (1).zip
2015-09-13 21:18 - 2015-09-13 21:18 - 00797640 _____ C:\Users\Daniel Drechsler\Downloads\Growthcraft-1.7.10.zip
2015-09-13 21:12 - 2015-09-13 21:12 - 00116959 _____ C:\Users\Daniel Drechsler\Downloads\fastcraft-1.21.jar
2015-09-13 21:10 - 2015-09-13 21:11 - 02384406 _____ C:\Users\Daniel Drechsler\Downloads\ThermalExpansion-[1.7.10]4.0.3B1-218.jar
2015-09-13 21:10 - 2015-09-13 21:11 - 02180152 _____ C:\Users\Daniel Drechsler\Downloads\ThermalFoundation-[1.7.10]1.2.0-102.jar
2015-09-13 21:10 - 2015-09-13 21:11 - 00462208 _____ C:\Users\Daniel Drechsler\Downloads\ThermalDynamics-[1.7.10]1.1.0-161.jar
2015-09-13 20:54 - 2015-09-13 20:54 - 00342200 _____ C:\Users\Daniel Drechsler\Downloads\betterbeginnings-mc1710-b0848038939.zip
2015-09-13 20:53 - 2015-09-13 20:53 - 00380647 _____ C:\Users\Daniel Drechsler\Downloads\The_Better_Minerals_Mod-1.7.10-1.5.jar
2015-09-13 20:52 - 2015-09-13 20:59 - 55151541 _____ C:\Users\Daniel Drechsler\Downloads\AoA-2.3.13.jar
2015-09-13 20:47 - 2015-09-13 20:47 - 00426761 _____ C:\Users\Daniel Drechsler\Downloads\Ex-Nihilo-1.38-46.jar
2015-09-13 20:45 - 2015-09-13 20:45 - 00390664 _____ C:\Users\Daniel Drechsler\Downloads\iChunUtil-5.4.0.jar
2015-09-13 20:43 - 2015-09-13 20:43 - 00622662 _____ C:\Users\Daniel Drechsler\Downloads\Portal-Gun-Mod-1.7.10.jar
2015-09-13 20:40 - 2015-09-13 20:40 - 03397159 _____ C:\Users\Daniel Drechsler\Downloads\Galacticraft-Planets-1.7-3.0.11.333.jar
2015-09-13 20:39 - 2015-09-13 20:39 - 11096863 _____ C:\Users\Daniel Drechsler\Downloads\GalacticraftCore-1.7-3.0.11.333.jar
2015-09-13 20:39 - 2015-09-13 20:39 - 00061431 _____ C:\Users\Daniel Drechsler\Downloads\MicdoodleCore-1.7-3.0.11.333.jar
2015-09-13 20:39 - 2015-09-13 20:39 - 00061431 _____ C:\Users\Daniel Drechsler\Downloads\MicdoodleCore-1.7-3.0.11.333 (1).jar
2015-09-13 20:34 - 2015-09-13 20:34 - 00188940 _____ C:\Users\Daniel Drechsler\Downloads\LuckyBlock_1-8_v6-0-1.zip
2015-09-13 20:23 - 2015-09-13 20:23 - 21556740 _____ C:\Users\Daniel Drechsler\Downloads\DrZharks MoCreatures Mod v6.3.1.zip
2015-09-13 20:23 - 2015-09-13 20:23 - 00596575 _____ C:\Users\Daniel Drechsler\Downloads\CustomMobSpawner 3.3.0.zip
2015-09-12 22:14 - 2015-09-12 22:14 - 02870984 _____ (ESET) C:\Users\Daniel Drechsler\Downloads\esetsmartinstaller_deu.exe
2015-09-12 21:43 - 2015-09-12 21:43 - 02920113 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.7.10-10.13.4.1492-1.7.10-universal.jar
2015-09-12 21:29 - 2015-09-12 21:30 - 03670322 _____ C:\Users\Daniel Drechsler\Downloads\Realistic Pain-2.0-1.7.10.jar
2015-09-12 21:28 - 2015-09-12 21:28 - 00099642 _____ C:\Users\Daniel Drechsler\Downloads\[1.7.10-10.13.0.1158][3.0.2-1.7.10] AIRI.jar
2015-09-12 21:27 - 2015-09-12 21:27 - 08914604 _____ C:\Users\Daniel Drechsler\Downloads\[1.7.10-10.13.4.1492-1.7.10][4.0.0.305] AliensVsPredator.jar
2015-09-12 21:20 - 2015-09-12 21:20 - 00271172 _____ C:\Users\Daniel Drechsler\Downloads\treecap1.7.rar
2015-09-12 21:19 - 2015-09-12 21:21 - 09525878 _____ C:\Users\Daniel Drechsler\Downloads\BloodMagic-1.7.10-1.3.3-13.jar
2015-09-12 21:19 - 2015-09-12 21:19 - 00003500 _____ C:\Users\Daniel Drechsler\Downloads\qK2x7Vhg.txt
2015-09-12 21:16 - 2015-09-12 21:16 - 00186520 _____ C:\Users\Daniel Drechsler\Downloads\Guide-API-1.8-1.0.0-21.jar
2015-09-12 21:13 - 2015-09-12 21:13 - 00717723 _____ C:\Users\Daniel Drechsler\Downloads\runicdungeons-1.1.5c.jar
2015-09-12 21:11 - 2015-09-12 21:11 - 00494582 _____ C:\Users\Daniel Drechsler\Downloads\roguelike-1.7.10-1.3.6.3.jar
2015-09-12 21:08 - 2015-09-12 21:08 - 02539846 _____ C:\Users\Daniel Drechsler\Downloads\chocolateQuest-1.7.10-1.0.jar
2015-09-12 21:07 - 2015-09-12 21:08 - 12565807 _____ C:\Users\Daniel Drechsler\Downloads\Thaumcraft-1.7.10-4.2.3.5.jar
2015-09-12 21:07 - 2015-09-12 21:07 - 15217496 _____ C:\Users\Daniel Drechsler\Downloads\Botania r1.7-221.jar
2015-09-12 21:05 - 2015-09-12 21:05 - 00050425 _____ C:\Users\Daniel Drechsler\Downloads\TwoGraves-Mod-1.7.10.jar
2015-09-12 20:59 - 2015-09-12 20:59 - 03333571 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.7.10-10.13.4.1492-1.7.10-installer-win (1).exe
2015-09-12 20:54 - 2015-09-12 20:55 - 01068485 _____ C:\Users\Daniel Drechsler\Downloads\CoFHCore-[1.7.10]3.0.3-303.jar
2015-09-12 20:54 - 2015-09-12 20:54 - 01719328 _____ C:\Users\Daniel Drechsler\Downloads\MineFactoryReloaded-[1.7.10]2.8.0-104.jar
2015-09-12 20:51 - 2015-09-12 20:51 - 00564984 _____ C:\Users\Daniel Drechsler\Downloads\VillagersNose-1.7.10-1.3c.jar
2015-09-12 19:40 - 2015-09-12 19:40 - 00158100 _____ C:\Users\Daniel Drechsler\Downloads\Iron-Chests-Mod-1.7.10.jar
2015-09-12 19:35 - 2015-09-12 19:35 - 02526302 _____ C:\Users\Daniel Drechsler\Downloads\appliedenergistics2-rv2-stable-10.jar
2015-09-12 19:33 - 2015-09-12 19:33 - 01799655 _____ C:\Users\Daniel Drechsler\Downloads\_BuildCraft-Mod-1.7.10.jar
2015-09-12 19:31 - 2015-09-12 19:31 - 02487585 _____ C:\Users\Daniel Drechsler\Downloads\buildcraft-7.0.23.jar
2015-09-12 19:28 - 2015-09-12 19:28 - 00174814 _____ C:\Users\Daniel Drechsler\Downloads\backpack-2.0.1-1.7.x.jar
2015-09-12 19:21 - 2015-09-12 19:21 - 02189957 _____ C:\Users\Daniel Drechsler\Desktop\buildcraft-6.1.0.jar
2015-09-12 19:20 - 2015-09-12 19:21 - 02189957 _____ C:\Users\Daniel Drechsler\Downloads\buildcraft-6.1.0.jar
2015-09-12 19:19 - 2015-09-12 19:19 - 00396536 _____ C:\Users\Daniel Drechsler\Downloads\RopePlus-1.7.10.jar
2015-09-12 19:06 - 2015-09-12 19:06 - 00083487 _____ C:\Users\Daniel Drechsler\Downloads\[1-7-10]_Lucky_Block_v5-1-0.jar.zip
2015-09-12 19:06 - 2015-09-12 19:06 - 00083487 _____ C:\Users\Daniel Drechsler\Downloads\[1-7-10]_Lucky_Block_v5-1-0.jar (1).zip
2015-09-12 18:55 - 2015-09-12 18:55 - 00083487 _____ C:\Users\Daniel Drechsler\Downloads\[1-7-10]_Lucky_Block_v5-1-0 (1).jar
2015-09-12 18:42 - 2015-09-12 21:03 - 00003968 _____ C:\Users\Daniel Drechsler\Downloads\installer.log
2015-09-12 18:42 - 2015-09-12 18:42 - 03333571 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.7.10-10.13.4.1492-1.7.10-installer-win.exe
2015-09-12 18:34 - 2015-09-12 18:34 - 00937896 _____ (Oracle Corporation) C:\Users\Daniel Drechsler\Downloads\jre-7u80-windows-i586-iftw.exe
2015-09-12 18:34 - 2015-09-07 09:55 - 00274016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2015-09-12 18:34 - 2015-09-07 09:55 - 00191584 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2015-09-12 18:34 - 2015-09-07 09:55 - 00191584 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2015-09-12 18:04 - 2015-09-12 18:04 - 00584288 _____ (Oracle Corporation) C:\Users\Daniel Drechsler\Downloads\jre-8u60-windows-i586-iftw.exe
2015-09-12 18:04 - 2015-09-12 18:04 - 00584288 _____ (Oracle Corporation) C:\Users\Daniel Drechsler\Downloads\chromeinstall-8u60.exe
2015-09-12 17:54 - 2015-02-15 13:01 - 01502808 _____ (Alexander Roshal) C:\Users\Daniel Drechsler\WinRAR.exe
2015-09-12 17:53 - 2015-09-12 17:54 - 00000926 _____ C:\Users\Public\Desktop\WinRAR.lnk
2015-09-12 17:53 - 2015-09-12 17:53 - 02060664 _____ C:\Users\Daniel Drechsler\Downloads\winrar-x64-521d (4).exe
2015-09-12 16:04 - 2015-09-12 16:04 - 02058768 _____ C:\Users\Daniel Drechsler\Downloads\winrar-x64-521d (3).exe
2015-09-12 16:04 - 2015-09-12 16:04 - 02058768 _____ C:\Users\Daniel Drechsler\Downloads\winrar-x64-521d (2).exe
2015-09-12 16:03 - 2015-09-12 16:03 - 00007927 _____ C:\Users\Daniel Drechsler\Downloads\LuckyBlockCustom.zip
2015-09-12 16:01 - 2015-09-12 16:01 - 00346356 _____ C:\Users\Daniel Drechsler\Downloads\Lucky Block Spiral v1.7 - Don't forget to install Loot++ (1).zip
2015-09-12 15:57 - 2015-09-12 15:57 - 00512687 _____ C:\Users\Daniel Drechsler\Downloads\NotEnoughItems-1.7.10-1.0.5.110-universal (1).jar
2015-09-12 15:57 - 2015-09-12 15:57 - 00145722 _____ C:\Users\Daniel Drechsler\Downloads\CodeChickenCore-1.7.10-1.0.7.46-universal.jar
2015-09-12 15:49 - 2015-09-12 15:49 - 00083487 _____ C:\Users\Daniel Drechsler\Downloads\[1-7-10]_Lucky_Block_v5-1-0.jar
2015-09-12 15:48 - 2015-09-12 15:48 - 00418544 _____ C:\Users\Daniel Drechsler\Downloads\Loot++-1.1.1_for_1.8.jar
2015-09-12 15:48 - 2015-09-12 15:48 - 00346356 _____ C:\Users\Daniel Drechsler\Downloads\Lucky Block Spiral v1.7 - Don't forget to install Loot++.zip
2015-09-12 15:43 - 2015-09-12 15:43 - 04435464 _____ C:\Users\Daniel Drechsler\Downloads\Rediscovered-1.7.10-1.0.jar
2015-09-12 15:36 - 2015-09-12 15:36 - 00429635 _____ C:\Users\Daniel Drechsler\Downloads\CodeChickenCore-1.8-1.0.5.34-dev.jar
2015-09-12 15:35 - 2015-09-12 15:35 - 00512687 _____ C:\Users\Daniel Drechsler\Downloads\NotEnoughItems-1.7.10-1.0.5.110-universal.jar
2015-09-12 15:32 - 2015-09-12 15:32 - 00315499 _____ C:\Users\Daniel Drechsler\Downloads\Vanilla-Plus-Mod-1.7.10.jar
2015-09-12 15:31 - 2015-09-12 15:31 - 00214485 _____ C:\Users\Daniel Drechsler\Downloads\Mobshards-Mod-1.7.10.jar
2015-09-12 15:29 - 2015-09-12 15:29 - 02969754 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.7.10_pre4-10.12.2.1149-prerelease-installer.jar
2015-09-12 15:29 - 2015-09-12 15:29 - 02969754 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.7.10_pre4-10.12.2.1149-prerelease-installer.jar
2015-09-12 15:28 - 2015-09-13 21:13 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Server 1.7.10 BrightNights
2015-09-12 15:27 - 2015-09-12 15:27 - 00544821 _____ C:\Users\Daniel Drechsler\Downloads\Waila-1.5.10_1.7.10.jar
2015-09-12 15:24 - 2015-09-12 15:24 - 00180534 _____ C:\Users\Daniel Drechsler\Downloads\Xaeros-Minimap-Mod_v1.6.1.2_Forge_1.7.10.jar
2015-09-12 15:17 - 2015-09-12 15:17 - 00507333 _____ C:\Users\Daniel Drechsler\Downloads\Not-Enough-Items-1.7.10.jar
2015-09-12 15:14 - 2015-09-12 15:14 - 00855419 _____ C:\Users\Daniel Drechsler\Downloads\dungeonpack-1.7.10-1.0.jar
2015-09-12 15:13 - 2015-09-12 15:13 - 00157678 _____ C:\Users\Daniel Drechsler\Downloads\CodeChickenCore-1.7.10.jar
2015-09-12 15:12 - 2015-09-12 15:12 - 00047304 _____ C:\Users\Daniel Drechsler\Downloads\ThebombzenAPI-v2.4.2-mc1.7.10.jar
2015-09-12 15:08 - 2015-09-12 15:08 - 00113256 _____ C:\Users\Daniel Drechsler\Downloads\TooManyItems-Mod-Forge-1.7.10.jar
2015-09-12 14:58 - 2015-09-12 14:57 - 02606517 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.7.10_pre4-10.12.2.1149-prerelease-universal.jar
2015-09-12 14:57 - 2015-09-12 14:57 - 02606517 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.7.10_pre4-10.12.2.1149-prerelease-universal.jar
2015-09-12 14:53 - 2015-09-12 14:53 - 03540778 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.8-11.14.3.1513-installer.jar
2015-09-12 14:51 - 2015-09-12 14:51 - 00091724 _____ C:\Users\Daniel Drechsler\Downloads\Another-one-bites-the-dust-mod-1.7.10.jar
2015-09-12 14:50 - 2015-09-12 14:50 - 11151826 _____ C:\Users\Daniel Drechsler\Downloads\ExtraTiC-1.7.10-1.4.5.jar
2015-09-12 14:48 - 2015-09-12 14:48 - 00421007 _____ C:\Users\Daniel Drechsler\Downloads\IguanaTinkerTweaks-1.7.10-2.1.5.jar
2015-09-12 14:47 - 2015-09-12 14:48 - 00052002 _____ C:\Users\Daniel Drechsler\Downloads\TiCTooltips-mc1.7.10-1.2.5.jar
2015-09-12 14:46 - 2015-09-12 14:46 - 00207593 _____ C:\Users\Daniel Drechsler\Downloads\14139753238_TMechworks-1.7.10.jar
2015-09-12 14:43 - 2015-09-12 14:43 - 05529579 _____ C:\Users\Daniel Drechsler\Downloads\TConstruct-1.7.10-1.8.7.jar
2015-09-12 14:43 - 2015-09-12 14:43 - 00200413 _____ C:\Users\Daniel Drechsler\Downloads\Mantle-1.7.10-0.3.2a.jar
2015-09-12 14:41 - 2015-09-12 14:41 - 22037852 _____ C:\Users\Daniel Drechsler\Downloads\1.7.10_AM2-1.4.0.008.jar
2015-09-12 14:41 - 2015-09-12 14:41 - 00014859 _____ C:\Users\Daniel Drechsler\Downloads\AnimationAPI-1.7.10-1.2.4.jar
2015-09-12 14:38 - 2015-09-12 14:38 - 03268013 _____ C:\Users\Daniel Drechsler\Downloads\forge-1.8-11.14.3.1513-universal.jar
2015-09-12 14:37 - 2015-09-13 21:28 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Modpack
2015-09-12 14:35 - 2015-09-12 14:35 - 01005568 _____ (Microsoft Corporation) C:\Users\Daniel Drechsler\Downloads\dotNetFx45_Full_setup.exe
2015-09-12 14:34 - 2015-09-12 14:34 - 01689260 _____ C:\Users\Daniel Drechsler\Downloads\Modpack-Baukasten.zip
2015-09-12 14:34 - 2015-09-12 14:34 - 01689260 _____ C:\Users\Daniel Drechsler\Downloads\Modpack-Baukasten (1).zip
2015-09-12 14:00 - 2015-09-12 14:00 - 00001021 _____ C:\WINDOWS\system32\SpacedeskSetup.log
2015-09-12 14:00 - 2015-09-12 14:00 - 00000218 _____ C:\WINDOWS\system32\v3DDKAuxiliarySetup.log
2015-09-12 14:00 - 2015-09-12 14:00 - 00000000 ____D C:\Program Files\datronicsoft
2015-09-12 13:58 - 2015-09-12 13:59 - 02252800 _____ C:\Users\Daniel Drechsler\Downloads\spacedesk_64_driver_099h_BETA.msi
2015-09-11 16:02 - 2015-09-11 16:02 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\TeamViewer
2015-09-11 15:56 - 2015-09-11 15:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\TeamViewer
2015-09-11 15:51 - 2015-09-11 15:51 - 00001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-11 15:51 - 2015-09-11 15:51 - 00001111 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-09-11 15:51 - 2015-09-11 15:51 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-11 15:50 - 2015-09-11 15:50 - 08140296 _____ (TeamViewer GmbH) C:\Users\Daniel Drechsler\Downloads\TeamViewer_Setup_de_10.0.45862.exe
2015-09-11 15:50 - 2015-09-11 15:50 - 08140296 _____ (TeamViewer GmbH) C:\Users\Daniel Drechsler\Desktop\TeamViewer_Setup_de_10.0.45862.exe
2015-09-10 21:29 - 2015-09-12 14:31 - 00010764 _____ C:\WINDOWS\setupact.log
2015-09-10 21:29 - 2015-09-10 21:29 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-10 16:16 - 2015-09-10 16:16 - 01867297 _____ C:\Users\Apps\musixmatch-lyrics-cp.spa
2015-09-10 16:16 - 2015-09-10 16:16 - 00607382 _____ C:\Users\Apps\local-files-desktop.spa
2015-09-10 16:16 - 2015-09-10 16:16 - 00449780 _____ C:\Users\snapshot_blob.bin
2015-09-10 16:16 - 2015-09-10 16:16 - 00410937 _____ C:\Users\natives_blob.bin
2015-09-10 16:16 - 2015-09-10 16:16 - 00378993 _____ C:\Users\Apps\creator-about-modals.spa
2015-09-10 14:57 - 2015-09-10 14:59 - 172018392 _____ C:\Users\Daniel Drechsler\Downloads\HubrisServer.zip
2015-09-10 14:49 - 2015-09-10 14:50 - 99171620 _____ C:\Users\Daniel Drechsler\Downloads\MagicWorld2Server.zip
2015-09-10 14:48 - 2015-09-10 14:48 - 02058768 _____ C:\Users\Daniel Drechsler\Downloads\winrar-x64-521d (1).exe
2015-09-10 14:47 - 2015-09-10 14:48 - 148091021 _____ C:\Users\Daniel Drechsler\Downloads\Direwolf20Server.zip
2015-09-10 14:40 - 2015-09-10 14:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Daniel Drechsler\Downloads\MicrosoftFixit.HomeGroup.Run (1).exe
2015-09-10 14:30 - 2015-09-10 14:30 - 00000134 _____ C:\Users\Daniel Drechsler\Desktop\Microsoft Fix*it.url
2015-09-10 14:29 - 2015-09-10 14:29 - 00347816 _____ (Microsoft Corporation) C:\Users\Daniel Drechsler\Downloads\MicrosoftFixit.HomeGroup.Run.exe
2015-09-10 12:03 - 2015-09-10 12:03 - 00001015 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-09-10 12:03 - 2015-09-10 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-09-10 12:03 - 2015-09-10 12:03 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-09-10 12:01 - 2015-09-10 12:02 - 31071896 _____ (TeamSpeak Systems GmbH) C:\Users\Daniel Drechsler\Downloads\TeamSpeak3-Client-win64-3.0.17.exe
2015-09-10 11:59 - 2015-09-10 12:02 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Overwolf
2015-09-09 14:47 - 2015-09-09 14:47 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Daniel Drechsler\Downloads\JRT_7600.exe
2015-09-09 14:35 - 2015-09-09 14:35 - 01660416 _____ C:\Users\Daniel Drechsler\Downloads\AdwCleaner_5.007.exe
2015-09-09 14:35 - 2015-09-09 14:35 - 01660416 _____ C:\Users\Daniel Drechsler\Desktop\AdwCleaner_5.007.exe
2015-09-09 14:21 - 2015-09-09 14:39 - 00002228 _____ C:\WINDOWS\PFRO.log
2015-09-09 12:40 - 2015-09-09 12:40 - 00007487 _____ C:\Users\Daniel Drechsler\Downloads\AdwCleaner logs (05.09-09.09).zip
2015-09-09 12:10 - 2015-02-15 13:01 - 00187480 _____ (Alexander Roshal) C:\Users\Daniel Drechsler\Uninstall.exe
2015-09-09 12:10 - 2015-02-15 13:01 - 00061528 _____ C:\Users\Daniel Drechsler\Ace32Loader.exe
2015-09-09 12:10 - 2015-01-03 22:30 - 00176640 _____ (Igor Pavlov) C:\Users\Daniel Drechsler\7zxa.dll
2015-09-09 12:10 - 2005-08-26 01:50 - 00077312 _____ C:\Users\Daniel Drechsler\UNACEV2.DLL
2015-09-09 12:09 - 2015-09-09 12:10 - 02058768 _____ C:\Users\Daniel Drechsler\Downloads\winrar-x64-521d.exe
2015-09-09 11:38 - 2015-09-09 11:38 - 00380416 _____ C:\Users\Daniel Drechsler\Downloads\Gmer-19357.exe
2015-09-09 11:35 - 2015-09-14 18:39 - 00000000 ____D C:\FRST
2015-09-09 11:35 - 2015-09-09 11:35 - 02190336 _____ (Farbar) C:\Users\Daniel Drechsler\Downloads\FRST64.exe
2015-09-09 11:34 - 2015-09-09 11:34 - 00000000 _____ C:\Users\Daniel Drechsler\defogger_reenable
2015-09-09 11:30 - 2015-09-14 18:15 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-09 11:13 - 2015-09-09 11:13 - 00001348 _____ C:\Users\Daniel Drechsler\Desktop\Revo Uninstaller.lnk
2015-09-09 11:13 - 2015-09-09 11:13 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-09 11:03 - 2015-09-02 02:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 11:03 - 2015-09-02 01:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 11:03 - 2015-09-02 01:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 11:03 - 2015-08-27 07:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 11:03 - 2015-08-27 07:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 11:03 - 2015-08-27 07:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 11:03 - 2015-08-27 06:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 11:03 - 2015-08-27 06:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 11:03 - 2015-08-27 06:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 11:03 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 11:03 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 11:03 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 11:03 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 11:03 - 2015-08-27 06:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 11:03 - 2015-08-27 06:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 11:03 - 2015-08-27 06:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 11:03 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 11:03 - 2015-08-27 06:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 11:03 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 11:03 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 11:03 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 11:03 - 2015-08-27 06:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 11:03 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 11:03 - 2015-08-27 06:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 11:03 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 11:03 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 11:03 - 2015-08-27 06:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 11:03 - 2015-08-27 06:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 11:03 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 11:03 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 11:03 - 2015-08-27 06:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 11:03 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-08 16:06 - 2015-09-08 16:06 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Apple Computer
2015-09-08 16:05 - 2015-09-08 16:06 - 00000000 ____D C:\Program Files (x86)\Guns And Robots
2015-09-08 16:05 - 2015-09-08 16:05 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-09-08 16:05 - 2015-09-08 16:05 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-09-08 16:05 - 2015-09-08 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guns And Robots
2015-09-07 20:15 - 2015-09-14 15:56 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-07 20:15 - 2015-09-07 20:15 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-07 20:15 - 2015-09-07 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-07 20:15 - 2015-09-07 20:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-07 20:15 - 2015-09-07 20:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-07 20:15 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-07 20:15 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-07 20:15 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-07 12:33 - 2015-09-07 12:33 - 00000000 ____D C:\ProgramData\GZ
2015-09-07 11:28 - 2015-09-07 11:28 - 00004272 _____ C:\Users\Daniel Drechsler\AppData\Local\recently-used.xbel
2015-09-07 11:23 - 2015-09-07 11:28 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\gtk-2.0
2015-09-07 11:18 - 2015-09-07 11:18 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\gegl-0.2
2015-09-07 10:02 - 2015-09-07 10:02 - 00001338 _____ C:\Users\Daniel Drechsler\Desktop\eclipsec.exe - Shortcut.lnk
2015-09-05 19:42 - 2015-09-14 16:26 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-05 19:42 - 2015-09-05 19:42 - 00001043 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-05 19:42 - 2015-09-05 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-05 17:39 - 2015-09-05 17:39 - 00002256 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Free Edition.lnk
2015-09-05 17:39 - 2015-09-05 17:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antivirus Free Edition
2015-09-05 17:39 - 2013-04-17 14:59 - 00718840 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-09-05 17:39 - 2013-04-17 14:59 - 00593144 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-09-05 17:39 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-09-05 17:36 - 2015-09-05 17:39 - 00000000 ____D C:\Program Files\Bitdefender
2015-09-05 17:36 - 2015-09-05 17:36 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\QuickScan
2015-09-05 17:36 - 2013-05-28 12:12 - 00382536 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-09-05 17:36 - 2013-04-22 13:21 - 00148696 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-09-05 16:18 - 2015-09-05 16:18 - 00000000 ___HD C:\OneDriveTemp
2015-09-03 18:03 - 2015-09-03 18:03 - 00003798 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2015-09-03 17:47 - 2015-09-03 17:47 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\AVG
2015-09-03 17:46 - 2015-09-03 17:46 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Avg
2015-09-03 17:45 - 2015-09-03 17:48 - 00000000 ____D C:\ProgramData\AVG
2015-09-03 12:38 - 2015-09-03 12:38 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\TuneUp Software
2015-09-03 12:38 - 2015-09-03 12:38 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\AVG2015
2015-09-03 12:37 - 2015-09-07 09:23 - 00000000 ____D C:\ProgramData\AVG2015
2015-09-03 12:37 - 2015-09-07 09:23 - 00000000 ____D C:\Program Files (x86)\AVG
2015-09-03 12:37 - 2015-09-05 17:34 - 00000000 ___HD C:\$AVG
2015-09-03 12:35 - 2015-09-14 13:39 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9FC2608E-444A-4431-ADD3-E1106083797A}
2015-09-03 12:35 - 2015-09-07 09:23 - 00000000 ____D C:\ProgramData\MFAData
2015-09-03 12:35 - 2015-09-03 12:43 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Avg2015
2015-09-03 12:35 - 2015-09-03 12:35 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\MFAData
2015-09-03 12:30 - 2015-09-03 12:30 - 00000000 ____D C:\ProgramData\AVAST Software
2015-09-03 12:14 - 2015-09-03 12:15 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Mozilla
2015-09-03 12:07 - 2015-09-03 12:07 - 00000003 _____ C:\Users\Daniel\HRUPPROG.EXIT
2015-09-03 10:42 - 2015-09-07 09:55 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-09-03 10:40 - 2015-09-10 14:02 - 00000000 ____D C:\Users\Daniel Drechsler\.oracle_jre_usage
2015-09-03 10:40 - 2015-09-03 10:40 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Sun
2015-09-01 15:41 - 2015-09-01 15:41 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\ROR_GMS_controller
2015-09-01 15:30 - 2015-09-01 15:30 - 00001781 _____ C:\Users\Daniel Drechsler\Desktop\Risk of Rain.lnk
2015-09-01 12:42 - 2015-09-01 12:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-31 10:16 - 2015-08-31 10:16 - 03333571 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.7.10-10.13.4.1492-1.7.10-installer-win.exe
2015-08-31 09:49 - 2015-08-31 09:49 - 03563264 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.8-11.14.3.1506-installer-win.exe
2015-08-31 09:09 - 2015-08-20 07:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-31 09:09 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-31 09:09 - 2015-08-20 07:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-31 09:09 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-31 09:09 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-31 09:09 - 2015-08-20 06:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-31 09:09 - 2015-08-20 06:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-31 09:09 - 2015-08-18 08:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-31 09:09 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-31 09:09 - 2015-08-18 08:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-31 09:09 - 2015-08-18 08:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-31 09:09 - 2015-08-18 08:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-31 09:09 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-31 09:09 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-31 09:09 - 2015-08-18 08:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-31 09:09 - 2015-08-18 08:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-31 09:09 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-31 09:09 - 2015-08-18 08:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-31 09:09 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-31 09:09 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-31 09:09 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-31 09:09 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-31 09:09 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-31 09:09 - 2015-08-18 07:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-31 09:09 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-31 09:09 - 2015-08-18 07:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-31 09:09 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-31 09:09 - 2015-08-18 07:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-31 09:09 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-31 09:09 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-31 09:09 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-31 09:09 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-31 09:09 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-31 09:09 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-31 09:09 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-31 09:09 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-31 09:09 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-31 09:09 - 2015-08-18 05:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-29 19:32 - 2015-09-10 14:32 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\ftblauncher
2015-08-29 16:48 - 2015-08-29 16:50 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\NBTExplorer
2015-08-29 16:48 - 2015-08-29 16:48 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\NbtExplorer
2015-08-29 16:40 - 2015-09-03 12:03 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Adobe
2015-08-29 16:32 - 2015-08-29 16:32 - 03262305 _____ C:\Users\Daniel Drechsler\Desktop\forge-1.8-11.14.3.1506-universal.jar
2015-08-29 16:20 - 2015-08-29 16:21 - 25590399 _____ C:\Users\Daniel Drechsler\Desktop\SkyGrid 1_5.zip
2015-08-28 12:44 - 2015-08-28 12:44 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\openvr
2015-08-27 20:55 - 2015-08-27 20:55 - 00012800 _____ () C:\Users\Daniel Drechsler\Desktop\Client.exe
2015-08-26 12:16 - 2015-08-26 12:16 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Skype
2015-08-26 08:41 - 2015-08-26 08:41 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Publishers
2015-08-25 12:37 - 2015-09-09 10:17 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\TmForever
2015-08-25 12:37 - 2015-08-25 12:45 - 00000000 ____D C:\ProgramData\TmForever
2015-08-25 11:54 - 2015-08-25 11:54 - 00009001 _____ C:\Users\Daniel Drechsler\AppData\Roaming\.freeciv-client-rc-2.5
2015-08-25 11:51 - 2015-08-25 11:54 - 00000000 ____D C:\Program Files (x86)\Freeciv-2.5.1-gtk2
2015-08-25 11:51 - 2015-08-25 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freeciv 2.5.1 (GTK+2 client)
2015-08-25 11:29 - 2015-08-25 11:46 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\OpenTTD
2015-08-25 11:29 - 2015-08-25 11:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2015-08-25 11:29 - 2015-08-25 11:29 - 00000000 ____D C:\Program Files\OpenTTD
2015-08-25 11:25 - 2015-09-04 21:20 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\VirtualStore
2015-08-25 11:22 - 2015-08-25 11:22 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bontago
2015-08-25 11:22 - 2015-08-25 11:22 - 00000000 ____D C:\Program Files (x86)\Bontago
2015-08-25 09:58 - 2015-08-25 09:58 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Macromedia
2015-08-25 09:57 - 2015-08-25 10:03 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Deutsche Telekom AG
2015-08-25 09:56 - 2015-09-12 14:32 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Battle.net
2015-08-25 09:56 - 2015-08-25 09:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\WB Games
2015-08-25 09:56 - 2015-08-25 09:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Blizzard Entertainment
2015-08-25 09:54 - 2015-08-25 09:54 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Steam
2015-08-25 09:54 - 2015-08-25 09:54 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\CEF
2015-08-25 09:51 - 2015-09-12 13:38 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Spotify
2015-08-25 09:50 - 2015-09-14 13:35 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\LogMeIn Hamachi
2015-08-25 09:50 - 2015-08-25 09:50 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\LogMeIn
2015-08-24 18:39 - 2015-08-24 18:39 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\MicrosoftEdge
2015-08-24 17:49 - 2015-08-24 17:50 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Armagetron
2015-08-24 17:49 - 2015-08-24 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Armagetron Advanced
2015-08-24 17:49 - 2015-08-24 17:49 - 00000000 ____D C:\ProgramData\Armagetron
2015-08-24 17:49 - 2015-08-24 17:49 - 00000000 ____D C:\Program Files (x86)\Armagetron Advanced
2015-08-24 17:20 - 2015-09-12 19:20 - 00000338 _____ C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job
2015-08-24 17:20 - 2015-08-24 17:20 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2015-08-24 17:20 - 2015-08-24 17:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2015-08-24 12:40 - 2015-08-24 13:30 - 00000000 ____D C:\my_garrrysmod_server
2015-08-24 12:33 - 2015-08-24 13:29 - 00000000 ____D C:\steamcmd
2015-08-22 15:58 - 2015-09-10 14:57 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Server
2015-08-21 13:58 - 2015-08-21 15:00 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Tunngle
2015-08-21 13:58 - 2015-08-21 13:58 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\Tunngle
2015-08-21 13:58 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2015-08-21 13:41 - 2015-08-21 13:41 - 00001002 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-08-21 13:41 - 2015-08-21 13:41 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-08-20 18:08 - 2015-08-20 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-20 13:19 - 2015-08-20 13:19 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Sierra Entertainment
2015-08-19 22:49 - 2015-08-20 14:05 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Tropico 5
2015-08-19 22:42 - 2015-09-09 11:29 - 00000000 ____D C:\Program Files (x86)\Tropico 5
2015-08-19 22:41 - 2015-08-13 05:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 22:41 - 2015-08-13 05:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 22:41 - 2015-08-13 04:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 22:41 - 2015-08-11 11:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 22:41 - 2015-08-11 11:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 22:41 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 22:41 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 22:41 - 2015-08-11 11:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 22:41 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 22:41 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 22:41 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 22:41 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 22:41 - 2015-08-11 10:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 22:41 - 2015-08-11 10:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 22:41 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 22:41 - 2015-08-11 10:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 22:41 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 22:41 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 22:41 - 2015-08-11 10:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 22:41 - 2015-08-11 10:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 22:41 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 22:41 - 2015-08-11 10:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 22:41 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 22:41 - 2015-08-11 10:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 22:41 - 2015-08-11 10:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 22:41 - 2015-08-11 10:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 22:41 - 2015-08-11 10:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 22:41 - 2015-08-11 10:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 22:41 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 22:41 - 2015-08-11 10:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 22:41 - 2015-08-11 10:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 22:41 - 2015-08-11 10:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 22:41 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 22:41 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 22:41 - 2015-08-11 10:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 22:41 - 2015-08-11 10:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 22:41 - 2015-08-11 10:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 22:41 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 22:41 - 2015-08-11 10:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 22:41 - 2015-08-11 10:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 22:41 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 22:41 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 22:41 - 2015-08-11 10:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 22:41 - 2015-08-11 10:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 22:41 - 2015-08-11 10:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 22:41 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 22:41 - 2015-08-11 10:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 22:41 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 22:41 - 2015-08-11 09:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 22:41 - 2015-08-11 09:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 22:41 - 2015-08-11 09:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 22:41 - 2015-08-11 09:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 22:41 - 2015-08-11 09:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 22:41 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 22:41 - 2015-08-11 09:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 22:41 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 22:41 - 2015-08-11 09:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 22:41 - 2015-08-11 09:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 22:41 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 22:41 - 2015-08-11 09:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 22:41 - 2015-08-11 09:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 22:41 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 22:41 - 2015-08-11 09:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 22:41 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 22:41 - 2015-08-11 09:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 22:41 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 22:41 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-19 11:52 - 2015-08-19 11:52 - 00313264 ____N (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-08-18 23:10 - 2015-08-18 23:10 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-08-16 15:09 - 2015-09-09 11:30 - 00000000 ____D C:\Games
2015-08-16 14:43 - 2015-08-16 14:43 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\0ad
2015-08-16 14:38 - 2015-09-03 18:03 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\0 A.D. alpha
2015-08-16 14:04 - 2015-08-16 14:35 - 601503717 _____ C:\Users\Daniel Drechsler\Desktop\0ad-0.0.18-alpha-win32.exe
2015-08-15 19:42 - 2015-08-15 19:42 - 00002279 _____ C:\Users\Daniel Drechsler\Desktop\0 A.D. - CHIP Downloader.lnk
2015-08-15 19:26 - 2015-08-15 19:26 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Aoe3 loader
2015-08-15 19:25 - 2015-08-15 19:25 - 00320552 _____ C:\Users\Daniel Drechsler\Desktop\aoe3loader_1.6.3.zip
2015-08-15 13:21 - 2015-08-08 08:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-15 13:21 - 2015-08-08 08:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-15 13:21 - 2015-08-08 07:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-15 13:21 - 2015-08-08 07:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-15 13:21 - 2015-08-08 07:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-15 13:21 - 2015-08-06 04:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-15 13:21 - 2015-08-06 04:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-15 13:21 - 2015-08-06 03:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-15 13:21 - 2015-08-05 05:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-15 13:21 - 2015-08-05 05:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-15 13:21 - 2015-08-05 05:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-15 13:21 - 2015-08-05 04:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-15 13:21 - 2015-08-05 04:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-15 13:21 - 2015-08-04 05:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-15 13:21 - 2015-08-04 05:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-15 13:21 - 2015-08-04 04:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-15 13:21 - 2015-08-04 03:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-15 13:21 - 2015-08-04 03:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-15 13:21 - 2015-08-03 03:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-15 13:21 - 2015-08-03 03:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-15 13:21 - 2015-08-03 03:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-15 13:21 - 2015-08-03 03:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-15 13:21 - 2015-08-03 03:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-15 13:21 - 2015-08-03 03:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-15 13:21 - 2015-08-03 03:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-15 13:21 - 2015-08-03 03:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-15 13:21 - 2015-08-03 02:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-15 13:21 - 2015-08-03 02:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-15 13:21 - 2015-08-03 02:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-15 13:21 - 2015-08-03 02:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-15 13:21 - 2015-08-03 02:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-15 13:21 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-15 13:21 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-15 13:21 - 2015-08-03 02:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-15 13:21 - 2015-08-03 02:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-15 13:21 - 2015-08-03 02:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-15 13:21 - 2015-08-03 02:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-15 13:21 - 2015-08-03 02:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-15 13:21 - 2015-08-03 02:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-15 13:21 - 2015-08-03 02:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-15 13:21 - 2015-08-03 02:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-15 13:21 - 2015-08-03 02:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-15 13:21 - 2015-08-03 02:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-15 13:21 - 2015-08-03 02:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-15 13:21 - 2015-08-03 02:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-15 13:21 - 2015-08-03 01:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-15 13:20 - 2015-08-04 05:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-15 13:20 - 2015-08-03 03:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-15 13:20 - 2015-08-03 03:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-15 13:20 - 2015-08-03 03:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-15 13:20 - 2015-08-03 02:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-15 13:20 - 2015-08-03 02:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-15 13:20 - 2015-08-03 02:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-15 13:20 - 2015-08-03 02:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-15 13:20 - 2015-08-03 02:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-15 13:20 - 2015-08-03 02:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-15 13:20 - 2015-08-03 02:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-15 13:20 - 2015-08-03 02:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-15 13:20 - 2015-08-03 02:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-15 13:20 - 2015-08-03 02:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-15 13:20 - 2015-08-03 02:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-15 13:10 - 2015-08-15 13:41 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\Stronghold Crusader
2015-08-15 13:00 - 2015-08-15 13:10 - 00001713 _____ C:\Users\Daniel Drechsler\Desktop\Stronghold Crusader - Shortcut.lnk
2015-08-15 13:00 - 2015-08-15 13:00 - 00001705 _____ C:\Users\Daniel Drechsler\Desktop\Stronghold_Crusader_Extreme - Shortcut.lnk
2015-08-15 12:58 - 2015-08-15 12:59 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Stronghold Crusader

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-14 18:38 - 2013-11-30 21:54 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Skype
2015-09-14 18:35 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-14 18:25 - 2013-12-03 14:20 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-14 13:31 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-14 13:30 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-13 20:57 - 2013-11-30 21:39 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\.minecraft
2015-09-12 21:40 - 2014-10-06 14:20 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Spiele
2015-09-12 21:40 - 2013-12-11 17:36 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\.technic
2015-09-12 18:34 - 2015-02-10 17:17 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-12 18:34 - 2015-01-23 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-09-12 18:34 - 2013-11-30 21:45 - 00000000 ____D C:\ProgramData\Oracle
2015-09-12 18:34 - 2013-11-30 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-12 18:19 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-12 17:54 - 2015-08-02 19:56 - 00000000 ____D C:\Users\Daniel Drechsler
2015-09-12 14:51 - 2015-02-12 17:55 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-12 14:32 - 2015-08-02 19:56 - 02077126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-12 14:32 - 2015-07-10 17:34 - 00883662 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-12 14:32 - 2015-07-10 17:34 - 00195796 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-12 14:32 - 2014-05-12 18:04 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-09-12 14:02 - 2015-07-10 13:20 - 00243776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-12 13:07 - 2015-02-17 17:12 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Spotify
2015-09-11 16:31 - 2013-12-21 13:46 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2015-09-10 16:16 - 2015-05-25 19:22 - 00195849 _____ C:\Users\Apps\hub.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 45067320 _____ C:\Users\libcef.dll
2015-09-10 16:16 - 2015-04-26 14:29 - 10207504 _____ C:\Users\icudtl.dat
2015-09-10 16:16 - 2015-04-26 14:29 - 07535672 _____ (Spotify Ltd) C:\Users\Spotify.exe
2015-09-10 16:16 - 2015-04-26 14:29 - 04487782 _____ C:\Users\devtools_resources.pak
2015-09-10 16:16 - 2015-04-26 14:29 - 03457592 _____ (Microsoft Corporation) C:\Users\d3dcompiler_47.dll
2015-09-10 16:16 - 2015-04-26 14:29 - 02184260 _____ C:\Users\cef.pak
2015-09-10 16:16 - 2015-04-26 14:29 - 02157553 _____ C:\Users\Apps\glue-resources.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 02106424 _____ (Microsoft Corporation) C:\Users\d3dcompiler_43.dll
2015-09-10 16:16 - 2015-04-26 14:29 - 02018360 _____ (Spotify Ltd) C:\Users\SpotifyWebHelper.exe
2015-09-10 16:16 - 2015-04-26 14:29 - 01649208 _____ C:\Users\libGLESv2.dll
2015-09-10 16:16 - 2015-04-26 14:29 - 00967736 _____ (The Chromium Authors) C:\Users\ffmpegsumo.dll
2015-09-10 16:16 - 2015-04-26 14:29 - 00900495 _____ C:\Users\Apps\zlink.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00839224 _____ (Spotify Ltd) C:\Users\SpotifyCrashService.exe
2015-09-10 16:16 - 2015-04-26 14:29 - 00768038 _____ C:\Users\Apps\playlist-desktop.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00761075 _____ C:\Users\Apps\artist.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00750083 _____ C:\Users\Apps\browse.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00622967 _____ C:\Users\cef_200_percent.pak
2015-09-10 16:16 - 2015-04-26 14:29 - 00555515 _____ C:\Users\Apps\genre.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00549988 _____ C:\Users\Apps\notification-center.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00538456 _____ C:\Users\Apps\settings.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00528578 _____ C:\Users\Apps\collection.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00520851 _____ C:\Users\Apps\collection-artist.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00520120 _____ C:\Users\Apps\discover.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00488825 _____ C:\Users\Apps\album.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00487229 _____ C:\Users\Apps\article.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00478891 _____ C:\Users\Apps\messages.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00468951 _____ C:\Users\cef_100_percent.pak
2015-09-10 16:16 - 2015-04-26 14:29 - 00466223 _____ C:\Users\Apps\collection-album.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00456502 _____ C:\Users\Apps\social-feed.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00453236 _____ C:\Users\Apps\charts.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00398127 _____ C:\Users\Apps\zlogin.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00395528 _____ C:\Users\Apps\collection-songs.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00387716 _____ C:\Users\Apps\social-chart.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00369607 _____ C:\Users\Apps\buddy-list.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00336806 _____ C:\Users\Apps\radio.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00321096 _____ C:\Users\Apps\chart.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00285977 _____ C:\Users\Apps\folder.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00277789 _____ C:\Users\Apps\share.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00261124 _____ C:\Users\Apps\zlink-queue.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00246967 _____ C:\Users\Apps\profile.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00236915 _____ C:\Users\Apps\search.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00218391 _____ C:\Users\Apps\findfriends.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00186702 _____ C:\Users\Apps\suggest.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00158229 _____ C:\Users\Apps\follow.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00098360 _____ (Spotify Ltd) C:\Users\SpotifyLauncher.exe
2015-09-10 16:16 - 2015-04-26 14:29 - 00088762 _____ C:\Users\Apps\about.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00080952 _____ C:\Users\libEGL.dll
2015-09-10 16:16 - 2015-04-26 14:29 - 00078348 _____ C:\Users\Apps\error.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00073272 _____ C:\Users\wow_helper.exe
2015-09-10 16:16 - 2015-04-26 14:29 - 00053462 _____ C:\Users\Apps\ad.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00050934 _____ C:\Users\Apps\licenses.spa
2015-09-10 16:16 - 2015-04-26 14:29 - 00014086 _____ C:\Users\locales\en-US.pak
2015-09-10 16:16 - 2015-04-26 14:29 - 00009273 _____ C:\Users\locales\el.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00008384 _____ C:\Users\locales\ru.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00008121 _____ C:\Users\locales\ja.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007783 _____ C:\Users\locales\fr-CA.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007735 _____ C:\Users\locales\hu.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007669 _____ C:\Users\locales\pl.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007662 _____ C:\Users\locales\fr.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007627 _____ C:\Users\locales\fi.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007542 _____ C:\Users\locales\es-419.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007515 _____ C:\Users\locales\nl.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007499 _____ C:\Users\locales\es.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007490 _____ C:\Users\locales\de.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007475 _____ C:\Users\locales\it.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007461 _____ C:\Users\locales\tr.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007404 _____ C:\Users\locales\zsm.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007402 _____ C:\Users\locales\pt-BR.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007385 _____ C:\Users\locales\sv.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007290 _____ C:\Users\locales\zh-Hant.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007133 _____ C:\Users\locales\arb.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00007062 _____ C:\Users\locales\en.mo
2015-09-10 16:16 - 2015-04-26 14:29 - 00000020 _____ C:\Users\inst_ver.dat
2015-09-10 16:16 - 2015-04-26 14:29 - 00000000 ____D C:\Users\locales
2015-09-10 16:16 - 2015-04-26 14:29 - 00000000 _____ C:\Users\Daniel.redir
2015-09-10 15:09 - 2014-01-15 16:18 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\TS3Client
2015-09-10 12:00 - 2014-01-15 16:25 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-09-09 14:37 - 2015-02-22 12:30 - 00000000 ____D C:\AdwCleaner
2015-09-09 14:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Registration
2015-09-09 14:20 - 2015-07-10 17:46 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 14:20 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-09 14:07 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-09 14:07 - 2014-10-24 14:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 10:30 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Cursors
2015-09-08 16:06 - 2014-04-05 12:08 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Apple Computer
2015-09-08 09:06 - 2013-12-21 22:33 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\My Games
2015-09-08 08:42 - 2014-06-29 19:27 - 00000000 ____D C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62
2015-09-07 20:20 - 2014-01-30 19:47 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-07 12:14 - 2015-01-29 19:09 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\eclipse
2015-09-07 11:28 - 2015-07-29 15:54 - 00000000 ____D C:\Users\Daniel Drechsler\.gimp-2.8
2015-09-07 11:20 - 2014-06-18 12:14 - 00000000 ____D C:\Users\Daniel Drechsler\.thumbnails
2015-09-05 18:35 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-05 17:44 - 2015-08-02 20:32 - 00000000 ____D C:\Users\Daniel Drechsler\OneDrive
2015-09-05 17:32 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-05 16:56 - 2014-02-24 19:47 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\Sicherung reg
2015-09-03 18:03 - 2015-08-02 19:44 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-03 18:03 - 2014-10-29 16:24 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\Programme
2015-09-03 13:16 - 2014-06-24 14:03 - 00000000 ____D C:\temp
2015-09-03 12:43 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-03 12:20 - 2014-05-14 14:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-03 12:07 - 2014-10-24 16:48 - 00000003 _____ C:\Users\Daniel\HRUPPROG.TXT
2015-09-03 12:07 - 2014-10-24 16:48 - 00000000 ____D C:\Users\Daniel
2015-09-03 12:05 - 2014-06-11 17:31 - 00000000 ____D C:\Program Files (x86)\Deutsche Telekom AG
2015-09-03 10:43 - 2014-08-04 10:46 - 00000000 ____D C:\Program Files\Java
2015-09-03 10:41 - 2015-07-29 14:44 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-09-03 10:14 - 2013-12-21 13:46 - 00000000 ____D C:\Users\Daniel Drechsler\Documents\StarCraft II
2015-09-02 14:52 - 2015-08-02 20:23 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Packages
2015-09-01 15:56 - 2015-06-30 15:09 - 00000000 ___RD C:\Users\Daniel Drechsler\Podcasts
2015-09-01 15:53 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-26 18:37 - 2014-10-24 14:29 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-26 08:54 - 2009-07-14 03:34 - 00000505 _____ C:\WINDOWS\win.ini
2015-08-25 09:56 - 2015-08-02 20:56 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Comms
2015-08-25 09:50 - 2015-07-29 11:52 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\NVIDIA Corporation
2015-08-24 18:33 - 2015-07-27 18:08 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\NVIDIA
2015-08-24 18:33 - 2014-02-24 14:49 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Local\Google
2015-08-24 12:28 - 2015-03-30 18:35 - 03842048 _____ (Blue Byte ) C:\Users\Daniel Drechsler\Desktop\s3.exe
2015-08-23 13:30 - 2014-12-25 11:27 - 02691217 _____ (Blizzard Entertainment) C:\Users\Daniel Drechsler\Desktop\Downloader_Warcraft3_The_Frozen_Throne_deDE.exe
2015-08-23 13:25 - 2014-05-12 18:09 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-08-22 14:33 - 2013-12-11 18:01 - 00000000 ____D C:\Users\Daniel Drechsler\AppData\Roaming\ftblauncher
2015-08-21 13:41 - 2015-08-05 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-08-20 19:59 - 2015-07-27 17:08 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-20 19:59 - 2015-07-27 17:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-20 19:57 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-20 19:57 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-20 19:57 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-20 18:08 - 2014-10-14 13:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-20 18:08 - 2013-11-30 21:53 - 00000000 ____D C:\ProgramData\Skype
2015-08-19 22:01 - 2015-08-02 20:32 - 00002444 _____ C:\Users\Daniel Drechsler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-17 15:41 - 2015-07-25 16:59 - 00000000 ____D C:\Users\Daniel Drechsler\Desktop\spigotserver
2015-08-15 20:33 - 2015-07-27 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-15 13:02 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-15 13:02 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-15 13:00 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-08-15 13:00 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-08-15 13:00 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-08-15 13:00 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-08-15 13:00 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-08-25 11:54 - 2015-08-25 11:54 - 0009001 _____ () C:\Users\Daniel Drechsler\AppData\Roaming\.freeciv-client-rc-2.5
2014-02-09 16:44 - 2014-08-20 07:44 - 0000157 _____ () C:\Users\Daniel Drechsler\AppData\Roaming\WB.CFG
2015-09-07 11:28 - 2015-09-07 11:28 - 0004272 _____ () C:\Users\Daniel Drechsler\AppData\Local\recently-used.xbel

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Daniel Drechsler\7zxa.dll
C:\Users\Daniel Drechsler\Ace32Loader.exe
C:\Users\Daniel Drechsler\Rar.exe
C:\Users\Daniel Drechsler\RarExt.dll
C:\Users\Daniel Drechsler\RarExt32.dll
C:\Users\Daniel Drechsler\rarnew.dat
C:\Users\Daniel Drechsler\UNACEV2.DLL
C:\Users\Daniel Drechsler\Uninstall.exe
C:\Users\Daniel Drechsler\UnRAR.exe
C:\Users\Daniel Drechsler\WinRAR.exe
C:\Users\Daniel Drechsler\zipnew.dat


Einige Dateien in TEMP:
====================
C:\Users\Daniel Drechsler\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\sqlite3.dll
C:\Users\Daniel Drechsler\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-14 13:44

==================== Ende von FRST.txt ============================

schrauber 15.09.2015 16:45
Chrome updaten. Telekom Browser deinstallieren.

Noch Probleme?

Panzer0312 16.09.2015 20:09
Hi schrauber,
vielen Dank für die Lösung meines Problemes... leider gibt es auch seitdem Chrome die Tabs öffnete bei anderen Anwendungen Probleme. (z.b. öffnet sich bei Ausführen von Steam kurz eine Cmd und nach einer Weile wird es von Werbung übermüllt, dass man dort nichts mehr machen kann... oder auch Programme wie: der Battle.net Launcher funktioniert nach einer Weile nicht mehr und schließt sich (sc2 laggt z.B. auch (war davor nicht so) (Bitdefender ist dabei auch betroffen) :-(
soll ich dabei ein neues Thema auf machen oder es hier lassen?

LG Daniel

Habe grade gemerkt, dass sich während des afk seins dauernd diese Seite öffnet :-( https://n162adserv.com/impression.gif?b=1478&p=464&ch=eu.battle.net&ap=&cps=&c=404&l=DE&h=3ff0fb6eb31092aad0a3e4abb3867268&t=1442430429092&tz=1.0&sh=1080&sw=1920&u=http%3A%2 F%2Fwww.xl415.com%2Fapu.php%3Fn%3D%26zoneid%3D11584%26cb%3D378011075%26popunder%3D1%26direct%3D1

schrauber 17.09.2015 19:13
FRST öffnen, Haken setzen bei Addition und scannen, poste bitte beide Logfiles.

Panzer0312 18.09.2015 14:58
Hi Schrauber;
da ich mal wieder Probleme mit dem Aufspalten hab, hänge ich sie hinten dran:
Anhang 76069

Anhang 76070

LG Daniel

schrauber 19.09.2015 16:00
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307


Alle Zeitangaben in WEZ +1. Es ist jetzt 13:53 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22