Master1991 | 18.07.2017 20:40 | Additions: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-07-2017
durchgeführt von *** (18-07-2017 21:35:16)
Gestartet von C:\Users\***\Downloads
Windows 10 Pro Version 1703 (X64) (2017-04-20 17:07:19)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1505119879-566967852-3136431682-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1505119879-566967852-3136431682-503 - Limited - Disabled)
*** (S-1-5-21-1505119879-566967852-3136431682-1001 - Administrator - Enabled) => C:\Users\***
Gast (S-1-5-21-1505119879-566967852-3136431682-501 - Limited - Disabled)
SophosSAUDENNISaaa (S-1-5-21-1505119879-566967852-3136431682-1003 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Sophos Anti-Virus (Enabled - Up to date) {FFADE7EA-DC92-4602-D6B2-626CD3450A0F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Sophos Anti-Virus (Enabled - Up to date) {44CC060E-FAA8-498C-EC02-591EA8C240B2}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 0.0.503316767.10168048 - Audible, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
calibre 64bit (HKLM\...\{C50C44CA-48EE-4052-B629-6413080A0DDD}) (Version: 2.63.0 - Kovid Goyal)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.1.04011 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{0FC5E486-6EA0-4665-A39D-DCC016D88632}) (Version: 4.1.04011 - Cisco Systems, Inc.) Hidden
CodeBlocks (HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 30.4.22 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DVDFab Media Player 2 (HKLM-x32\...\DVDFab Media Player 2_is1) (Version: 2.5.0.3 - Fengtao Software Inc.)
DVDFab Media Player 3 (HKLM-x32\...\DVDFab Media Player 3_is1) (Version: 3.0.0.1 - Fengtao Software Inc.)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 18.4 - Thüringer Landesfinanzdirektion)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FreeFileSync 8.10 (HKLM-x32\...\FreeFileSync_is1) (Version: 8.10 - www.FreeFileSync.org)
Git version 2.12.2.2 (HKLM\...\Git_is1) (Version: 2.12.2.2 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{55669453-883A-4F15-9D3B-BC990F5C9A32}) (Version: 6.0.6 - Intel Corporation)
IrfanView 4.44 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.44 - Irfan Skiljan)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation)
Joe (HKLM-x32\...\{43290FA7-B861-4BC7-8AAA-00D64E87EB30}) (Version: 5.03.0000 - Wirth IT Design)
Joe (HKLM-x32\...\{F8C986EA-13F8-4B39-91C3-A6B9A851CD34}) (Version: 4.01.0000 - Wirth IT Design)
LibreOffice 5.1.5.2 (HKLM-x32\...\{03E3A5F6-2B2C-4CF6-9C18-FBB28AFA512B}) (Version: 5.1.5.2 - The Document Foundation)
MakeMKV v1.10.5 (HKLM-x32\...\MakeMKV) (Version: v1.10.5 - GuinpinSoft inc)
MATLAB R2016b (HKLM\...\Matlab R2016b) (Version: 9.1 - MathWorks)
Microsoft OneDrive (HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 1.7.2 - Microsoft Corporation)
MiKTeX 2.9 (HKLM\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
ModelSim - Intel FPGA Starter Edition 16.1.0.196 (HKLM\...\ModelSim - Intel FPGA Starter Edition 16.1.0.196) (Version: 16.1 - Intel Corporation)
Mozilla Firefox 54.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 de)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
Mozilla Thunderbird 45.8.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.8.0 (x86 de)) (Version: 45.8.0 - Mozilla)
NetBeans IDE 8.1 (HKLM\...\nbi-nb-base-8.1.0.0.201510222201) (Version: 8.1 - NetBeans.org)
Node.js (HKLM-x32\...\{AB6EBCFD-32DA-43C4-AB2B-9461433CB57A}) (Version: 7.0.0 - Node.js Foundation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
odrive (HKLM\...\{6273F285-379C-4044-AFEC-F04611261668}) (Version: 1.00.5659 - Oxygen Cloud, Inc.) Hidden
odrive (HKLM-x32\...\{912b68dd-1d47-4b3a-bde9-ca15e85f597b}) (Version: 1.0.5659 - Oxygen Cloud, Inc.)
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: - )
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
Quartus Prime Lite Edition (Free) 16.1.0.196 (HKLM\...\Quartus Prime Lite Edition (Free) 16.1.0.196) (Version: 16.1 - Intel Corporation)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
Rosetta Stone Language Training (HKLM-x32\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.13.0 - Rosetta Stone, Ltd)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.01.00.04 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Simulationcraft(x64) version 7.0.3.03 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 7.0.3.03 - Simulationcraft)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Social2Search (HKLM\...\9069783d92779bd29ad0641563a66baf) (Version: 11.14.1.86 (i1.0) - Social2Search) <==== ACHTUNG
Sophos Anti-Virus (HKLM-x32\...\{788B9788-7F03-4A2B-8258-3445C0278C33}) (Version: 10.7.2.49 - Sophos Limited)
Sophos AutoUpdate (HKLM-x32\...\{AFBCA1B9-496C-4AE6-98AE-3EA1CFF65C54}) (Version: 5.7.220 - Sophos Limited)
Sophos Endpoint Defense (HKLM\...\Sophos Endpoint Defense) (Version: 1.0.0.265 - Sophos Limited)
Sophos Network Threat Protection (HKLM\...\{66967E5F-43E8-4402-87A4-04685EE5C2CB}) (Version: 1.2.2.50 - Sophos Limited)
Sophos System Protection (HKLM-x32\...\{1093B57D-A613-47F3-90CF-0FD5C5DCFFE6}) (Version: 1.3.1 - Sophos Limited)
Spotify (HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\Spotify) (Version: 1.0.58.573.g57c9cd87 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steganos Live Encryption Engine 15 (HKLM-x32\...\{43DDC07F-2867-4407-B4FF-28EB7BA6A846}) (Version: 15.2.1 - Steganos GmbH)
Stickies 9.0b (HKLM-x32\...\ZhornStickies) (Version: - Zhorn Software)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.64630 - TeamViewer)
TeXstudio 2.11.0 (HKLM-x32\...\TeXstudio_is1) (Version: 2.11.0 - Benito van der Zander)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.6.0 - Unified Intents AB)
Up Pro version 0.9.35.2 (HKLM-x32\...\{40369812-21FB-4BE0-8508-387636F329D1}_is1) (Version: 0.9.35.2 - Up Pro)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WeatherBuddy (HKLM-x32\...\{58E801CB-F746-428A-9211-E69469B220BB}) (Version: 1.0.21 - ELLS LLC) <==== ACHTUNG
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows-Treiberpaket - Altera (WinUSB) JTAG cables (02/11/2014,2014.02.11 ) (HKLM\...\6D27F566AFC20C2281F903D0D9620D335BBAF1AB) (Version: 02/11/2014,2014.02.11 - Altera)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WinSCP 5.9 (HKLM-x32\...\winscp3_is1) (Version: 5.9 - Martin Prikryl)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
yEd Graph Editor 3.17 (HKLM\...\3309-7404-0599-8908) (Version: 3.17 - yWorks GmbH)
YoutubeAdBlock (HKLM-x32\...\E3605470-291B-44EB-8648-745EE356599A) (Version: 2.0.0.279 - Company Inc.) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-6A1CBC5EACA5}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{12169bcc-8965-4f35-93ae-e3c8554b7599}\InprocServer32 -> C:\WINDOWS\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{35B08E96-DA1F-4321-BF80-D6B53C20F3CF}\InprocServer32 -> C:\Users\***\.odrive\bin\6207\x64\SyncedOverlay.dll ()
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{4585263E-BEF5-4A39-A2E8-8F69E0054F0C}\InprocServer32 -> C:\Users\***\.odrive\bin\6207\x64\ActiveOverlay.dll ()
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{679ADC87-66BB-43BF-9DC3-3DE2E4A32B8C}\InprocServer32 -> C:\Users\***\.odrive\bin\6207\x64\ContextMenu.dll ()
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{E07BCA71-E88B-4A5E-BA46-69A52D6B9B20}\InprocServer32 -> C:\Users\***\.odrive\bin\6207\x64\LockedOverlay.dll ()
CustomCLSID: HKU\S-1-5-21-1505119879-566967852-3136431682-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ 0drive.Active] -> {4585263E-BEF5-4A39-A2E8-8F69E0054F0C} => C:\Users\***\.odrive\bin\6207\x64\ActiveOverlay.dll [2017-03-04] ()
ShellIconOverlayIdentifiers: [ 0drive.Locked] -> {E07BCA71-E88B-4A5E-BA46-69A52D6B9B20} => C:\Users\***\.odrive\bin\6207\x64\LockedOverlay.dll [2017-03-04] ()
ShellIconOverlayIdentifiers: [ 0drive.Synced] -> {35B08E96-DA1F-4321-BF80-D6B53C20F3CF} => C:\Users\***\.odrive\bin\6207\x64\SyncedOverlay.dll [2017-03-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [ 0drive] -> {679ADC87-66BB-43BF-9DC3-3DE2E4A32B8C} => C:\Users\***\.odrive\bin\6207\x64\ContextMenu.dll [2017-03-04] ()
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers01: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-03-08] ()
ContextMenuHandlers01: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
ContextMenuHandlers01: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2017-04-25] (Sophos Limited)
ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Keine Datei
ContextMenuHandlers02: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2017-04-25] (Sophos Limited)
ContextMenuHandlers04: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers04: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
ContextMenuHandlers04: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2017-04-25] (Sophos Limited)
ContextMenuHandlers05: [ 0drive] -> {679ADC87-66BB-43BF-9DC3-3DE2E4A32B8C} => C:\Users\***\.odrive\bin\6207\x64\ContextMenu.dll [2017-03-04] ()
ContextMenuHandlers05: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers06: [ 0drive] -> {679ADC87-66BB-43BF-9DC3-3DE2E4A32B8C} => C:\Users\***\.odrive\bin\6207\x64\ContextMenu.dll [2017-03-04] ()
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers06: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2017-04-25] (Sophos Limited)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Keine Datei
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0430631C-1AF9-451E-9AEE-3A1A86E8A998} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {0B69BD62-50C1-415D-A310-D07A82BAE2F7} - System32\Tasks\U2_2C6A44CB-AD42-4731-A544-3FBD3D83AB5B => rundll32 "C:\Program Files (x86)\YiuAskU2\EUJHowC.dll",#1
Task: {2B0CD646-23DD-4205-B0DD-3973586DB101} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {30F0E87D-3218-498E-95C3-62439A0B1C4F} - System32\Tasks\Bulk SMTP Mikinos => C:\WINDOWS\system32\rundll32.exe "C:\Program Files\Bulk SMTP Mikinos\Bulk SMTP Mikinos.dll",vpMwTenvT <==== ACHTUNG
Task: {347F33CB-BE6C-4D96-AEB4-832FA061742D} - System32\Tasks\MATLAB R2016b Startup Accelerator => E:\Matlab\bin\win64\MATLABStartupAccelerator.exe [2016-07-22] ()
Task: {3582FC1A-1FFD-4FA5-BACA-4F5C93FC1354} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-25] (Google Inc.)
Task: {3AA54152-0F35-4DFC-AD8C-A1F9F0B8A338} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {49E4F9C7-3B83-4D70-BA64-09D567FC16CD} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-11] (Adobe Systems Incorporated)
Task: {4AEB2C41-A7DA-4965-AE6C-F303DD0B3D3D} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe
Task: {4E106BCB-BBC1-4789-8ED6-34B7BD36F7E7} - System32\Tasks\9069783d92779bd29ad0641563a66baf => sc start 9069783d92779bd29ad0641563a66baf <==== ACHTUNG
Task: {5E85FA1E-40CC-44A3-A733-A2759212C456} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
Task: {6055DD6C-DE62-4850-9D3D-46D74F076D33} - System32\Tasks\2C6A44CB-AD42-4731-A544-3FBD3D83AB5B2 => rundll32 "C:\Program Files (x86)\YiuAskU\nISNhLA.dll",#1 <==== ACHTUNG
Task: {68B8315F-0289-4AD8-9DBB-A917E970D25D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {70E69644-1EC2-4ED7-848A-18B312B4ABFE} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.EXE /NOUACCHECK
Task: {73A96261-91EA-445C-8C0C-895ACFFB640E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {764051A1-FECA-4AF9-9932-BB6C66DF9885} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {768446D0-8F2F-4D24-AACB-77FBDA2165E9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {9965EF27-4E5E-4788-A807-FF581C62F3FE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {A1A5D3D9-6FCE-46CE-9870-DEF6EBE6FC0B} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
Task: {B9B0F4B8-B7CA-4F7D-8C99-718ACD60C007} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-25] (Google Inc.)
Task: {C6F0A288-3D22-4C09-B83F-A2CCBD3059A6} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-25] (Dropbox, Inc.)
Task: {DFA72166-5E63-4A83-BEBC-41C75D913B19} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {E34F5027-196E-4BCB-9705-F744535EA4C4} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-***l@web.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {EB214995-796D-4DAA-AB5F-82CCA2C10D85} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
Task: {F0C10851-8114-44BB-8ABB-E561CCDD851B} - System32\Tasks\2C6A44CB-AD42-4731-A544-3FBD3D83AB5B => rundll32 "C:\Program Files (x86)\YiuAskU\nISNhLA.dll",#1 <==== ACHTUNG
Task: {F4ED6C87-D321-4CD6-9A3C-FCEE3D07000F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-25] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\2C6A44CB-AD42-4731-A544-3FBD3D83AB5B.job => C:\Program Files (x86)\YiuAskU\nISNhLA.dll <==== ACHTUNG
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\MATLAB R2016b Startup Accelerator.job => E:\Matlab\bin\win64\MATLABStartupAccelerator.exe
Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== ACHTUNG
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\***\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-02-15 21:01 - 2016-02-15 21:01 - 00031256 _____ () C:\WINDOWS\System32\us008lm.dll
2017-05-09 17:31 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-04-26 17:12 - 2016-10-25 01:59 - 00311808 _____ () E:\altera\quartus\bin64\jtagserver.exe
2017-04-26 17:12 - 2016-10-25 01:56 - 00056320 _____ () E:\altera\quartus\bin64\ccl_ver.dll
2017-04-26 17:12 - 2016-10-25 07:27 - 00064512 _____ () E:\altera\quartus\bin64\pgm_pgmdrv_apu_usb.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00179200 _____ () E:\altera\quartus\bin64\ccl_mem.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00427520 _____ () E:\altera\quartus\bin64\CCL_GEN.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00185344 _____ () E:\altera\quartus\bin64\CCL_FIO.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00823296 _____ () E:\altera\quartus\bin64\CCL_MSG.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00056832 _____ () E:\altera\quartus\bin64\CCL_ERR.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00054272 _____ () E:\altera\quartus\bin64\ccl_thr.dll
2017-04-26 17:13 - 2016-10-25 00:49 - 00007168 _____ () E:\altera\quartus\bin64\tbbamalloc.dll
2017-04-26 17:12 - 2015-12-09 01:54 - 00903680 _____ () E:\altera\quartus\bin64\boost_regex-mt.dll
2017-04-26 17:12 - 2015-12-09 01:54 - 00019456 _____ () E:\altera\quartus\bin64\boost_system-mt.dll
2017-04-26 17:12 - 2015-12-09 01:54 - 00116736 _____ () E:\altera\quartus\bin64\boost_filesystem-mt.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00156672 _____ () E:\altera\quartus\bin64\ccl_cfg_ini.dll
2017-04-26 17:12 - 2016-10-25 08:49 - 00132096 _____ () E:\altera\quartus\bin64\ccl_qtl.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00100352 _____ () E:\altera\quartus\bin64\CCL_BIG.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00108032 _____ () E:\altera\quartus\bin64\CCL_FSTR.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00057856 _____ () E:\altera\quartus\bin64\ccl_tst.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00378368 _____ () E:\altera\quartus\bin64\ccl_atcl.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00046592 _____ () E:\altera\quartus\bin64\ccl_xml.dll
2017-04-26 17:12 - 2016-10-25 08:49 - 00158720 _____ () E:\altera\quartus\bin64\DB_PDB.dll
2017-04-26 17:12 - 2016-10-25 01:57 - 00771072 _____ () E:\altera\quartus\bin64\ccl_sqlite3.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00076800 _____ () E:\altera\quartus\bin64\ccl_zlib.dll
2017-04-26 17:12 - 2016-10-25 01:56 - 00018944 _____ () E:\altera\quartus\bin64\CCL_CLW.dll
2017-04-26 17:12 - 2016-10-25 00:49 - 00002048 _____ () E:\altera\quartus\bin64\icudt34.dll
2016-08-28 15:57 - 2016-08-28 15:57 - 00233608 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\http.plg
2016-08-28 15:56 - 2016-08-28 15:56 - 00140696 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\ip.plg
2016-08-28 15:57 - 2016-08-28 15:57 - 00119344 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\ipv6.plg
2016-08-28 15:56 - 2016-08-28 15:56 - 00076704 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\portmap.plg
2016-08-28 15:56 - 2016-08-28 15:56 - 00165000 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\tcp.plg
2016-08-28 15:56 - 2016-08-28 15:56 - 00148440 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\udp.plg
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-17 21:58 - 2017-03-04 05:38 - 00715020 _____ () C:\Users\***\.odrive\bin\6207\x64\ContextMenu.dll
2017-03-17 21:58 - 2016-01-11 22:53 - 00130560 _____ () C:\Users\***\.odrive\bin\6207\x64\win32api.pyd
2017-03-17 21:58 - 2016-01-11 22:52 - 00137728 _____ () C:\Users\***\.odrive\bin\6207\x64\pywintypes27.dll
2017-03-17 21:58 - 2016-01-11 22:54 - 00548864 _____ () C:\Users\***\.odrive\bin\6207\x64\pythoncom27.dll
2017-03-17 21:58 - 2016-01-11 22:53 - 00017920 _____ () C:\Users\***\.odrive\bin\6207\x64\win32trace.pyd
2017-03-17 21:58 - 2016-06-27 17:26 - 00051712 _____ () C:\Users\***\.odrive\bin\6207\x64\_socket.pyd
2017-03-17 21:58 - 2016-01-11 22:53 - 00223744 _____ () C:\Users\***\.odrive\bin\6207\x64\win32gui.pyd
2017-03-17 21:58 - 2016-01-11 22:57 - 00522240 _____ () C:\Users\***\.odrive\bin\6207\x64\win32com.shell.shell.pyd
2017-03-17 21:58 - 2016-06-27 17:25 - 00121344 _____ () C:\Users\***\.odrive\bin\6207\x64\_ctypes.pyd
2017-03-18 22:59 - 2017-03-20 06:43 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2014-09-08 13:39 - 2014-09-08 13:39 - 00464608 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2017-07-05 17:01 - 2016-09-27 17:23 - 00089600 _____ () C:\WINDOWS\SYSTEM32\CmdRtr64.DLL
2017-07-05 17:01 - 2016-09-27 17:21 - 00363520 _____ () C:\WINDOWS\SYSTEM32\APOMgr64.DLL
2016-09-19 11:30 - 2016-08-16 03:26 - 01623040 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
2016-10-25 10:57 - 2016-10-25 10:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-05-23 17:36 - 2017-05-23 17:36 - 03139496 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-22 22:07 - 2017-06-22 22:07 - 00766464 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-06-22 22:07 - 2017-06-22 22:07 - 10628608 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-06-22 22:07 - 2017-06-22 22:07 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-06-13 15:52 - 2017-06-13 15:52 - 04323840 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1706.1602.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-06-13 15:50 - 2017-06-13 15:51 - 03500456 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1706.1602.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 23624704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-07-09 12:49 - 2017-07-09 12:49 - 08850944 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-07-09 12:49 - 2017-07-09 12:49 - 27590144 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 00428032 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 20649984 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 02305536 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 02856448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-05-23 17:36 - 2017-05-23 17:36 - 03139496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-05 21:14 - 2017-06-05 21:15 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2016-07-25 18:46 - 2016-07-25 18:47 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-07-09 12:49 - 2017-07-09 12:49 - 01127936 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-05-05 11:45 - 2017-05-05 11:46 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2015-07-24 14:34 - 2015-07-24 14:34 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2017-05-09 17:31 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-05-09 17:32 - 2017-05-03 22:20 - 65709176 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-07-18 19:13 - 2017-07-18 19:13 - 00098816 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32api.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00110080 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\pywintypes27.dll
2017-07-18 19:13 - 2017-07-18 19:13 - 00364544 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\pythoncom27.dll
2017-07-18 19:13 - 2017-07-18 19:13 - 00320512 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32com.shell.shell.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00914432 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_hashlib.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 01176576 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._core_.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00806400 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._gdi_.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00816128 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._windows_.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 01067008 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._controls_.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00733184 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._misc_.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00682496 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\pysqlite2._sqlite.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00088064 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_ctypes.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00686080 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\unicodedata.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00119808 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32file.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00108544 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32security.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00007168 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\hashobjs_ext.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00017920 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\thumbnails_ext.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00088064 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\usb_ext.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00012800 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\common.time34.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00018432 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32event.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00167936 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32gui.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00046080 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_socket.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 01303552 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_ssl.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00128512 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_elementtree.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00127488 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\pyexpat.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00038912 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32inet.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00036864 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_psutil_windows.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00524248 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\windows._lib_cacheinvalidation.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00011264 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32crypt.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00123392 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._wizard.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00077312 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._html2.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00027648 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_multiprocessing.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00020480 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\_yappi.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00035840 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32process.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00078848 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\wx._animate.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00024064 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32pipe.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00010240 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\select.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00025600 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32pdh.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00017408 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32profile.pyd
2017-07-18 19:13 - 2017-07-18 19:13 - 00022528 ____R () C:\Users\***\AppData\Local\Temp\_MEI120682\win32ts.pyd
2016-09-19 11:30 - 2015-02-24 23:44 - 00783360 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\_hashlib.pyd
2016-09-19 11:30 - 2015-02-24 23:43 - 00047104 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\_socket.pyd
2016-09-19 11:30 - 2015-02-24 23:43 - 00009728 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\select.pyd
2016-09-19 11:30 - 2015-02-24 23:43 - 00758784 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\unicodedata.pyd
2016-09-19 11:30 - 2015-02-24 23:43 - 00084992 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\_ctypes.pyd
2016-09-19 11:30 - 2015-02-24 23:43 - 00053760 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\_bz2.pyd
2016-09-19 11:30 - 2015-10-25 05:32 - 01861120 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtCore.pyd
2016-09-19 11:30 - 2015-10-25 05:00 - 00075264 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\sip.pyd
2016-09-19 11:30 - 2015-02-24 23:43 - 00137216 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\_lzma.pyd
2016-09-19 11:30 - 2015-10-25 05:36 - 02002944 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtGui.pyd
2016-09-19 11:30 - 2015-10-25 05:43 - 04101120 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtWidgets.pyd
2016-09-19 11:30 - 2015-12-16 00:18 - 00039424 _____ () C:\Program Files (x86)\TradeSkillMaster Application\app\psutil._psutil_windows.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00746816 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-07-13 22:05 - 2017-07-12 21:58 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-06-15 12:23 - 2017-07-12 21:58 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00125904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 01862992 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00020432 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-06-15 12:23 - 2017-07-12 21:58 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-07-13 22:05 - 2017-07-12 21:58 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-06-15 12:23 - 2017-07-12 21:58 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-07-13 22:05 - 2017-07-12 21:59 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-07-13 22:05 - 2017-07-12 21:58 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-07-13 22:05 - 2017-07-12 21:59 - 00181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-06-15 12:23 - 2017-07-12 22:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-07-13 22:05 - 2017-07-12 21:59 - 00024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-07-13 22:05 - 2017-07-12 21:59 - 01637688 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-06-15 12:23 - 2017-07-12 22:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-06-15 12:23 - 2017-07-12 22:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-07-13 22:05 - 2017-07-12 22:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-12-09 16:09 - 2016-12-09 16:09 - 52051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-12-02 02:54 - 2016-12-02 02:54 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 16:09 - 2016-12-09 16:09 - 00099416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-12-02 02:54 - 2016-12-02 02:54 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2017-07-15 15:29 - 00013566 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 clients2.google.com
127.0.0.1 v1.ff.avast.com
127.0.0.1 vlcproxy.ff.avast.com
127.0.0.1 gf.tools.avast.com
127.0.0.1 pair.ff.avast.com
127.0.0.1 ipm-provider.ff.avast.com
127.0.0.1 ipm-provider.ff.avast.com
127.0.0.1 ipm-provider.ff.avast.com
127.0.0.1 id.avast.com
127.0.0.1 v4618535.iavs9x.u.avast.com
127.0.0.1 v4618535.ivps9x.u.avast.com
127.0.0.1 v4618535.ivps9tiny.u.avast.com
127.0.0.1 v4618535.vpsnitro.u.avast.com
127.0.0.1 v4618535.vpsnitrotiny.u.avast.com
127.0.0.1 v4618535.iavs5x.u.avast.com
127.0.0.1 v7.stats.avast.com
127.0.0.1 v7.stats.avast.com
127.0.0.1 v7event.stats.avast.com
127.0.0.1 sm00.avast.com
127.0.0.1 submit5.avast.com
127.0.0.1 geoip.avast.com
127.0.0.1 w9448963.iavs9x.u.avast.com
127.0.0.1 w9448963.ivps9x.u.avast.com
127.0.0.1 w9448963.ivps9tiny.u.avast.com
127.0.0.1 w9448963.vpsnitro.u.avast.com
127.0.0.1 w9448963.vpsnitrotiny.u.avast.com
127.0.0.1 w9448963.iavs5x.u.avast.com
127.0.0.1 v7.stats.avast.com
127.0.0.1 v7.stats.avast.com
127.0.0.1 v7event.stats.avast.com
Da befinden sich 333 zusätzliche Einträge.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\***\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\03357_upekkha_2560x1080.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\StartupFolder: => "odrive.lnk"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "CL04YP20DFRWQ7T"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "5TLM3AUQLYFV5ON"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "FULKLUTFVSOODJV"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "MC7MEQEBHRC8PCS"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "0UKJWQG3XLSBYY4"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "E4U4DYGO85T49D2"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "4861206DOOA101C"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "F8SUNXVC7QWTOOD"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "SVZWQFB17CNYHUE"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "ZF1EEX2DK2JLDUG"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "UC6I7LB58GEB40G"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "XMD9GLAIL0901QN"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "PHZ5KB27COR8SX2"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "467IPYRY8ESVDOB"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "H7M12ML8A93J3M1"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "ZG0GLXIMTPWFRF0"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "082NNTU50H0R0A9"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "Z30EXMJL1G3FYWX"
HKU\S-1-5-21-1505119879-566967852-3136431682-1001\...\StartupApproved\Run: => "WeatherBuddy"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{E997F6FB-1D95-4C40-825C-B8E49264BCD1}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{F6A9441D-8A91-48A9-BE1D-E61BE38E07BB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe
FirewallRules: [{299E6EE1-F137-4061-A30F-0586F2756A89}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe
FirewallRules: [{B476B051-C73B-4C36-A2EB-84BCD689D0D7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{84705CE8-32A4-4B4B-8DD0-92EF2DEDC9B5}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe
FirewallRules: [{87183F6A-DF35-42A4-85E5-D43AA0A58E1C}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{1D7F6AFB-9563-48F5-80B4-522424B4A698}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [UDP Query User{92B18C6F-CF85-4015-9E03-B59172D915D3}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [TCP Query User{0187E4F7-3A17-4D92-9AFE-2FD4113B3A7D}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [{520C62A1-A625-447E-B1AB-90D939CF8C49}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{65850A49-42D8-49CB-83D3-0057A16F2EBB}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{4CAD215E-181E-417F-B895-BF366E6B813D}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{CF4B5E8E-9D8F-47D3-BCDD-CDAC2B63258A}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [UDP Query User{5E60F8B0-74E3-4669-8F0F-7701DEC46DFD}C:\program files (x86)\makemkv\makemkvcon64.exe] => (Block) C:\program files (x86)\makemkv\makemkvcon64.exe
FirewallRules: [TCP Query User{F452E079-2AE7-4FD0-A4C2-8C872332F565}C:\program files (x86)\makemkv\makemkvcon64.exe] => (Block) C:\program files (x86)\makemkv\makemkvcon64.exe
FirewallRules: [{7AEADE6F-1EE6-4A31-B469-DDF1E9C18337}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{867B4CF3-5EBE-4558-BAE1-A95BF4671DA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [UDP Query User{8DB9955A-5E54-4537-A7B8-AD294A8B529B}E:\spiele\overwatch\overwatch.exe] => (Allow) E:\spiele\overwatch\overwatch.exe
FirewallRules: [TCP Query User{40F36F2E-7CB7-41A6-8010-6ECDBD75F41F}E:\spiele\overwatch\overwatch.exe] => (Allow) E:\spiele\overwatch\overwatch.exe
FirewallRules: [UDP Query User{7CA6DDE1-726A-4C40-AC05-2867DCE8F6F0}C:\program files\windowsapps\arduinollc.arduinoide_1.8.1.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.8.1.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [TCP Query User{4FFDBA27-A5B3-421A-AA65-E7ABBE4AE16F}C:\program files\windowsapps\arduinollc.arduinoide_1.8.1.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.8.1.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [UDP Query User{78717CFC-DAB4-409E-9D89-90117FE2B283}E:\matlab\bin\win64\matlab.exe] => (Allow) E:\matlab\bin\win64\matlab.exe
FirewallRules: [TCP Query User{8102AC8F-6943-4AAF-A7C5-F365E79BBBDA}E:\matlab\bin\win64\matlab.exe] => (Allow) E:\matlab\bin\win64\matlab.exe
FirewallRules: [UDP Query User{82AEA682-44BD-4DEB-9A1E-4D9820B21F4E}C:\program files\windowsapps\arduinollc.arduinoide_1.6.13.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.6.13.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [TCP Query User{43D79E03-53D9-4AB7-AF4E-44D41B2F758A}C:\program files\windowsapps\arduinollc.arduinoide_1.6.13.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.6.13.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [UDP Query User{3F661070-92F5-4AA2-8050-27E17D40386E}C:\program files\windowsapps\arduinollc.arduinoide_1.6.11.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.6.11.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [TCP Query User{093CBDB6-A804-4533-A7C0-5E1C01F1F84E}C:\program files\windowsapps\arduinollc.arduinoide_1.6.11.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.6.11.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [UDP Query User{63A10C49-C0BF-4261-A3A3-AB4D1F4694FF}E:\altera\quartus\bin64\quartus.exe] => (Allow) E:\altera\quartus\bin64\quartus.exe
FirewallRules: [TCP Query User{FC94F2C5-466B-4637-86B1-4C88B2078FCA}E:\altera\quartus\bin64\quartus.exe] => (Allow) E:\altera\quartus\bin64\quartus.exe
FirewallRules: [UDP Query User{D07EB5C6-AC24-4CA4-A905-BBDEE975FFC6}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [TCP Query User{B2148CA7-62A6-4A3C-897B-DA097DD346BD}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [{6F7D5033-9F65-49EA-B1EE-674EE5B7078C}] => (Allow) E:\altera\quartus\bin64\jtagserver.exe
FirewallRules: [{97C38A16-A500-4C21-820F-88898299E228}] => (Allow) E:\altera\quartus\bin64\jtagserver.exe
FirewallRules: [{963A0D43-19C5-4DD7-A674-85661A8D1912}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BA8667FC-7DCA-44C5-BE89-1F3DA61065DD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{FAADB4BC-A7D3-4D14-A371-CDEA8E497C58}C:\users\***\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\***\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{50117800-5B93-4C91-AB1E-B9AE170C7E41}C:\users\***\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\***\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C4BDCAA4-992A-4EA0-A9F3-BFDE20D48183}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{30536E30-6871-4B0E-8929-6ECF847A8193}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FBF897CC-BD0C-409A-8D45-1349E64D44D7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4C566C5A-A9F1-4575-8AEC-D75A8C13C75E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E5DFFBC7-B3BD-4F9E-B381-700993ED22FB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{6549275F-DD21-4EEE-B026-8AD653815851}E:\spiele\hearthstone\hearthstone.exe] => (Allow) E:\spiele\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{BC433E58-98A5-408E-950F-01E3FAA2D56E}E:\spiele\hearthstone\hearthstone.exe] => (Allow) E:\spiele\hearthstone\hearthstone.exe
FirewallRules: [{B90AF9CD-178F-4AD8-8DBE-7A5831F3B558}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{BF9FB831-24BC-4DAF-A034-6ED2B848119A}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{3E6AD64E-AE55-4B9E-8ABB-534E03E4AA8E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{E85A1E0E-BDC1-4E10-B1EB-DB9038FAED97}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{7496ADBE-164B-4BDC-A1CC-156189469B49}E:\spiele\diabolo iii\diablo iii\diablo iii.exe] => (Allow) E:\spiele\diabolo iii\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D01F9D0-7B5F-41AD-B36D-1271EACE4CAA}E:\spiele\diabolo iii\diablo iii\diablo iii.exe] => (Allow) E:\spiele\diabolo iii\diablo iii\diablo iii.exe
FirewallRules: [{DA99AE1A-394E-4584-99EE-A88747FF9997}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{437A70A3-EFA2-436A-8897-257F85064A72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6C578B20-142D-403D-8251-3949490438D6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{66C2C1B1-9FB2-44FA-AB9B-E8D23C8225B3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{52603933-E670-49AB-8247-E2A5C4B1036E}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe
FirewallRules: [UDP Query User{B88CDE6C-9C90-4E44-BA96-009AEB2F3802}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe
FirewallRules: [{519A87FD-C346-4EDF-B3D7-3BE514CEB515}] => (Allow) LPort=9009
FirewallRules: [{4BFC3780-01FF-494E-8439-725BAA1DB9B3}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{468F46F2-F6BA-4D9A-97C3-63143A8B99BE}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{090EE680-987E-460B-BCC8-1DCB0E87FF79}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{B4DBAE43-DD0B-4038-999D-CFA0A0539FC4}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{70E6E973-F84D-418E-AFB7-52EA5182CA9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{DDA28C08-D877-4B9C-AE6F-01971A974AA3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{5DBC46E5-CC75-4F6E-9C52-82AED85A8BEA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{12C5FCC3-6090-40D9-8FDD-BAF4A2D5BB97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F3035A74-1014-4360-8345-92BF6A6AF5C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8251A27A-74A4-4571-9C8B-79503EA9E539}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{D25EE9D8-49C8-4885-810E-D609546FA11A}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{3701E7D0-4ED2-462A-9D69-74B80765CEA6}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [{A7108D67-CE8A-4A00-A198-6FCAFD094949}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [TCP Query User{63370AB5-2AB6-4010-98D2-5B1DECF103EC}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{638B6448-0BD6-4DFF-B449-224F03EA1AA2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{E427D4FD-774D-4471-9335-24124436FDDB}C:\program files\windowsapps\arduinollc.arduinoide_1.8.6.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.8.6.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [UDP Query User{1FD8DCDC-432D-4BD5-A6EF-23C2D423FD41}C:\program files\windowsapps\arduinollc.arduinoide_1.8.6.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.8.6.0_x64__mdqgnx93n4wtt\java\bin\javaw.exe
FirewallRules: [{0BACD1F7-16DE-4E04-8CFA-5F7D80A443CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{545C3DB8-C4DC-4845-9E90-667324CC17B1}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{5929CF01-72F4-4CC3-BE10-2CEB5C217B6F}C:\program files (x86)\dvdfab 10\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 10\dvdfab.exe
FirewallRules: [UDP Query User{41C496EA-5B4C-4848-A899-237CCB75FE57}C:\program files (x86)\dvdfab 10\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 10\dvdfab.exe
FirewallRules: [{C96E98AA-7228-40BF-AC14-7788C80C6E30}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{8ED389AE-2BE3-4D5E-A399-6542C4650335}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{9C0E0AAA-3779-49FC-8CB2-4B3EC0AB43B4}] => (Allow) C:\Windows\System32\rundll32.exe
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (07/18/2017 12:39:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
Error: (07/17/2017 11:14:58 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
Error: (07/16/2017 02:14:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DENNIS)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/16/2017 02:14:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DENNIS)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/16/2017 02:10:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: linker.exe, Version: 1.0.0.1, Zeitstempel: 0x596b563b
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.15063.447, Zeitstempel: 0xd51d5c5e
Ausnahmecode: 0xc0000028
Fehleroffset: 0x000a38a6
ID des fehlerhaften Prozesses: 0x3274
Startzeit der fehlerhaften Anwendung: 0x01d2fe2c7173d52f
Pfad der fehlerhaften Anwendung: C:\Users\***\AppData\Local\Temp\GHaz6QtMs\linker.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 2bcfa22c-3f11-4cf5-8ac6-ae96bf37bc0c
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (07/16/2017 02:10:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: linker.exe, Version: 1.0.0.1, Zeitstempel: 0x596b563b
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.15063.447, Zeitstempel: 0xd51d5c5e
Ausnahmecode: 0xc0000028
Fehleroffset: 0x000a38a6
ID des fehlerhaften Prozesses: 0x32d8
Startzeit der fehlerhaften Anwendung: 0x01d2fe2c71b592db
Pfad der fehlerhaften Anwendung: C:\Users\***\AppData\Local\Temp\SNPc6Wmli\linker.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: cd7e1b02-9720-4c2e-aa26-dda6ebc16538
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (07/16/2017 02:10:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: linker.exe, Version: 1.0.0.1, Zeitstempel: 0x596b563b
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc00001a5
Fehleroffset: 0x00450e2a
ID des fehlerhaften Prozesses: 0x3274
Startzeit der fehlerhaften Anwendung: 0x01d2fe2c7173d52f
Pfad der fehlerhaften Anwendung: C:\Users\***\AppData\Local\Temp\GHaz6QtMs\linker.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 61a0a419-8d83-4f9d-9860-712871784b59
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (07/16/2017 02:10:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: linker.exe, Version: 1.0.0.1, Zeitstempel: 0x596b563b
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc00001a5
Fehleroffset: 0x00450e2a
ID des fehlerhaften Prozesses: 0x32d8
Startzeit der fehlerhaften Anwendung: 0x01d2fe2c71b592db
Pfad der fehlerhaften Anwendung: C:\Users\***\AppData\Local\Temp\SNPc6Wmli\linker.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 3eb113d6-8b2a-4bcf-a3f9-92dc9fca2651
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (07/16/2017 02:10:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: linker.exe, Version: 1.0.0.1, Zeitstempel: 0x596b563b
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc00001a5
Fehleroffset: 0x00450e2a
ID des fehlerhaften Prozesses: 0x32d8
Startzeit der fehlerhaften Anwendung: 0x01d2fe2c71b592db
Pfad der fehlerhaften Anwendung: C:\Users\***\AppData\Local\Temp\SNPc6Wmli\linker.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: ebddec93-fb59-4599-92e1-e70dc34d0fd9
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (07/16/2017 02:10:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: linker.exe, Version: 1.0.0.1, Zeitstempel: 0x596b563b
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc00001a5
Fehleroffset: 0x00450e2a
ID des fehlerhaften Prozesses: 0x3274
Startzeit der fehlerhaften Anwendung: 0x01d2fe2c7173d52f
Pfad der fehlerhaften Anwendung: C:\Users\***\AppData\Local\Temp\GHaz6QtMs\linker.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 2af9c1b8-eea3-4ba4-806e-5d644758dbae
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (07/18/2017 07:06:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "9069783d92779bd29ad0641563a66baf" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/18/2017 07:06:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "9069783d92779bd29ad0641563a66baf" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/18/2017 07:06:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CldFlt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Anforderung wird nicht unterstützt.
Error: (07/18/2017 01:21:18 PM) (Source: DCOM) (EventID: 10010) (User: DENNIS)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (07/18/2017 01:21:18 PM) (Source: DCOM) (EventID: 10010) (User: DENNIS)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (07/18/2017 01:21:18 PM) (Source: DCOM) (EventID: 10010) (User: DENNIS)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (07/18/2017 01:21:18 PM) (Source: DCOM) (EventID: 10010) (User: DENNIS)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (07/18/2017 01:21:18 PM) (Source: DCOM) (EventID: 10010) (User: DENNIS)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (07/18/2017 12:26:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "9069783d92779bd29ad0641563a66baf" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/18/2017 12:26:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "9069783d92779bd29ad0641563a66baf" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU G4560 @ 3.50GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 8145.43 MB
Verfügbarer physikalischer RAM: 5028.79 MB
Summe virtueller Speicher: 12753.43 MB
Verfügbarer virtueller Speicher: 8973.6 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:116.94 GB) (Free:7.67 GB) NTFS
Drive e: (Intern) (Fixed) (Total:931.51 GB) (Free:406.64 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 117.4 GB) (Disk ID: 07F88B43)
Partition 1: (Not Active) - (Size=116.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D8F89135)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ |