• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
    • Budfred

      PLEASE READ - Reversing upgrade   02/23/2017

      We have found that this new upgrade is somewhat of a disaster.  We are finding lots of glitches in being able to post and administer the forum.  Additionally, there are new costs associated with the upgrade that we simply cannot afford.  As a result, we have decided to reverse course and go back to the previous version of our software.  Since this will involve restoring it from a backup, we will lose posts that have been added since January 30 or possibly even some before that.    If you started a topic during that time, we urge you to make backups of your posts and you will need to start the topics over again after the change.  You can simply paste the copies of your posts that you created at that point.    If you joined the forum this month, you will need to re-register since your membership will be lost along with the posts.  Since you have a concealed password, we cannot simply restore your membership for you.   We are going to backup as much as we can so that it will reduce inconvenience for our members.  Unfortunately we cannot back everything up since much will be incompatible with the old version of our software.  We apologize for the confusion and regret the need to do this even though it is not viable to continue with this version of the software.   We plan to begin the process tomorrow evening and, if it goes smoothly, we shouldn't be offline for very long.  However, since we have not done this before, we are not sure how smoothly it will go.  We ask your patience as we proceed.   EDIT: I have asked our hosting service to do the restore at 9 PM Central time and it looks like it will go forward at that time.  Please prepare whatever you need to prepare so that we can restore your topics when the forum is stable again.

Himi

Full Member
  • Content count

    144
  • Joined

  • Last visited

About Himi

  • Rank
    Advanced Member
  • Birthday
  1. Hey guys, just wanting to quickly say that I have not forgotten about this at all! Surgery went kind of fine, but now that I was finally feeling better I had a tooth removal on Thursday on top of everything else and need to cool my face with a cooling pack a lot right now. With only one hand free, on antibiotics and in a lot of pain again, I still haven't continued to work on my computer and just tend to rest a lot. But I hope that I'll be well enough soon to continue! Please keep this topic open! I promise I'll be back! Thank you so much for your hard work and being so patient with me!
  2. While moving all my files/folders into one to make transfering easier Avira told me twice it had found a virus. Great. Not transfering yet before everything is scanned a few times, but my harddrive doesn't want to work much anymore. Awesome stuff to get so many problems one day before a surgery... Gonna wait and see what nasdaq says about ATK. If there's nothing more than can be done to ensure removing it all without me getting all these error messages again upon boot, then I guess I just have to live with a boot time of 5+ minutes (which will probably become much longer once I have installed all my programs). If it ends up like that, it's fine - I am already so grateful that you helped me so much; I probably still wouldn't have a working computer without you guys.
  3. I definitely don't want to live with that, but disabling sounds fine, if only I could figure out how. Since nasdaq said something about deleting the folder (even if it hasn't worked so far) there's hope though, right? I don't have MBAM on my new computer yet, but Avira runs fine and the Windows Updates are up to date, so that's my current security. Not sure how good or bad that is... Still, doing a scan after the transfer would probably be smart anyway since - according to my old computer which is currently shoving all files I need into a folder - I have 150k files (almost 200GB) to transfer.
  4. That was easy to do, so I could check for the folder quickly. It's there, the file is there and I found it in the services folder of MSCONFIG. I deactivated it there, but the folder refuses to be deleted; it says files in the folder are running. Rebooting doesn't change that. There's a lot of other things in the ATK Package folder (like seven other folders full of stuff). Not sure if the fixlist file will help since you only said to run it if I can't find the folder. Also... is my computer ready for my whole files yet? It seems my old computer is finally dying, the hard drive makes beeping/clicking sounds every minute or so and I really feel the need to save my things by getting them over to my new computer since I have no free DVDs to back things up anymore; all my empty ones got used up when I made the rescue disks for the new computer before wiping the hard drive. Thanks for the good wishes! I hope I can continue working quickly after the surgery.
  5. Wanted to wait for nasdaq but need to reply now since I will probably be gone for a few days. (I will likely have a surgery on Monday and now suddenly have lots of stuff to finish before that. It's not a big sugery and I can return home afterwards, but I might be in too much pain to feel like working with the computer for a few days.) As said before, I unfortunately can't find any ATK things in the Services list of the Administrative Tools. As in, nothing there besides the "ATKGFNEX" thing even comes close to being called ATK. I also compared the list of services with the names given on the list on the shouldiremoveit-website and that didn't help me, either. So I honestly have no idea what I would even start to turn off/set to manual. I only had to contact Acer customer support once and it was actually awesome - my computer tended to shut down suddenly, I suspected simply the fan but someone in a computer store told me it was probably the mainboard. So I sent it in to Acer, the warranty had run out two months before so I expected to pay... but didn't have to. It really was just the fan, which got replaced by a new one and they even repaired two broken keyboard keys I hadn't even mentioned to anyone. And despite the warranty being expired, they charged me nothing. So while I had never phoned anyone personally, getting my computer repaired for free was very nice of them. But then again, differences between Germany and other countries are likely to exist.
  6. I'm back at home now, finally! - I phoned with ASUS about the ATK package and it was horrible. Either they had no clue or just didn't want to help me... when I told them it caused long boot times, they told me to just uninstall it. When I told them that that gives me error messages, they told me to leave it installed then, it would be there for a reason. When I asked them about the individual drivers, they told me the reason they offer only the package on their homepage is because it all belongs together, it's one thing and shouldn't be separated. Yeeeah... oh, but I found something called "ATKGFNEX Service" in my Administrative Tools. It's one of the few thngs which don't have a description and it starts with the letters "ATK", so maybe that's something? - Checking my restore points, the computer said the last one was created by Farbar, so I ran Tweaking Repairs - I tried making a restore point with the program again to see if anything had changed, but still got the error message. When the repairs started, a ton of windows popped up and closed again and one was full of error messages, but there was no way I could copy stuff before it closed. After the reboot I found two logs in the folder and both said all jobs were completed, so maybe the error messages didn't mean anything? No clue. If you still want to see the logs, please let me know. - Besides the computer still needing an ungodly amount of time to stop loading whatever it loads upon boot, it seems to run okay. Still has already as many programs as my old laptop which has everything I need installed on it while the new one is still a "clean" system, but I suppose if ASUS needs so much, I will have to endure that. Will buy an Acer again the next time for sure, though. - I wrote down the product key given by the computer now, in case I ever need it. What about the key on the sticker? Will I ever need that for anything or can I completely ignore/forget about it?
  7. Okay, I tried my best but a lot of things failed. Also sorry I'm so slow with replies; I'm out of town right now and will only be back on Wednesday. I have the computers with me, but have no real time to work with it. - I found the Administrative Tools. Bluetooth was already set to "manual", though, so I just kicked it out of Autostart (where it was listed twice, same file, same location) for now. I couldn't find any mentioning of ATK in the Administrative Tools, though. The link came back with a 404 error again, but I managed to find it through google. Since I have no understanding what the individual drivers are named or how to find them, I am kind of stumped how to progress there. Don't really wanna deal with ASUS again, they were so incredibly rude when I contacted them because of the recovery section... - Shall I write down the Product Key given to me through the program? As in, is that my real product key and not the one on the sticker on the computer? Is that why the ISO failed? - FRST logs will follow, but first my experience with Tweaking Repair: The prescan already gave me a ton of errors and when I did the registry backup, it told me "Backup had errors or failed" and two things giving me errors spooked me so much that I stopped there instead of continuing on with fixing the sidebar. I will post whatever I got from the prescan and the registry backup log and wait for instructions if I should proceed with the sidebar fixing. Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-11-2015 durchgeführt von Sheba (2015-11-09 03:39:05) Run:2 Gestartet von C:\Users\Sheba\Desktop\Neuer Ordner Geladene Profile: UpdatusUser & Sheba (Verfügbare Profile: UpdatusUser & Sheba) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** start CreateRestorePoint: EmptyTemp: CloseProcesses: (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2011-12-29] (Atheros Commnucations) Winlogon\Notify\igfxcui: igfxdev.dll [X] SearchScopes: HKU\S-1-5-21-892359256-2953846959-8072590-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-892359256-2953846959-8072590-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [Datei ist nicht signiert] R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite End ***************** Wiederherstellungspunkt wurde erfolgreich erstellt. Prozess erfolgreich geschlossen. C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe => Keine laufenden Prozesse gefunden C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe => Keine laufenden Prozesse gefunden C:\Program Files (x86)\Bluetooth Suite\AdminService.exe => Keine laufenden Prozesse gefunden C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe => Keine laufenden Prozesse gefunden HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AtherosBtStack => Wert nicht gefunden. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AthBtTray => Wert nicht gefunden. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui" => Schlüssel erfolgreich entfernt HKU\S-1-5-21-892359256-2953846959-8072590-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wert erfolgreich entfernt "HKU\S-1-5-21-892359256-2953846959-8072590-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Schlüssel nicht gefunden. C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] => nicht gefunden. FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] => nicht gefunden AtherosSvc => Dienst erfolgreich entfernt ZAtheros Bt&Wlan Coex Agent => Dienst erfolgreich entfernt C:\Program Files (x86)\Bluetooth Suite => erfolgreich verschoben EmptyTemp: => 65.6 MB temporäre Dateien entfernt. Das System musste neu gestartet werden. ==== Ende von Fixlog 03:39:25 ==== Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-11-2015 durchgeführt von Sheba (2015-11-09 03:43:03) Gestartet von C:\Users\Sheba\Desktop\Neuer Ordner Windows 7 Home Premium Service Pack 1 (X64) (2015-10-29 20:34:51) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-892359256-2953846959-8072590-500 - Administrator - Disabled) Gast (S-1-5-21-892359256-2953846959-8072590-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-892359256-2953846959-8072590-1003 - Limited - Enabled) Sheba (S-1-5-21-892359256-2953846959-8072590-1001 - Administrator - Enabled) => C:\Users\Sheba UpdatusUser (S-1-5-21-892359256-2953846959-8072590-1000 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.1.85.3 - Adobe Systems Incorporated) Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated) Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated) ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS) Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0023 - ASUS) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.210 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{59c4462d-a177-4d44-a95b-deda1be79844}) (Version: 1.1.49.18939 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.1.49.18939 - Avira Operations GmbH & Co. KG) Hidden ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS) InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.2.0 - ASUS) Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation) Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation) Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) NVIDIA Grafiktreiber 311.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.44 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation) NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6537 - Realtek Semiconductor Corp.) Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7601.39015 - Realtek Semiconductor Corp.) SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS) Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-892359256-2953846959-8072590-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ==================== Wiederherstellungspunkte ========================= 04-11-2015 20:09:44 Элемент управления Windows Live Mesh ActiveX для удаленных подключений wird entfernt 04-11-2015 20:10:53 Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις wird entfernt 04-11-2015 20:12:02 Windows Live Mesh ActiveX Control for Remote Connections wird entfernt 04-11-2015 20:13:09 Windows Live Mesh ActiveX control for remote connections wird entfernt 04-11-2015 20:14:13 Windows Live Mesh ActiveX Control for Remote Connections wird entfernt 04-11-2015 20:15:26 Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen wird entfernt 04-11-2015 20:17:16 Windows Live Essentials 04-11-2015 20:18:46 WLSetup wird installiert 04-11-2015 22:54:25 Installiert Realtek USB 2.0 Reader Driver 04-11-2015 23:02:49 Installed ATK Package 04-11-2015 23:07:42 Windows Modules Installer 05-11-2015 03:00:10 Windows Update 09-11-2015 03:39:10 Restore Point Created by FRST ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {50C445F5-63C7-4307-A2BA-3FD175178DC3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {53609084-8453-44E8-A248-F118285EAF10} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe Task: {6E05D41E-D4FD-482D-9264-A8A37E249FD2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-09-14] (ASUSTek Computer Inc.) Task: {8CACC2E7-DA32-4365-89B9-EBDDAF5FF978} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-16] (ASUS) Task: {9DA4301C-41FD-45F3-B120-F203416BCBE0} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-10-31 06:11 - 2013-03-14 07:28 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll 2015-10-31 06:13 - 2012-02-21 05:29 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe 2012-02-21 22:49 - 2012-02-21 22:49 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2012-01-31 17:25 - 2012-01-31 17:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-892359256-2953846959-8072590-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe" MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{19E284DE-FE65-45E9-8827-69D5454439A1}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{EDA33C67-02FC-4CBB-B8DE-B369AC2BA16B}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{A87F55DA-E575-4EED-96C3-45FAF8205A78}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{77C18C1D-5BDA-4FEF-89A5-A487FB888AE1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{97068E3E-F9DA-4F0C-9777-90D992E04AE9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{22FC49AA-7138-43C5-AEFA-CC472556ADF8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (11/09/2015 03:39:08 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert . Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess. Vorgang: Generatordaten werden gesammelt Kontext: Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220} Generatorname: System Writer Generatorinstanz-ID: {87c30e3e-4cf6-4a97-b238-0d45de04b104} Error: (11/04/2015 08:18:46 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = WLSetup; Fehler = 0x80042319). Error: (11/04/2015 08:17:54 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Hakugyokurou) Description: Die Anwendung oder der Dienst "Windows Search" konnte nicht heruntergefahren werden. Systemfehler: ============= Error: (11/09/2015 03:39:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Error: (11/09/2015 03:39:50 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Der Dienst "WSearch" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%50 Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (11/09/2015 03:39:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Error: (11/09/2015 03:39:50 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%50 Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (11/09/2015 03:39:40 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet. Modulpfad: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll Error: (11/09/2015 03:39:40 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet. Modulpfad: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll Error: (11/09/2015 03:39:37 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet. Modulpfad: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll Error: (11/09/2015 03:39:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (11/09/2015 03:39:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Intel® Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (11/09/2015 03:39:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Intel® Management and Security Application Local Management Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. ==================== Speicherinformationen =========================== Prozessor: Intel® Core i5-3210M CPU @ 2.50GHz Prozentuale Nutzung des RAM: 23% Installierter physikalischer RAM: 8078.32 MB Verfügbarer physikalischer RAM: 6168.73 MB Summe virtueller Speicher: 16154.85 MB Verfügbarer virtueller Speicher: 14134.62 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:400.55 GB) (Free:344.42 GB) NTFS ==>[system mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (DATA) (Fixed) (Total:505.64 GB) (Free:505.54 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 9158AFC3) Partition: GPT. ==================== Ende von Addition.txt ============================ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Tweaking.com - Windows Repair v3.6.2 - Pre-Scan │ Computer: HAKUGYOKUROU (Windows 7 Home Premium 6.1.7601 Service Pack 1) (64-bit) │ [started Scan - 09.11.2015 03:45:58] └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Scanning Windows Packages Files. │ Started at (09.11.2015 03:45:58) │ │ No problems were found with the Packages Files. │ │ Files Checked & Verified: 5.691 │ │ Done Scanning Windows Packages Files.(09.11.2015 03:47:07) └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Scanning Reparse Points. │ Started at (09.11.2015 03:47:07) │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\AppData\Local\Application Data) (Target Path: C:\Users\Sheba\AppData\Local) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\AppData\Local\History) (Target Path: C:\Users\Sheba\AppData\Local\Microsoft\Windows\History) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Application Data) (Target Path: C:\Users\Sheba\AppData\Roaming) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Documents\My Music) (Target Path: C:\Users\Sheba\Music) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Documents\My Pictures) (Target Path: C:\Users\Sheba\Pictures) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Documents\My Videos) (Target Path: C:\Users\Sheba\Videos) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Local Settings) (Target Path: C:\Users\Sheba\AppData\Local) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\My Documents) (Target Path: C:\Users\Sheba\Documents) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\NetHood) (Target Path: C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Network Shortcuts) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\PrintHood) (Target Path: C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Printer Shortcuts) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Start Menu) (Target Path: C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Missing Default Reparse Point: (Original Path: C:\Users\Sheba\Templates) (Target Path: C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Templates) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Problems were found with the Reparse Points. │ You can use the Repair Reparse Points Tool at the bottom of this Window to try and fix these problems. │ │ Files & Folders Searched: 222.430 │ Reparse Points Found: 61 │ │ Done Scanning Reparse Points.(09.11.2015 03:48:26) └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Checking Environment Variables. │ Started at (09.11.2015 03:48:26) │ │ No problems were found with the Environment Variables. │ │ Done Checking Environment Variables. (09.11.2015 03:48:26) └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ [Finished Scan - 09.11.2015 03:48:27] │ │ [x] Scan Complete - Problems Found! │ [x] │ [x] You can use the Repair Reparse Points or Repair Environment Variables tools at the bottom of this Window if needed. │ [x] │ [x] While problems have been found, you can still run the repairs in the program. │ [x] But for the best results it is recommended to fix the problems reported in this scan if possible. │ [x] If you need help fixing any of the items in the log, just post in the forums at Tweaking.com for help. └────────────────────────────────────────────────────────────────────────────────┘ [09.11.2015 - 03:51:36] System Variables [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] Use Fallback Backup Method: 1 (0 = No, 1 = Yes) [09.11.2015 - 03:51:36] VSS exe To Use: vss_7_8_2008_2012_64.exe [09.11.2015 - 03:51:36] Windows Drive: C: [09.11.2015 - 03:51:36] Windows Folder: Windows [09.11.2015 - 03:51:36] Windows Path: C:\Windows [09.11.2015 - 03:51:36] Registry File Location: C:\Windows\System32\Config [09.11.2015 - 03:51:36] Current Profile: C:\Users\Sheba [09.11.2015 - 03:51:36] Current Profile SID: S-1-5-21-892359256-2953846959-8072590-1001 [09.11.2015 - 03:51:36] Current Profile Classes: S-1-5-21-892359256-2953846959-8072590-1001_Classes [09.11.2015 - 03:51:36] Profiles Location: C:\Users [09.11.2015 - 03:51:36] Profiles Location 2: C:\Windows\ServiceProfiles [09.11.2015 - 03:51:36] Local Settings AppData: AppData\Local [09.11.2015 - 03:51:36] Computer Name: HAKUGYOKUROU [09.11.2015 - 03:51:36] OS: Windows 7 Home Premium (64-bit) [09.11.2015 - 03:51:36] OS Architecture: 64-bit [09.11.2015 - 03:51:36] OS Version: 6.1.7601 [09.11.2015 - 03:51:36] OS Service Pack: Service Pack 1 [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] Backup Location: C:\RegBackup\ [09.11.2015 - 03:51:36] Silent command given, program will close after backup. [09.11.2015 - 03:51:36] Auto Delete Old Backups Enabled, Working... [09.11.2015 - 03:51:36] Delete backups 7 Days or older. Keep at least 5 Backups. [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] Starting Backup... [09.11.2015 - 03:51:36] Files To Backup: [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] C:\Windows\System32\Config\components [09.11.2015 - 03:51:36] C:\Windows\System32\Config\default [09.11.2015 - 03:51:36] C:\Windows\System32\Config\sam [09.11.2015 - 03:51:36] C:\Windows\System32\Config\security [09.11.2015 - 03:51:36] C:\Windows\System32\Config\software [09.11.2015 - 03:51:36] C:\Windows\System32\Config\system [09.11.2015 - 03:51:36] C:\Users\Default\ntuser.dat [09.11.2015 - 03:51:36] C:\Users\Public\ntuser.dat [09.11.2015 - 03:51:36] C:\Users\Sheba\AppData\Local\Microsoft\Windows\UsrClass.dat [09.11.2015 - 03:51:36] C:\Users\Sheba\ntuser.dat [09.11.2015 - 03:51:36] C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\UsrClass.dat [09.11.2015 - 03:51:36] C:\Users\UpdatusUser\ntuser.dat [09.11.2015 - 03:51:36] C:\Windows\ServiceProfiles\LocalService\ntuser.dat [09.11.2015 - 03:51:36] C:\Windows\ServiceProfiles\NetworkService\ntuser.dat [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] Backing Up Files...: [09.11.2015 - 03:51:36] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:36] Using Fallback Backup Method. [09.11.2015 - 03:51:36] Backing Up File: C:\Windows\System32\Config\components [09.11.2015 - 03:51:38] Result: Successful (151,80 MB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\System32\Config\components [09.11.2015 - 03:51:38] Backing Up File: C:\Windows\System32\Config\default [09.11.2015 - 03:51:38] Result: Successful (848,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\System32\Config\default [09.11.2015 - 03:51:38] Backing Up File: C:\Windows\System32\Config\sam [09.11.2015 - 03:51:38] Result: Successful (24,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\System32\Config\sam [09.11.2015 - 03:51:38] Backing Up File: C:\Windows\System32\Config\security [09.11.2015 - 03:51:38] Result: Successful (24,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\System32\Config\security [09.11.2015 - 03:51:38] Backing Up File: C:\Windows\System32\Config\software [09.11.2015 - 03:51:39] Result: Successful (78,71 MB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\System32\Config\software [09.11.2015 - 03:51:39] Backing Up File: C:\Windows\System32\Config\system [09.11.2015 - 03:51:39] Result: Successful (20,84 MB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\System32\Config\system [09.11.2015 - 03:51:39] Backing Up File: C:\Users\Default\ntuser.dat [09.11.2015 - 03:51:40] Result: Successful (256,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Users\Default\ntuser.dat [09.11.2015 - 03:51:40] Backing Up File: C:\Users\Public\ntuser.dat [09.11.2015 - 03:51:40] Result: Successful (256,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Users\Public\ntuser.dat [09.11.2015 - 03:51:40] Backing Up File: C:\Users\Sheba\AppData\Local\Microsoft\Windows\UsrClass.dat [09.11.2015 - 03:51:40] Result: Successful (1,19 MB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Users\Sheba\AppData\Local\Microsoft\Windows\UsrClass.dat [09.11.2015 - 03:51:40] Backing Up File: C:\Users\Sheba\ntuser.dat [09.11.2015 - 03:51:40] Result: Successful (712,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Users\Sheba\ntuser.dat [09.11.2015 - 03:51:40] Backing Up File: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\UsrClass.dat [09.11.2015 - 03:51:40] Result: Failed - Error: -1 (API Reg Save Failed (), Tried File Copy, File In use, Cannot copy.) [09.11.2015 - 03:51:40] Backing Up File: C:\Users\UpdatusUser\ntuser.dat [09.11.2015 - 03:51:40] Result: Failed - Error: -1 (API Reg Save Failed (), Tried File Copy, File In use, Cannot copy.) [09.11.2015 - 03:51:40] Backing Up File: C:\Windows\ServiceProfiles\LocalService\ntuser.dat [09.11.2015 - 03:51:40] Result: Successful (240,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\ServiceProfiles\LocalService\ntuser.dat [09.11.2015 - 03:51:40] Backing Up File: C:\Windows\ServiceProfiles\NetworkService\ntuser.dat [09.11.2015 - 03:51:40] Result: Successful (256,00 KB) - C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\C\Windows\ServiceProfiles\NetworkService\ntuser.dat [09.11.2015 - 03:51:40] Total Size: 255,11 MB [09.11.2015 - 03:51:40] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:40] Creating DOS restore bat file for use in the Windows Recovery Console: [09.11.2015 - 03:51:40] -------------------------------------------------------------------------------- [09.11.2015 - 03:51:40] Already Exists: C:\Windows\tweaking.com-regbackup-HAKUGYOKUROU-Windows-7-Home-Premium-(64-bit).dat for use in the dos_restore.cmd file [09.11.2015 - 03:51:40] Done: C:\RegBackup\HAKUGYOKUROU\09.11.2015_03.51.36\dos_restore.cmd [09.11.2015 - 03:51:40] --------------------------------------------------------------------------------
  8. Sorry for being gone yesterday! I'm definitely still interested in removing anything unneeded, so I will add the FRST logs at the end of the post. I used the Product Key program and the product key displayed for Windows is completely different from the one the sticker at the bottom of the computer reads. That... is probably a bad thing, right? As for ATK, the first link given gave me a 404 error, but I read the second one and it said there the ATK package is needed for the Fn keys. At least on my old computer here, I use the Fn keys a lot for brightness and to turn my wireless connection on and off, so if that's true, I need to keep it. ASUS only offers the full ATK package on their driver download site, I checked that. And, uh... I have no idea where the "Administrative Tools" are. I checked every section of the control panel and my start menu as well and I can find nothing called that (or something similiar). Hence I have no clue where to check for either Bluetooth (there's nothing in my control panel about it, but I have three folders in my start menu about Bluetooth, so I suppose I have a lot...) or the ATK things. Sorry that I'm so dumb! I googled to find the German translation for what the Administrative Tools are called in German and did get the translation, but I still can't find them anywhere in my control panel. FRST logs: Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-11-2015 durchgeführt von Sheba (Administrator) auf HAKUGYOKUROU (07-11-2015 00:01:56) Gestartet von C:\Users\Sheba\Desktop\Neuer Ordner Geladene Profile: UpdatusUser & Sheba (Verfügbare Profile: UpdatusUser & Sheba) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: IE) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe (ASUS) C:\Windows\AsScrPro.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2011-12-29] (Atheros Commnucations) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated) HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2012-02-24] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-10-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782520 2015-10-05] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [328064 2012-09-14] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [178848 2012-07-17] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-19\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-20\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-21-892359256-2953846959-8072590-1000\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-21-892359256-2953846959-8072590-1001\...\Run: [sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-04-08] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-04-08] (NVIDIA Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{82CB53FE-5D4E-42D0-8208-7770DDA827AA}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-892359256-2953846959-8072590-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-892359256-2953846959-8072590-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-892359256-2953846959-8072590-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-16] (Adobe Systems Incorporated) BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29] (Atheros Commnucations) FireFox: ======== FF ProfilePath: C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Keine Datei] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Keine Datei] FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [932912 2015-10-05] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-10-05] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-10-05] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1147720 2015-10-05] (Avira Operations GmbH & Co. KG) R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-17] (ASUS) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [Datei ist nicht signiert] R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [243968 2015-10-14] (Avira Operations GmbH & Co. KG) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation) R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [Datei ist nicht signiert] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2011-12-21] (Windows ® Win 7 DDK provider) S3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2011-11-08] (Windows ® Win 7 DDK provider) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-10-05] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-10-05] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-10-05] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-10-05] (Avira Operations GmbH & Co. KG) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-11-06 23:40 - 2015-11-06 23:40 - 00000000 ___RD C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2015-11-05 03:00 - 2015-11-05 03:00 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2015-11-05 03:00 - 2015-11-05 03:00 - 00000000 ___SD C:\Windows\system32\GWX 2015-11-04 23:03 - 2015-11-04 23:03 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2015-11-04 22:54 - 2015-11-04 22:54 - 09887848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUVStoricon.dll 2015-11-04 22:54 - 2015-11-04 22:54 - 00313960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\rtsuvstor.sys 2015-11-04 22:54 - 2015-11-04 22:54 - 00017512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\diskperf64.sys 2015-11-04 22:54 - 2015-11-04 22:54 - 00000000 ____D C:\Windows\SysWOW64\sda 2015-11-04 05:22 - 2014-06-27 03:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2015-11-04 05:22 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-11-04 05:21 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-11-04 05:21 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-11-04 05:21 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-11-04 05:21 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-11-04 05:21 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-11-04 05:21 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-11-04 05:21 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-11-04 05:21 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-11-04 05:21 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-11-04 05:21 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-11-04 05:21 - 2015-09-18 20:31 - 00391784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-11-04 05:21 - 2015-09-18 19:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-11-04 05:21 - 2015-09-16 05:48 - 25851904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-11-04 05:21 - 2015-09-16 05:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-11-04 05:21 - 2015-09-16 05:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-11-04 05:21 - 2015-09-16 05:22 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-11-04 05:21 - 2015-09-16 05:21 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-11-04 05:21 - 2015-09-16 05:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-11-04 05:21 - 2015-09-16 05:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-11-04 05:21 - 2015-09-16 05:21 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-11-04 05:21 - 2015-09-16 05:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-11-04 05:21 - 2015-09-16 05:14 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-11-04 05:21 - 2015-09-16 05:13 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-11-04 05:21 - 2015-09-16 05:10 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-11-04 05:21 - 2015-09-16 05:09 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-11-04 05:21 - 2015-09-16 05:08 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-11-04 05:21 - 2015-09-16 05:08 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-11-04 05:21 - 2015-09-16 05:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-11-04 05:21 - 2015-09-16 05:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-11-04 05:21 - 2015-09-16 05:01 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-11-04 05:21 - 2015-09-16 04:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-11-04 05:21 - 2015-09-16 04:58 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-11-04 05:21 - 2015-09-16 04:50 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-11-04 05:21 - 2015-09-16 04:46 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-11-04 05:21 - 2015-09-16 04:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-11-04 05:21 - 2015-09-16 04:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-11-04 05:21 - 2015-09-16 04:43 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-11-04 05:21 - 2015-09-16 04:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-11-04 05:21 - 2015-09-16 04:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-11-04 05:21 - 2015-09-16 04:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-11-04 05:21 - 2015-09-16 04:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-11-04 05:21 - 2015-09-16 04:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-11-04 05:21 - 2015-09-16 04:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-11-04 05:21 - 2015-09-16 04:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-11-04 05:21 - 2015-09-16 04:29 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-11-04 05:21 - 2015-09-16 04:29 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-11-04 05:21 - 2015-09-16 04:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-11-04 05:21 - 2015-09-16 04:28 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-11-04 05:21 - 2015-09-16 04:26 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-11-04 05:21 - 2015-09-16 04:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-11-04 05:21 - 2015-09-16 04:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-11-04 05:21 - 2015-09-16 04:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-11-04 05:21 - 2015-09-16 04:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-11-04 05:21 - 2015-09-16 04:22 - 14458368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-11-04 05:21 - 2015-09-16 04:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-11-04 05:21 - 2015-09-16 04:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-11-04 05:21 - 2015-09-16 04:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-11-04 05:21 - 2015-09-16 04:11 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-11-04 05:21 - 2015-09-16 04:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-11-04 05:21 - 2015-09-16 04:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-11-04 05:21 - 2015-09-16 04:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-11-04 05:21 - 2015-09-16 04:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-11-04 05:21 - 2015-09-16 04:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-11-04 05:21 - 2015-09-16 04:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2015-11-04 05:21 - 2015-09-16 03:59 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-11-04 05:21 - 2015-09-16 03:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-11-04 05:21 - 2015-09-16 03:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-11-04 05:21 - 2015-09-16 03:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-11-04 05:21 - 2015-09-16 03:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-11-04 05:21 - 2015-09-16 03:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-11-04 05:21 - 2015-09-16 03:48 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-11-04 05:21 - 2015-09-16 03:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-11-04 05:21 - 2015-09-16 03:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-11-04 05:21 - 2015-09-16 03:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-11-04 05:21 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-11-04 05:21 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2015-11-04 05:21 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2015-11-04 05:21 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-11-04 05:21 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2015-11-04 05:21 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2015-11-04 05:21 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2015-11-04 05:21 - 2015-06-09 19:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-11-04 05:21 - 2015-06-09 19:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2015-11-04 05:21 - 2015-06-03 21:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2015-11-04 05:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2015-11-04 05:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2015-11-04 05:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2015-11-04 05:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2015-11-04 05:21 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2015-11-04 05:21 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL 2015-11-04 05:21 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL 2015-11-04 05:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL 2015-11-04 05:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL 2015-11-04 05:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL 2015-11-04 05:21 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2015-11-04 05:21 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2015-11-04 05:20 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2015-11-04 05:20 - 2012-02-11 07:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2015-11-04 05:20 - 2012-02-11 07:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2015-11-04 03:17 - 2015-11-04 03:17 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-11-04 01:22 - 2015-11-07 00:01 - 00000000 ____D C:\Users\Sheba\Desktop\Neuer Ordner 2015-11-04 01:19 - 2015-11-04 01:19 - 00029429 _____ C:\Users\Sheba\Desktop\dds.txt 2015-11-03 22:36 - 2015-07-30 19:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2015-11-03 22:36 - 2015-07-30 19:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-11-03 22:36 - 2015-07-30 19:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-11-03 22:36 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2015-11-03 22:36 - 2015-07-30 18:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-11-03 22:36 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2015-11-03 22:36 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2015-11-03 22:36 - 2015-02-03 04:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-11-03 22:36 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-11-03 22:22 - 2015-11-03 22:22 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2015-11-03 22:12 - 2015-11-03 22:12 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-11-03 22:12 - 2015-11-03 22:12 - 00000000 ____D C:\Windows\system32\appraiser 2015-11-03 21:44 - 2015-11-03 21:46 - 00000000 ____D C:\Windows\system32\MRT 2015-11-03 21:44 - 2015-10-02 12:09 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-11-03 21:43 - 2015-01-09 00:44 - 00419936 _____ C:\Windows\SysWOW64\locale.nls 2015-11-03 21:43 - 2015-01-09 00:43 - 00419936 _____ C:\Windows\system32\locale.nls 2015-11-03 21:30 - 2015-07-30 14:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-11-03 21:30 - 2015-07-30 14:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-11-03 21:28 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2015-11-03 21:19 - 2015-11-03 21:19 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2015-11-03 21:19 - 2015-11-03 21:19 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2015-11-03 21:19 - 2015-11-03 21:19 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2015-11-03 21:19 - 2015-11-03 21:19 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2015-11-03 21:19 - 2015-11-03 21:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2015-11-03 21:12 - 2015-11-03 21:28 - 00014532 _____ C:\Windows\IE11_main.log 2015-11-03 20:59 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2015-11-03 20:59 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2015-11-03 20:59 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2015-11-03 20:59 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2015-11-03 20:59 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2015-11-03 20:59 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2015-11-03 20:59 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2015-11-03 20:59 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2015-11-03 20:59 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2015-11-03 20:59 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2015-11-03 20:41 - 2015-11-03 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Deutsch) 2015-11-03 20:16 - 2015-11-03 20:16 - 00000000 ____D C:\ProgramData\VirtualizedApplications 2015-11-03 20:07 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2015-11-03 20:07 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2015-11-03 20:07 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2015-11-03 20:07 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2015-11-03 19:31 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2015-11-03 19:31 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2015-11-03 19:31 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2015-11-03 19:31 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2015-11-03 19:18 - 2013-01-13 22:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2015-11-03 19:18 - 2013-01-13 21:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll 2015-11-03 19:18 - 2013-01-13 21:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll 2015-11-03 19:18 - 2013-01-13 20:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll 2015-11-03 19:18 - 2013-01-13 20:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll 2015-11-03 19:18 - 2013-01-13 20:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll 2015-11-03 19:18 - 2013-01-13 20:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2015-11-03 19:18 - 2013-01-13 20:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll 2015-11-03 19:18 - 2013-01-13 20:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll 2015-11-03 19:18 - 2013-01-13 20:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2015-11-03 19:18 - 2013-01-13 20:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2015-11-03 19:18 - 2013-01-13 20:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll 2015-11-03 19:18 - 2013-01-13 20:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2015-11-03 19:18 - 2013-01-13 20:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll 2015-11-03 19:18 - 2013-01-13 20:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2015-11-03 19:18 - 2013-01-13 20:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2015-11-03 19:18 - 2013-01-13 19:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2015-11-03 19:18 - 2013-01-13 19:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2015-11-03 19:18 - 2013-01-13 18:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2015-11-03 19:18 - 2013-01-13 18:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2015-11-03 19:13 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2015-11-03 19:13 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2015-11-03 19:13 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll 2015-11-03 19:03 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2015-11-03 19:03 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll 2015-11-03 19:03 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-11-03 19:03 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-11-03 19:03 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2015-11-03 19:03 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2015-11-03 19:03 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe 2015-11-03 19:03 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll 2015-11-03 19:01 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-11-03 19:01 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll 2015-11-03 19:01 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2015-11-03 19:01 - 2015-07-15 19:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2015-11-03 19:01 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2015-11-03 19:01 - 2015-07-15 19:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2015-11-03 19:01 - 2015-04-18 04:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-11-03 19:01 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2015-11-03 19:00 - 2015-09-14 20:45 - 03210240 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-11-03 19:00 - 2015-08-05 18:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-11-03 19:00 - 2015-08-05 18:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-11-03 19:00 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-11-03 19:00 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll 2015-11-03 19:00 - 2015-04-29 19:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-11-03 19:00 - 2015-04-29 19:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-11-03 19:00 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-11-03 19:00 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-11-03 19:00 - 2015-04-29 19:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-11-03 19:00 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2015-11-03 19:00 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2015-11-03 19:00 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2015-11-03 19:00 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2015-11-03 19:00 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2015-11-03 19:00 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-11-03 19:00 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll 2015-11-03 19:00 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll 2015-11-03 19:00 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll 2015-11-03 19:00 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll 2015-11-03 19:00 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2015-11-03 19:00 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2015-11-03 19:00 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2015-11-03 19:00 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll 2015-11-03 19:00 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2015-11-03 19:00 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2015-11-03 19:00 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2015-11-03 19:00 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll 2015-11-03 18:59 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-11-03 18:59 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-11-03 18:59 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-11-03 18:59 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2015-11-03 18:58 - 2015-02-03 04:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2015-11-03 18:58 - 2015-02-03 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2015-11-03 18:58 - 2015-02-03 04:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2015-11-03 18:58 - 2015-02-03 04:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2015-11-03 18:58 - 2015-02-03 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2015-11-03 18:58 - 2015-02-03 04:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2015-11-03 18:58 - 2015-02-03 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2015-11-03 18:57 - 2015-09-18 20:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-11-03 18:57 - 2015-09-18 20:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-11-03 18:57 - 2015-09-18 20:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-11-03 18:57 - 2015-06-03 21:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2015-11-03 18:57 - 2015-06-03 21:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-11-03 18:56 - 2015-09-29 04:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-11-03 18:56 - 2015-09-29 04:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-11-03 18:56 - 2015-09-29 04:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-11-03 18:56 - 2015-09-29 04:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-11-03 18:56 - 2015-09-29 04:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-11-03 18:56 - 2015-09-29 04:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-11-03 18:56 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-11-03 18:56 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-11-03 18:56 - 2015-09-29 04:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-11-03 18:56 - 2015-09-29 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-11-03 18:56 - 2015-09-29 04:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-11-03 18:56 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-11-03 18:56 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-11-03 18:56 - 2015-09-29 03:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-11-03 18:56 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-11-03 18:56 - 2015-09-29 03:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-11-03 18:56 - 2015-09-29 03:57 - 00665088 _____
  9. Yeah, these are all things I don't have. I have no tablet, cellphone or microphone, haha. I just have my two laptops and they seem to communicate just fine using the network, so I really don't need that Bluetooth thing. Do I just kick it out of Autostart to disable it or do I/should I need to uninstall it completely? I tried booting a few times now - both rebooting and also actually starting up the laptop - and the long loading time stays the same. The desktop appears as fast as it did before the ATK install, but the laptop then spends around 3-4 minute in heavy load, making starting anything else or just open folders extremely slow. And note there's none of my stuff on this laptop yet except for Avira. Here on my old laptop, I have several things like Skype in Autostart and it's still faster with finishing all it is supposed to load upon boot than my almost-clean, new one. Not sure why. Whatever ATK loads all the time is invisible to me; there is no visible thing around since the sidebar disappeared again and there's also no symbol in the taskbar or anything, so I have no idea what's going on.
  10. You are probably right there... I looked in the area described in the howtogeek-website you had linked me before. I just checked again and there is something called (translated) "Platform for Windows-mini-applications". When I hover over it with my cursor, it says "Lets you use Windows-mini-applications on your desktop" and the box is checked. Maybe that's what I'm looking for? The sidebar is gone by now, so I have no way of knowing even if I uncheck the box, but I can try doing that and see if anything happens? Well, I have Bluetooth listed in MSCONFIG-Autostart (twice, even!) and under my programs. I don't know what it is or what it is for and I've never used anything called that before. Is it a radio or something (since it said something about a local radio). I don't listen to the radio on my computer, so maybe I can uninstall it or at least kick it out of Autostart? I installed the needed driver for the USB2.0-CRW thing! Still had it from my attempt with the ISO when I had downloaded everything from the ASUS website, so this was easy and it worked; the exclamation mark is gone! And while typing this, the ATK package has finally finished its installation again. Okay, upon reboot, I now see a part of my sidebar back, the two error messages are indeed gone but ATK package is also back in the program list... what is this even for? You had told me I could uninstall it and actually, given how long the computer right now needed to boot, it was faster to just close all the error messages than to wait almost five minutes. Windows Updates now come clean if I search for new ones - it tells me there's a single important one left and that's the Windows 10 thing and it can wait forever for me to install that. Not gonna happen. But there's nothing else anymore, no matter how often I let Windows check for new updates. EDIT: I just decided to just try to turn the "Platform for Windows-mini-applications"-thing off and see what happens. Sidebar is gone again after another reboot! So it maybe indeed was that option? The computer still needs forever to boot, though.
  11. Getting somewhere, I hope! - Having Windows check for Updates again indeed did the trick and it found 22 more. I don't know if the formerly-failed ones are in the batch, though. The 22 new ones all installed correctly. In the "System" section, it says I'm on SP 1. - It also says Windows is activated! And it does list a product ID, but I can't find it anywhere on my computer (on any of the stickers) or the packaging... - I have definitely the correct section, but there is absolutely nothing even resembling the name "Windows Gadjet Platform". The only things there with the word 'Windows' in their name are "Windows Search" (which is activated), "Windows-Prozessaktivierungsdienst" (roughly translated to process activation service) and "Windows-TIFF-IFilter". But the sidebar seems to have vanished now anyway, so maybe all is good? Or is it bad that the section doesn't even exist? - I deinstalled all the Windows Live things now and my installed program list is now down to 37 programs, which already looks much more manageable and less chaotic. I hope I got all of the Windows Live stuff, there were more than 10 things to uninstall... - At the current time, I get the following annoying messages and problems. Finally sat down and rebooted a few times to catch them all and write down the exact wording: 1) Upon boot, error message: "You have to install ATK0100 driver" (header of the message says "ATK0100 request"). This is not translated, it's an English message. 2) Upon boot, error message: "This program can only be executed on the ASUS computer" (header of the message says "P4G"). Another English message, no translation here. 3) Upon boot, speech bubble which appears and disappears around 5-6 times: "Bluetooth-Information: Bluetooth local radio cannot be found by others". This appears in German, so my translation may be off. 4) I have in the device manager an exclamation mark under "other devices". It's labeled "USB2.0-CRW". Letting Windows search for driver updates online has no result. This definitely was not there directly after the installation of Windows and I do remember saying something about a failed USB driver speech bubble after I deinstalled the first programs, so it probably appeared around then. - I didn't get the "Intel ME FW Recovery Agent" speech bubble again (so far), but admit that the articles provided kind of brought me to the limit of my English, so I didn't really understand them well. I looked in MSCONFIG, but couldn't find the word "Bootstrap.exe" in any of the sections. Not really sure where to find the bolded things and how to remove them. Sorry if I don't understand the instructions! - Here is the Fixlog! I really hope everything there went as intended, the reboot after pressing that delete button took forever. Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-10-2015 durchgeführt von Sheba (2015-11-04 21:00:57) Run:1 Gestartet von C:\Users\Sheba\Desktop\Neuer Ordner Geladene Profile: UpdatusUser & Sheba (Verfügbare Profile: UpdatusUser & Sheba) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** start EmptyTemp: CloseProcesses: FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx End ***************** Prozess erfolgreich geschlossen. C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] => nicht gefunden. FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] => nicht gefunden "HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => Schlüssel erfolgreich entfernt "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => Schlüssel erfolgreich entfernt EmptyTemp: => 749 MB temporäre Dateien entfernt. Das System musste neu gestartet werden. ==== Ende von Fixlog 21:01:05 ====
  12. Okay, I'm back! The computer spent many hours today installing all the Windows Updates. When it finished (there were 209 or so), it told me that a few had failed, but they weren't selectable again in the update menu. Very odd. The only update I didn't install was the one which gives the Windows 10 switch. No idea if the failed updates are now there or not, but at any rate, there's nothing but that Windows 10 thing I can currently select to add. Right now, nothing has changed when it comes to the error messages and I get even more speech bubbles now, one about a "Intel ME FW Recovery Agent" doing something (these things vanish too fast, I swear). The Office program is not the viewer, I can make documents and all. It's just Windows and Excel, though. If they ever want me to pay, I can always switch, but really, it's the exactly same thing I have on my old computer and it's been on here since four years and it never bothered me. If that has changed with newer computers, I will know, but seeing as I'm used to Word and I don't want to explain to my employer why I'm suddenly using something else, I would prefer risking it and keeping this as long as possible. I will look into the NotePadd++ stuff, though! I haven't removed all Windows Live components yet since I can't figure out how many there are and what exactly each one does... there's too much stuff. As in, I dunno if it's just the different language things or if there is more and all. So right now I haven't touched Windows Live things yet. I was not asked to activate Windows at any point. I didn't have to enter the serial number during the recovery process, either. The Windows Sidebar is still odd; I couldn't find anything even remotely similiar to what's described in the link posted to turn it off, but after the Windows Updates, half the sidebar was gone. As in, it's now only half as tall. The Face Logon thing has finally disappeared, maybe the laptop finally caught on that I have uninstalled it several reboots ago... I definitely ran the FRST64 version, but to be sure I downloaded it again. No kidding, it doesn't say "Fix", it says "Delete". Just in German. Maybe it's the worst translation error in the world or something? Shall I try pressing that button (it's the rightmost one and a darker blue than the two in the middle) and hope it does what it is supposed to do and not what it says? Anyway, here's all the logs! I hope I didn't forget anything. . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 29.10.2015 21:34:51 System Uptime: 03.11.2015 22:16:30 (3 hours ago) . Motherboard: ASUSTeK COMPUTER INC. | | K95VM Processor: Intel® Core i5-3210M CPU @ 2.50GHz | SOCKET 0 | 2501/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 401 GiB total, 344,586 GiB free. D: is FIXED (NTFS) - 506 GiB total, 505,539 GiB free. F: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: Description: USB2.0-CRW Device ID: USB\VID_0BDA&PID_0129\20100201396000000 Manufacturer: Name: USB2.0-CRW PNP Device ID: USB\VID_0BDA&PID_0129\20100201396000000 Service: . ==== System Restore Points =================== . RP36: 03.11.2015 19:03:19 - Windows Update . ==== Installed Programs ====================== . ??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? ???? ??? Windows Live ???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? ???? Windows Live ????? Windows Live ?????? ??????? ?? Windows Live ??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? ??????? Windows Live Mesh ActiveX ??? ???????? ?????????? Windows Live ?????????? Windows Live Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader X MUI ASUS AI Recovery ASUS Power4Gear Hybrid ASUS Splendid Video Enhancement Technology Atheros Bluetooth Suite (64) Avira Antivirus Avira Launcher Contrôle ActiveX Windows Live Mesh pour connexions à distance Control ActiveX de Windows Live Mesh para conexiones remotas Controlo ActiveX do Windows Live Mesh para Ligações Remotas D3DX10 ETDWare PS/2-X64 10.5.9.0 Fast Boot Galeria de Fotografias do Windows Live Galerie de photos Windows Live Galería fotográfica de Windows Live InstantOn for NB Intel® Manageability Engine Firmware Recovery Agent Intel® Management Engine Components Intel® OpenCL CPU Runtime Intel® Processor Graphics Intel® USB 3.0 eXtensible Host Controller Driver Intel® Trusted Connect Service Client Junk Mail filter update Mesh Runtime Microsoft .NET Framework 4.5.2 Microsoft Application Error Reporting Microsoft Office 2010 Microsoft Office Klick-und-Los 2010 Microsoft Office Starter 2010 - Deutsch Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 MSVCRT MSVCRT_amd64 NVIDIA Grafiktreiber 311.44 NVIDIA Install Application NVIDIA Optimus 1.11.3 NVIDIA PhysX NVIDIA Systemsteuerung 311.44 NVIDIA Update 1.11.3 NVIDIA Update Components Qualcomm Atheros WiFi Driver Installation Raccolta foto di Windows Live Realtek Ethernet Controller Driver Realtek High Definition Audio Driver S?????? f?t???af??? t?? Windows Live SceneSwitch Shared C Run-time for x64 St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? Windows Live Windows Live ??? Windows Live ???? Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotogalerie Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh ActiveX Control for Remote Connections Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinFlash Wireless Console 3 . ==== End Of File =========================== Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015 durchgeführt von Sheba (Administrator) auf HAKUGYOKUROU (04-11-2015 01:23:10) Gestartet von C:\Users\Sheba\Desktop\Neuer Ordner Geladene Profile: UpdatusUser & Sheba (Verfügbare Profile: UpdatusUser & Sheba) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: IE) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Windows\System32\LogonUI.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2011-12-29] (Atheros Commnucations) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated) HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2012-02-24] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-10-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782520 2015-10-05] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: igfxdev.dll [X] AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-04-08] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-04-08] (NVIDIA Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{82CB53FE-5D4E-42D0-8208-7770DDA827AA}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-892359256-2953846959-8072590-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-892359256-2953846959-8072590-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-16] (Adobe Systems Incorporated) BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29] (Atheros Commnucations) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.) FireFox: ======== FF ProfilePath: C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Keine Datei] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation) FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] Chrome: ======= CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [932912 2015-10-05] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-10-05] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-10-05] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1147720 2015-10-05] (Avira Operations GmbH & Co. KG) R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-17] (ASUS) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [Datei ist nicht signiert] R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [243968 2015-10-14] (Avira Operations GmbH & Co. KG) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation) R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [Datei ist nicht signiert] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2011-12-21] (Windows ® Win 7 DDK provider) S3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2011-11-08] (Windows ® Win 7 DDK provider) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-10-05] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-10-05] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-10-05] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-10-05] (Avira Operations GmbH & Co. KG) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-11-04 01:22 - 2015-11-04 01:23 - 00000000 ____D C:\Users\Sheba\Desktop\Neuer Ordner 2015-11-04 01:19 - 2015-11-04 01:19 - 00029429 _____ C:\Users\Sheba\Desktop\dds.txt 2015-11-03 22:23 - 2015-11-03 22:23 - 00000000 ___RD C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2015-11-03 22:22 - 2015-11-03 22:22 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2015-11-03 22:12 - 2015-11-03 22:12 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-11-03 22:12 - 2015-11-03 22:12 - 00000000 ____D C:\Windows\system32\appraiser 2015-11-03 21:44 - 2015-11-03 21:46 - 00000000 ____D C:\Windows\system32\MRT 2015-11-03 21:44 - 2015-10-02 12:09 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-11-03 21:43 - 2015-01-09 00:44 - 00419936 _____ C:\Windows\SysWOW64\locale.nls 2015-11-03 21:43 - 2015-01-09 00:43 - 00419936 _____ C:\Windows\system32\locale.nls 2015-11-03 21:30 - 2015-07-30 14:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-11-03 21:30 - 2015-07-30 14:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-11-03 21:28 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2015-11-03 21:19 - 2015-11-03 21:19 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-11-03 21:19 - 2015-11-03 21:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-11-03 21:19 - 2015-11-03 21:19 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-11-03 21:19 - 2015-11-03 21:19 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-11-03 21:19 - 2015-11-03 21:19 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2015-11-03 21:19 - 2015-11-03 21:19 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2015-11-03 21:19 - 2015-11-03 21:19 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-11-03 21:19 - 2015-11-03 21:19 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-11-03 21:19 - 2015-11-03 21:19 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2015-11-03 21:19 - 2015-11-03 21:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2015-11-03 21:19 - 2015-11-03 21:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2015-11-03 21:19 - 2015-11-03 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2015-11-03 21:19 - 2015-11-03 21:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-11-03 21:12 - 2015-11-03 21:28 - 00014532 _____ C:\Windows\IE11_main.log 2015-11-03 20:59 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2015-11-03 20:59 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2015-11-03 20:59 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2015-11-03 20:59 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2015-11-03 20:59 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2015-11-03 20:59 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2015-11-03 20:59 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2015-11-03 20:59 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2015-11-03 20:59 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2015-11-03 20:59 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2015-11-03 20:59 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2015-11-03 20:59 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2015-11-03 20:59 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2015-11-03 20:59 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2015-11-03 20:59 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2015-11-03 20:59 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2015-11-03 20:59 - 2013-10-01 21:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-11-03 20:59 - 2013-10-01 21:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-11-03 20:41 - 2015-11-03 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Deutsch) 2015-11-03 20:16 - 2015-11-03 20:16 - 00000000 ____D C:\ProgramData\VirtualizedApplications 2015-11-03 20:07 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2015-11-03 20:07 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2015-11-03 20:07 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2015-11-03 20:07 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2015-11-03 20:07 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2015-11-03 20:07 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2015-11-03 20:07 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2015-11-03 19:31 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2015-11-03 19:31 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2015-11-03 19:31 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2015-11-03 19:31 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2015-11-03 19:31 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2015-11-03 19:18 - 2013-01-13 22:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-11-03 19:18 - 2013-01-13 21:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2015-11-03 19:18 - 2013-01-13 21:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2015-11-03 19:18 - 2013-01-13 21:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll 2015-11-03 19:18 - 2013-01-13 21:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll 2015-11-03 19:18 - 2013-01-13 20:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-11-03 19:18 - 2013-01-13 20:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-11-03 19:18 - 2013-01-13 20:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll 2015-11-03 19:18 - 2013-01-13 20:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll 2015-11-03 19:18 - 2013-01-13 20:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll 2015-11-03 19:18 - 2013-01-13 20:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2015-11-03 19:18 - 2013-01-13 20:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2015-11-03 19:18 - 2013-01-13 20:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll 2015-11-03 19:18 - 2013-01-13 20:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll 2015-11-03 19:18 - 2013-01-13 20:43 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-11-03 19:18 - 2013-01-13 20:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2015-11-03 19:18 - 2013-01-13 20:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2015-11-03 19:18 - 2013-01-13 20:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2015-11-03 19:18 - 2013-01-13 20:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll 2015-11-03 19:18 - 2013-01-13 20:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2015-11-03 19:18 - 2013-01-13 20:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll 2015-11-03 19:18 - 2013-01-13 20:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2015-11-03 19:18 - 2013-01-13 20:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2015-11-03 19:18 - 2013-01-13 20:15 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-11-03 19:18 - 2013-01-13 20:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2015-11-03 19:18 - 2013-01-13 20:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2015-11-03 19:18 - 2013-01-13 19:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2015-11-03 19:18 - 2013-01-13 19:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2015-11-03 19:18 - 2013-01-13 19:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2015-11-03 19:18 - 2013-01-13 18:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2015-11-03 19:18 - 2013-01-13 18:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2015-11-03 19:18 - 2013-01-04 07:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2015-11-03 19:18 - 2013-01-04 07:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2015-11-03 19:13 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2015-11-03 19:13 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2015-11-03 19:13 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll 2015-11-03 19:03 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2015-11-03 19:03 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll 2015-11-03 19:03 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-11-03 19:03 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-11-03 19:03 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2015-11-03 19:03 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2015-11-03 19:03 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe 2015-11-03 19:03 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll 2015-11-03 19:01 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-11-03 19:01 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll 2015-11-03 19:01 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2015-11-03 19:01 - 2015-07-15 19:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2015-11-03 19:01 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2015-11-03 19:01 - 2015-07-15 19:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2015-11-03 19:01 - 2015-04-18 04:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-11-03 19:01 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2015-11-03 19:00 - 2015-09-14 20:45 - 03210240 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-11-03 19:00 - 2015-08-05 18:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-11-03 19:00 - 2015-08-05 18:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-11-03 19:00 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-11-03 19:00 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll 2015-11-03 19:00 - 2015-04-29 19:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-11-03 19:00 - 2015-04-29 19:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-11-03 19:00 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-11-03 19:00 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-11-03 19:00 - 2015-04-29 19:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-11-03 19:00 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2015-11-03 19:00 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2015-11-03 19:00 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2015-11-03 19:00 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2015-11-03 19:00 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2015-11-03 19:00 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-11-03 19:00 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll 2015-11-03 19:00 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll 2015-11-03 19:00 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll 2015-11-03 19:00 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll 2015-11-03 19:00 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2015-11-03 19:00 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2015-11-03 19:00 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2015-11-03 19:00 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll 2015-11-03 19:00 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2015-11-03 19:00 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2015-11-03 19:00 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2015-11-03 19:00 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll 2015-11-03 18:59 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-11-03 18:59 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-11-03 18:59 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-11-03 18:59 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2015-11-03 18:58 - 2015-02-03 04:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2015-11-03 18:58 - 2015-02-03 04:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2015-11-03 18:58 - 2015-02-03 04:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2015-11-03 18:58 - 2015-02-03 04:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2015-11-03 18:58 - 2015-02-03 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2015-11-03 18:58 - 2015-02-03 04:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2015-11-03 18:58 - 2015-02-03 04:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2015-11-03 18:58 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2015-11-03 18:58 - 2015-02-03 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2015-11-03 18:58 - 2015-02-03 04:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2015-11-03 18:58 - 2015-02-03 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2015-11-03 18:57 - 2015-09-18 20:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-11-03 18:57 - 2015-09-18 20:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-11-03 18:57 - 2015-09-18 20:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-11-03 18:57 - 2015-09-18 20:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-11-03 18:57 - 2015-06-03 21:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2015-11-03 18:57 - 2015-06-03 21:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-11-03 18:56 - 2015-09-29 04:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-11-03 18:56 - 2015-09-29 04:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-11-03 18:56 - 2015-09-29 04:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-11-03 18:56 - 2015-09-29 04:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-11-03 18:56 - 2015-09-29 04:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-11-03 18:56 - 2015-09-29 04:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-11-03 18:56 - 2015-09-29 04:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-11-03 18:56 - 2015-09-29 04:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-11-03 18:56 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-11-03 18:56 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-11-03 18:56 - 2015-09-29 04:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-11-03 18:56 - 2015-09-29 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-11-03 18:56 - 2015-09-29 04:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-11-03 18:56 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corp
  13. Okay, here are my news. Also I'm sorry if I can't be online tomorrow and also not for longer today, but I have a very important appointment tomorrow and must sleep early. Sorry for any delays! The ASUS FaceLogon and ASUS K45_K75_K95_Screensaver were actually the two things I had removed because they were similiar to what you said first, so no damage should have been done (remember the Attach.txt was from before I started removing things even for the first time). I removed everything you listed now except for Mesh Runtime, which I cannot find at all. The ATK Package had been removed by me during my first session of erasing things since you had listed it there... the two error messages upon boot (about the ATK Driver and the P4G "This program can only run on an ASUS") still persist upon every boot. Most of the programs seem to be from Windows Live indeed, but they all seem to be the same thing except in different languages? There's a lot of foreign letters there, but from what I know about other languages they all have the same name. I also keep getting these speech bubbles in the bottom right corner about something called Bluetooth. The sidebar still is there and refuses to leave me alone. I checked the Microsoft Office 2010 thing and while it tried to sell me something at first it also let me install/open Microsoft Word Starter. I think that's the exact same thing which I use for work on my old computer and I don't think it's a trial version - just has a bit of advertisement on the side, but otherwise seems to run unlimited and I need it for work anyway since using Notepad doesn't seem very professional... I have not started Windows Updates yet. Shall I do that now? I thought maybe for making fewer rescue disks once everything is cleaned up, having less updates would be a good thing, but I can start the updates right away. Now for nasdaq's instructions: I did as you said, but there is no fix option in my FRST. There is 'Scan', 'File-Search', 'Registry-Search' and 'Delete', but no scan-button anywhere. Or am I blind? The fixlist.txt is definitely in the correct folder. I must be overlooking something, but I absolutely can't find the correct button. Here is, at least, the Addition.txt file. Note it's not up to date anymore; some of the programs I just saw there when copying it have been removed by now. Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-10-2015 durchgeführt von Sheba (2015-10-31 20:09:08) Gestartet von C:\Users\Public\Pictures Windows 7 Home Premium Service Pack 1 (X64) (2015-10-29 20:34:51) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-892359256-2953846959-8072590-500 - Administrator - Disabled) Gast (S-1-5-21-892359256-2953846959-8072590-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-892359256-2953846959-8072590-1003 - Limited - Enabled) Sheba (S-1-5-21-892359256-2953846959-8072590-1001 - Administrator - Enabled) => C:\Users\Sheba UpdatusUser (S-1-5-21-892359256-2953846959-8072590-1000 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.1.85.3 - Adobe Systems Incorporated) Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated) Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated) ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.30 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.25 - ASUS) ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.9 - ASUS) ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.) AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK) Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.210 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{59c4462d-a177-4d44-a95b-deda1be79844}) (Version: 1.1.49.18939 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.1.49.18939 - Avira Operations GmbH & Co. KG) Hidden Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS) Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.2.0 - ASUS) Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation) Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation) Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2669 - Intel Corporation) Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) NVIDIA Graphics Driver 290.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 290.81 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation) NVIDIA Update 1.6.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.6.24 - NVIDIA Corporation) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6537 - Realtek Semiconductor Corp.) SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS) Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS) Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation) Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation) גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation) بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation) معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden 適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Wiederherstellungspunkte ========================= 29-10-2015 22:13:47 Geplanter Prüfpunkt 29-10-2015 22:13:50 Sprachpaketdeinstallation 30-10-2015 20:59:21 Sprachpaketdeinstallation 31-10-2015 19:12:23 Windows Modules Installer 31-10-2015 19:15:42 Removed ASUS FaceLogon 31-10-2015 19:18:10 Konfiguriert LabelPrint 31-10-2015 19:18:56 Konfiguriert PowerStarter 31-10-2015 19:19:32 Konfiguriert Power2Go 31-10-2015 19:20:36 Removed ATK Package 31-10-2015 19:22:27 Removed ASUS Live Update ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {50C445F5-63C7-4307-A2BA-3FD175178DC3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {8CACC2E7-DA32-4365-89B9-EBDDAF5FF978} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-16] (ASUS) Task: {9DA4301C-41FD-45F3-B120-F203416BCBE0} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {A6DC7C43-AA63-4300-A1BC-41CA83089241} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2011-12-21] (ASUSTeK Computer Inc.) Task: {B8C7189D-9E2E-442B-9971-35E04DAA0C24} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2011-12-21] (ASUSTeK Computer Inc.) Task: {D855A7EA-C319-48E7-84D3-EF1621C8F708} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-10-31 06:13 - 2012-02-21 05:29 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe 2011-12-23 18:24 - 2011-12-23 18:24 - 00119808 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe 2015-10-31 06:13 - 2012-02-21 05:09 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll 2011-07-20 00:05 - 2011-07-20 00:05 - 14978048 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtWebKit4.dll 2011-07-20 00:04 - 2011-07-20 00:04 - 00317952 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\phonon4.dll 2011-08-16 04:17 - 2011-08-16 04:17 - 09224704 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll 2011-08-16 04:12 - 2011-08-16 04:12 - 02603520 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll 2011-08-16 04:12 - 2011-08-16 04:12 - 01006592 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-892359256-2953846959-8072590-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{56048913-2EE4-4FB6-9B10-B11FD9535645}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{A56F99CF-933B-4F79-9B77-D54139039647}] => (Allow) LPort=2869 FirewallRules: [{7200A232-CB9A-4548-89E0-CF072E6C2E3E}] => (Allow) LPort=1900 FirewallRules: [{B47DCE39-BD05-4FD0-BC5F-8FCE7C3FBB7F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{BE0EC94A-88B6-4356-B121-F67FE5BE0F40}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{19E284DE-FE65-45E9-8827-69D5454439A1}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{EDA33C67-02FC-4CBB-B8DE-B369AC2BA16B}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{A87F55DA-E575-4EED-96C3-45FAF8205A78}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{77C18C1D-5BDA-4FEF-89A5-A487FB888AE1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: USB2.0-CRW Description: USB2.0-CRW Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Systemfehler: ============= Error: (10/31/2015 07:01:35 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT-AUTORITÄT) Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x80080005 Error: (10/31/2015 07:01:35 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED} Error: (10/31/2015 04:54:04 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766} Error: (10/31/2015 03:11:41 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. Error: (10/31/2015 03:11:40 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. Error: (10/31/2015 03:01:40 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. Error: (10/31/2015 03:01:40 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. Error: (10/31/2015 02:51:39 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. Error: (10/31/2015 02:51:39 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. Error: (10/31/2015 02:41:38 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung empfangen: 40. ==================== Speicherinformationen =========================== Prozessor: Intel® Core i5-3210M CPU @ 2.50GHz Prozentuale Nutzung des RAM: 28% Installierter physikalischer RAM: 8078.32 MB Verfügbarer physikalischer RAM: 5780.72 MB Summe virtueller Speicher: 16154.84 MB Verfügbarer virtueller Speicher: 13596 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:400.55 GB) (Free:347.11 GB) NTFS ==>[system mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (DATA) (Fixed) (Total:505.64 GB) (Free:505.54 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 9158AFC3) Partition: GPT. ==================== Ende von Addition.txt ============================
  14. Okay, this turned out very problematic, I am getting showered in error messages. Here's what happened step by step: 1) Uninstalled McAfee following the instructions. No problems. 2) Started uninstalling things. - Uninstalled BingBar - Could not find Live ID - Could not find Asus SMART Logon, but there was something called ASUS Logon, so I uninstalled that instead. Smart Logon is still something shown in the sidebar, though. - Could not find QuickGesture64 - Could notfind ASUS Screen Saver Protector, but there was something else with ASUS and Screensaver in the name, so I uninstalled that. - Uninstalled all three CyberLink programs. - Could not find HP MediaSmart - Uninstalled ATKMedia and ASUS Live Update After the reboot demanded from unstalling ATKMedia and ASUS Live Update, hell started. Now upon rebooting, I get the error message "This program can only be run on an ASUS computer", which is as nondescriptive as possible. I click it away. Then I get the error message "Driver failure. Please install ATK100 driver". I click that away, too. Then I tried to turn off the sidebar. But when following the instructions and entering "gpedit.msc" into the run command I get the message that this doesn't exist. I know MS also gives another method involving the registry but there's also a warning this might mess things up and... I am obviously good at messing things up, so I figured I should ask first if I should try that. So I then downloaded and installed Avira. No problems there. When Avira did its first search, I went away to do something else since it takes time and upon returning, I was greeted with the next error message: "Microsoft Visual C++ Runtime Library Assertion failed! Program: ... File: .\mongoose.c Line: 3830 Expression: ctx->sq_head > ctx->sq_tail" Once I clicked that away, I got one of these speech bubbles in the bottom right corner. It went away too fast for me to read it all, but I remember it saying "Intel ME Recovery Agent encountered a problem" and that the program stopped. And then I got another speech bubble that a USB driver couldn't be found (something with CW2.0 or something like that... I was still busy writing down the last error message, so I couldn't catch it fast enough). Too many error messages! Anyway, here are the requested logs. I was not sure if you wanted a new Attach.txt file from DDS after me removing the programs (well, the ones I found, anyway)? I did a new one, just in case, but will post the old one for now. Following that is the Farbar log requested by nasdaq. However, the Addition.txt was too big to upload (at least that's what it told me), so I can't do that. Thanks so much for the help! . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 29.10.2015 21:34:51 System Uptime: 30.10.2015 23:42:20 (3 hours ago) . Motherboard: ASUSTeK COMPUTER INC. | | K95VM Processor: Intel® Core i5-3210M CPU @ 2.50GHz | SOCKET 0 | 2501/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 401 GiB total, 348,964 GiB free. D: is FIXED (NTFS) - 506 GiB total, 505,539 GiB free. F: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: Description: USB2.0-CRW Device ID: USB\VID_0BDA&PID_0129\20100201396000000 Manufacturer: Name: USB2.0-CRW PNP Device ID: USB\VID_0BDA&PID_0129\20100201396000000 Service: . ==== System Restore Points =================== . RP21: 29.10.2015 22:13:47 - Geplanter Prüfpunkt RP22: 29.10.2015 22:13:50 - Sprachpaketdeinstallation RP23: 30.10.2015 20:59:21 - Sprachpaketdeinstallation . ==== Installed Programs ====================== . ??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? ???? ??? Windows Live ???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? ???? Windows Live ????? Windows Live ?????? ??????? ?? Windows Live ??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? ??????? Windows Live Mesh ActiveX ??? ???????? ?????????? Windows Live ?????????? Windows Live Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader X MUI ASUS AI Recovery ASUS FaceLogon ASUS K45_K75_K95_Screensaver ASUS LifeFrame3 ASUS Live Update ASUS Power4Gear Hybrid ASUS Splendid Video Enhancement Technology ASUS USB Charger Plus ASUS Virtual Camera ASUS Virtual Touch ASUS WebStorage AsusVibe2.0 Atheros Bluetooth Suite (64) ATK Package Bing Bar Contrôle ActiveX Windows Live Mesh pour connexions à distance Control ActiveX de Windows Live Mesh para conexiones remotas Controlo ActiveX do Windows Live Mesh para Ligações Remotas CyberLink LabelPrint CyberLink Media Suite CyberLink Power2Go D3DX10 ETDWare PS/2-X64 10.5.9.0 Fast Boot Galeria de Fotografias do Windows Live Galerie de photos Windows Live Galería fotográfica de Windows Live InstantOn for NB Intel® Manageability Engine Firmware Recovery Agent Intel® Management Engine Components Intel® OpenCL CPU Runtime Intel® Processor Graphics Intel® USB 3.0 eXtensible Host Controller Driver Intel® Trusted Connect Service Client Junk Mail filter update McAfee Internet Security McAfee SiteAdvisor Mesh Runtime Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Application Error Reporting Microsoft Office 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 MSVCRT MSVCRT_amd64 NVIDIA Control Panel 290.81 NVIDIA Graphics Driver 290.81 NVIDIA Install Application NVIDIA Optimus 1.6.24 NVIDIA PhysX NVIDIA Update 1.6.24 NVIDIA Update Components Qualcomm Atheros WiFi Driver Installation Raccolta foto di Windows Live Realtek Ethernet Controller Driver Realtek High Definition Audio Driver S?????? f?t???af??? t?? Windows Live SceneSwitch Shared C Run-time for x64 St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? Windows Live Windows Live ??? Windows Live ???? Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotogalerie Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh ActiveX control for remote connections Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinFlash Wireless Console 3 . ==== End Of File =========================== Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015 durchgeführt von Sheba (Administrator) auf HAKUGYOKUROU (31-10-2015 19:56:31) Gestartet von C:\Users\Public\Pictures Geladene Profile: UpdatusUser & Sheba (Verfügbare Profile: UpdatusUser & Sheba) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 9 (Standard-Browser: IE) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10k_ActiveX.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2011-12-29] (Atheros Commnucations) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated) HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2012-02-24] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [737104 2011-07-29] (ecareme) HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-10-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782520 2015-10-05] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [260416 2012-03-04] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [214848 2012-03-04] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.) ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2012-02-24] ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{82CB53FE-5D4E-42D0-8208-7770DDA827AA}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-892359256-2953846959-8072590-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-892359256-2953846959-8072590-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-16] (Adobe Systems Incorporated) BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29] (Atheros Commnucations) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.) FireFox: ======== FF ProfilePath: C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Keine Datei] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation) FF Extension: Avira Browser Safety - C:\Users\Sheba\AppData\Roaming\Mozilla\Firefox\Profiles\QBTBfUqI.default\Extensions\abs@avira.com [2015-10-31] [ist nicht signiert] Chrome: ======= CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [932912 2015-10-05] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-10-05] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-10-05] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1147720 2015-10-05] (Avira Operations GmbH & Co. KG) R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-17] (ASUS) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [Datei ist nicht signiert] R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [243968 2015-10-14] (Avira Operations GmbH & Co. KG) R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [Datei ist nicht signiert] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.) R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2011-12-21] (Windows ® Win 7 DDK provider) R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2011-11-08] (Windows ® Win 7 DDK provider) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-10-05] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-10-05] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-10-05] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-10-05] (Avira Operations GmbH & Co. KG) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-31 19:55 - 2015-10-31 19:57 - 00000000 ____D C:\FRST 2015-10-31 19:31 - 2015-10-31 19:31 - 00000000 ____D C:\Users\Sheba\AppData\Roaming\Mozilla 2015-10-31 19:31 - 2015-10-31 19:31 - 00000000 ____D C:\Users\Sheba\AppData\Roaming\Avira 2015-10-31 19:30 - 2015-10-05 15:51 - 00163544 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-10-31 19:30 - 2015-10-05 15:51 - 00141416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2015-10-31 19:30 - 2015-10-05 15:51 - 00074952 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-10-31 19:30 - 2015-10-05 15:51 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2015-10-31 19:29 - 2015-10-31 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-10-31 19:29 - 2015-10-31 19:30 - 00000000 ____D C:\ProgramData\Avira 2015-10-31 19:29 - 2015-10-31 19:30 - 00000000 ____D C:\Program Files (x86)\Avira 2015-10-31 19:29 - 2015-10-31 19:29 - 00001208 _____ C:\Users\Public\Desktop\Avira Launcher.lnk 2015-10-31 19:29 - 2015-10-31 19:29 - 00000000 ____D C:\ProgramData\Package Cache 2015-10-31 19:21 - 2015-10-31 19:21 - 00000000 ___RD C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2015-10-31 19:17 - 2015-10-31 19:17 - 00024576 _____ () C:\Users\Sheba\AppData\Local\uninst.tmp 2015-10-31 19:07 - 2015-10-31 19:07 - 00000000 ____D C:\Users\Sheba\AppData\Roaming\Macromedia 2015-10-31 06:21 - 2015-10-31 06:21 - 00000109 _____ C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2015-10-31 06:20 - 2015-10-31 06:21 - 00000105 _____ C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2015-10-31 06:20 - 2015-10-31 06:21 - 00000000 ____D C:\ProgramData\Temp 2015-10-31 06:20 - 2015-10-31 06:20 - 00068166 _____ C:\Windows\AsChkDev.txt 2015-10-31 06:20 - 2015-10-31 06:20 - 00000107 _____ C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2015-10-31 06:20 - 2015-10-31 06:20 - 00000000 ____N C:\Windows\SysWOW64\Drivers\1043_ASUSTEK_K45A_K45VM_K45VG_K45VS_K45VD_K75A_K75VM_K75VD_K95VM_V60_WIN7.MRK 2015-10-31 06:20 - 2015-10-31 06:20 - 00000000 ____D C:\ProgramData\USBChargerPlus 2015-10-31 06:20 - 2015-10-31 06:20 - 00000000 ____D C:\ProgramData\CyberLink 2015-10-31 06:19 - 2015-10-29 21:40 - 00000000 ____D C:\ProgramData\Atheros 2015-10-31 06:18 - 2015-10-31 19:03 - 00001636 _____ C:\Windows\system32\ServiceFilter.ini 2015-10-31 06:18 - 2015-10-31 06:18 - 03058304 _____ (ASUS) C:\Windows\AsScrPro.exe 2015-10-31 06:18 - 2015-10-31 06:18 - 00003230 _____ C:\Windows\System32\Tasks\SidebarExecute 2015-10-31 06:18 - 2015-10-31 06:18 - 00003054 _____ C:\Windows\System32\Tasks\ASUS P4G 2015-10-31 06:18 - 2015-10-31 06:18 - 00003026 _____ C:\Windows\System32\Tasks\ASUS USB Charger Plus 2015-10-31 06:18 - 2015-10-31 06:18 - 00000716 _____ C:\Users\Public\Desktop\eManual.Lnk 2015-10-31 06:18 - 2015-10-31 06:18 - 00000000 ____D C:\ProgramData\P4G 2015-10-31 06:18 - 2015-10-31 06:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility 2015-10-31 06:18 - 2015-10-31 06:18 - 00000000 ____D C:\Program Files\ASUS 2015-10-31 06:18 - 2015-10-29 21:35 - 00001838 _____ C:\Windows\system32\AutoRunFilter.ini 2015-10-31 06:18 - 2015-10-29 21:34 - 00000080 _____ C:\Windows\system32\Defrag.ini 2015-10-31 06:18 - 2012-02-29 19:08 - 00017152 _____ (ASUSTek Computer Inc.) C:\Windows\system32\Drivers\AiCharger.sys 2015-10-31 06:18 - 2012-02-21 22:49 - 00162456 ____N (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe 2015-10-31 06:18 - 2011-03-04 00:57 - 00379520 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe 2015-10-31 06:18 - 2009-06-13 01:55 - 00000105 _____ C:\Windows\system32\FastBoot.ini 2015-10-31 06:18 - 2009-06-05 21:35 - 00000052 _____ C:\Windows\system32\RemoveFont.ini 2015-10-31 06:18 - 2009-06-05 21:35 - 00000015 _____ C:\Windows\system32\BootTime.ini 2015-10-31 06:17 - 2015-10-31 06:17 - 00005966 _____ C:\Windows\DPINST.LOG 2015-10-31 06:17 - 2015-10-31 06:17 - 00003438 _____ C:\Windows\System32\Tasks\ASUS Quick Gesture (x64) 2015-10-31 06:17 - 2015-10-31 06:17 - 00003422 _____ C:\Windows\System32\Tasks\ASUS Quick Gesture 2015-10-31 06:17 - 2015-10-31 06:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2015-10-31 06:17 - 2015-10-31 06:17 - 00000000 ____D C:\Program Files\Elantech 2015-10-31 06:17 - 2012-02-27 12:00 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll 2015-10-31 06:16 - 2015-10-31 06:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2015-10-31 06:15 - 2015-10-31 06:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program 2015-10-31 06:15 - 2015-10-31 06:15 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2015-10-31 06:14 - 2015-10-31 06:14 - 00000000 ____D C:\ProgramData\Qualcomm Atheros 2015-10-31 06:14 - 2015-10-31 06:14 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation 2015-10-31 06:14 - 2011-12-28 05:45 - 00071816 _____ C:\Windows\system32\athrextx.cat 2015-10-31 06:14 - 2011-12-28 05:44 - 02797056 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2015-10-31 06:14 - 2011-12-28 05:44 - 02797056 _____ (Atheros Communications, Inc.) C:\Windows\system32\athrx.sys 2015-10-31 06:13 - 2015-10-31 19:49 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job 2015-10-31 06:13 - 2015-10-31 19:21 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job 2015-10-31 06:13 - 2015-10-31 19:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-10-31 06:13 - 2015-10-31 06:13 - 00003492 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d 2015-10-31 06:13 - 2015-10-31 06:13 - 00003188 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ___HD C:\Program Files (x86)\Temp 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\ProgramData\SonicFocus 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\ProgramData\Intel 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\Program Files\Realtek 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\Program Files\Intel 2015-10-31 06:13 - 2015-10-31 06:13 - 00000000 ____D C:\Program Files (x86)\Realtek 2015-10-31 06:13 - 2012-02-21 05:10 - 00015128 _____ C:\Windows\system32\Drivers\IntelMEFWVer.dll 2015-10-31 06:13 - 2011-12-27 14:12 - 04727656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-10-31 06:13 - 2011-12-27 12:02 - 00204940 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-10-31 06:13 - 2011-12-27 12:00 - 02765312 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-10-31 06:13 - 2011-12-23 06:30 - 00823912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-10-31 06:13 - 2011-12-22 03:32 - 03745384 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2015-10-31 06:13 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-10-31 06:13 - 2011-12-19 22:43 - 00220776 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2015-10-31 06:13 - 2011-12-18 10:58 - 05996376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2015-10-31 06:13 - 2011-12-18 10:58 - 02603864 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2015-10-31 06:13 - 2011-12-18 10:58 - 02131288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2015-10-31 06:13 - 2011-12-18 10:58 - 01247576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2015-10-31 06:13 - 2011-12-18 10:58 - 00955736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2015-10-31 06:13 - 2011-12-15 05:39 - 00100968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-10-31 06:13 - 2011-12-13 13:22 - 02528832 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-10-31 06:13 - 2011-12-13 09:58 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-10-31 06:13 - 2011-12-13 04:01 - 01698408 ____N (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-10-31 06:13 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-10-31 06:13 - 2011-11-22 04:36 - 02615400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-10-31 06:13 - 2011-09-29 10:30 - 00646248 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2015-10-31 06:13 - 2011-09-29 10:30 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2015-10-31 06:13 - 2011-09-29 10:30 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll 2015-10-31 06:13 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2015-10-31 06:13 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2015-10-31 06:13 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2015-10-31 06:13 - 2011-08-23 10:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2015-10-31 06:13 - 2011-08-05 18:29 - 00527872 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2015-10-31 06:13 - 2011-08-05 18:29 - 00515584 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2015-10-31 06:13 - 2011-08-05 18:29 - 00439808 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2015-10-31 06:13 - 2011-07-22 12:35 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-10-31 06:13 - 2011-07-08 07:34 - 00065432 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2015-10-31 06:13 - 2011-06-14 04:13 - 00177088 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-10-31 06:13 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-10-31 06:13 - 2011-05-02 07:27 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-10-31 06:13 - 2011-05-02 07:27 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-10-31 06:13 - 2011-05-02 07:27 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-10-31 06:13 - 2011-05-02 07:27 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-10-31 06:13 - 2011-05-02 07:27 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-10-31 06:13 - 2011-03-17 05:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2015-10-31 06:13 - 2011-03-07 10:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2015-10-31 06:13 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2015-10-31 06:13 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2015-10-31 06:13 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2015-10-31 06:13 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2015-10-31 06:13 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2015-10-31 06:13 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2015-10-31 06:13 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-10-31 06:13 - 2010-10-03 06:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-10-31 06:13 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-10-31 06:13 - 2010-07-22 09:48 - 00074064 ____N (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2015-10-31 06:13 - 2010-07-22 09:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-10-31 06:13 - 2010-05-06 10:34 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-10-31 06:13 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2015-10-31 06:13 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2015-10-31 06:13 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2015-10-31 06:13 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2015-10-31 06:13 - 2009-11-17 11:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2015-10-31 06:12 - 2015-10-31 06:19 - 00000000 ____D C:\Windows\SysWOW64\NV 2015-10-31 06:12 - 2015-10-31 06:19 - 00000000 ____D C:\Windows\system32\NV 2015-10-31 06:11 - 2015-10-31 06:12 - 00000000 ____D C:\ProgramData\NVIDIA 2015-10-31 06:11 - 2015-10-31 06:12 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-10-31 06:11 - 2015-10-31 06:11 - 00015878 _____ C:\Windows\system32\results.xml 2015-10-31 06:11 - 2015-10-31 06:11 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2015-10-31 06:11 - 2015-10-31 06:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-10-31 06:11 - 2015-10-31 06:11 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-10-31 06:11 - 2012-03-05 00:28 - 06005568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-10-31 06:11 - 2012-03-05 00:28 - 03032896 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-10-31 06:11 - 2012-03-05 00:27 - 02944183 _____ C:\Windows\system32\nvcoproc.bin 2015-10-31 06:11 - 2012-03-05 00:26 - 02562368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-10-31 06:11 - 2012-03-05 00:26 - 00889664 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-10-31 06:11 - 2012-03-05 00:26 - 00840000 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2015-10-31 06:11 - 2012-03-05 00:26 - 00118080 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-10-31 06:11 - 2012-03-05 00:26 - 00063296 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-10-31 06:11 - 2012-03-05 00:26 - 00055616 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 25433920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 25137472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 19350336 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 17498432 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 17483584 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 14864192 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 14025536 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-10-31 06:11 - 2012-03-04 22:34 - 09623872 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 07984448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 07678784 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 05874496 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 02660672 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 02506560 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 02403648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 02374464 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 02206016 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 02096448 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 01715008 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 01454912 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco64.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00951616 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00802112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00372544 _____ (NVIDIA Corporation) C:\Windows\system32\nvoptimusmft.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00363328 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00331072 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoptimusmft.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00301376 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00260416 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00214848 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-10-31 06:11 - 2012-03-04 22:34 - 00028992 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2015-10-31 06:11 - 2012-03-04 22:34 - 00007654 _____ C:\Windows\system32\nvinfo.pb 2015-10-31 06:11 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-31 06:11 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-10-31 06:09 - 2015-10-31 06:17 - 00000000 ____D C:\Program Files (x86)\Intel 2015-10-31 06:09 - 2015-10-31 06:09 - 00000000 ____D C:\Program Files\Common Files\Intel 2015-10-31 06:09 - 2015-10-31 06:09 - 00000000 ____D C:\Intel 2015-10-31 06:09 - 2012-01-16 04:06 - 00053248 ____N (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2015-10-31 06:08 - 2015-10-31 19:30 - 00059145 _____ C:\Windows\WindowsUpdate.log 2015-10-31 06:08 - 2011-01-28 20:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll 2015-10-31 06:08 - 2011-01-28 06:46 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll 2015-10-31 06:08 - 2010-12-29 11:57 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2015-10-31 06:04 - 2015-10-31 06:04 - 00000000 _____ C:\Windows\AsRunBar.txt 2015-10-31 06:04 - 2012-03-27 02:55 - 00000034 _____ C:\Windows\AsToolCDVer.txt 2015-10-31 06:03 - 2015-10-31 06:18 - 00000000 ____D C:\eSupport 2015-10-31 02:28 - 2015-10-31 02:28 - 00688992 ____R (Swearware) C:\Users\Sheba\Desktop\dds.scr 2015-10-30 20:26 - 2015-10-30 20:26 - 00262144 _____ C:\Windows\system32\config\ELAM 2015-10-30 19:43 - 2015-10-30 19:43 - 00000000 ____D C:\Users\Sheba\AppData\Roaming\Adobe 2015-10-30 19:43 - 2015-10-30 19:43 - 00000000 ____D C:\Users\Sheba\AppData\Local\Google 2015-10-30 19:42 - 2015-10-30 19:42 - 00001142 _____ C:\Users\Sheba\Desktop\Willkommen zur ASUS Produktregistrierung.lnk 2015-10-30 19:13 - 2015-10-30 19:13 - 00000000 ____D C:\Users\Sheba\AppData\Local\Power2Go 2015-10-29 21:41 - 2015-10-29 21:41 - 00000000 ____D C:\Users\Sheba\AppData\Roaming\ASUS WebStorage 2015-10-29 21:41 - 2015-10-29 21:41 - 00000000 ____D C:\Users\Sheba\AppData\Local\Apps\2.0 2015-10-29 21:40 - 2015-10-29 21:40 - 00000000 ____D C:\Users\Sheba\Documents\Bluetooth Folder 2015-10-29 21:40 - 2015-10-29 21:40 - 00000000 ____D C:\Users\Sheba\AppData\Roaming\Atheros 2015-10-29 21:40 - 2015-10-29 21:40 - 00000000 ____D C:\Users\Sheba\AppData\Local\BMExplorer 2015-10-29 21:36 - 2015-10-29 21:36 - 00001437 _____ C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-10-29 21:36 - 2015-10-29 21:36 - 00001403 _____ C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2015-10-29 21:35 - 2015-10-31 19:17 - 00000387 _____ C:\Users\Sheba\AppData\Roaming\sp_data.sys 2015-10-29 21:35 - 2015-10-29 21:35 - 00057560 _____ C:\Users\Sheba\AppData\Local\GDIPFONTCACHEV1.DAT 2015-10-29 21:35 - 2015-10-29 21:35 - 00000200 _____ C:\Windows\FixPatch.log 2015-10-29 21:35 - 2015-10-29 21:35 - 00000000 __RSD C:\Users\Public\Desktop\ASUS 2015-10-29 21:35 - 2015-10-29 21:35 - 00000000 ____D C:\Users\Sheba\AppData\Local\VirtualStore 2015-10-29 21:35 - 2015-10-29 21:35 - 00000000 ____D C:\ProgramData\FolderView 2015-10-29 21:35 - 2015-10-29 21:35 - 00000000 _____ C:\Users\Sheba\agent.log 2015-10-29 21:34 - 2015-10-29 21:36 - 00000000 ____D C:\Users\Sheba 2015-10-29 21:34 - 2015-10-29 21:34 - 00000020 ___SH C:\Users\Sheba\ntuser.ini 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Vorlagen 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Startmenü 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Netzwerkumgebung 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Lokale Einstellungen 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Eigene Dateien 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Druckumgebung 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Documents\Eigene Musik 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Documents\Eigene Bilder 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\AppData\Local\Verlauf 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\AppData\Local\Anwendungsdaten 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 _SHDL C:\Users\Sheba\Anwendungsdaten 2015-10-29 21:34 - 2015-10-29 21:34 - 00000000 ____D C:\Users\Sheba\AppData\Local\ASUS 2015-10-29 21:34 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-29 21:34 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\Sheba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-31 19:28 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-31 19:28 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-31 19:26 - 2011-02-19 05:24 - 00696370 _____ C:\Windows\system32\perfh007.dat 2015-10-31 19:26 - 2011-02-19 05:24 - 00147634 _____ C:\Windows\system32\perfc007.dat 2015-10-31 19:26 - 2009-07-14 06:13 - 01611160 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-31 19:22 - 2012-02-24 03:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2015-10-31 19:22 - 2012-02-24 03:42 - 00000000 ____D C:\Program Files (x86)\ASUS 2015-10-31 19:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-31 19:21 - 2009-07-14 05:51 - 00051469 _____ C:\Windows\setupact.log 2015-10-31 19:13 - 2009-07-14 04:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-31 19:10 - 2012-02-24 02:34 - 00012682 _____ C:\Windows\PFRO.log 2015-10-31 19:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2015-10-31 06:29 - 2009-07-29 07:03 - 00000000 ____D C:\Windows\Panther 2015-10-31 06:29 - 2009-07-14 05:46 - 00005075 _____ C:\Windows\DtcInstall.log 2015-10-31 06:15 - 2011-12-29 22:02 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBt.bin 2015-10-31 06:15 - 2011-12-29 22:02 - 00001796 _____ C:\Windows\system32\Drivers\ramps_0x11020000_40.dfu 2015-10-31 06:15 - 2011-12-29 22:02 - 00001242 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x01.dfu 2015-10-31 06:15 - 2011-12-29 22:02 - 00001214 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x03.dfu 2015-10-31 06:15 - 2011-12-29 22:02 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu 2015-10-31 06:15 - 2011-12-29 22:02 - 00001204 _____ C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu 2015-10-31 06:15 - 2011-12-29 22:02 - 00001198 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu 2015-10-31 06:15 - 2011-12-29 22:02 - 00001192 _____ C:\Windows\system32\Drivers\ramps_0x01020200_26_0x01.dfu 2015-10-31 06:13 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2015-10-31 06:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help 2015-10-31 06:06 - 2009-07-29 06:07 - 00008134 _____ C:\Windows\TSSysprep.log 2015-10-31 06:04 - 2009-07-14 06:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2015-10-31 06:04 - 2009-07-14 06:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2015-10-31 06:03 - 2009-07-29 06:20 - 00000000 ____D C:\Windows\ASUS 2015-10-31 05:00 - 2011-02-19 05:18 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\SysWOW64\winrm 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\SysWOW64\WCN 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\SysWOW64\sysprep 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\system32\winrm 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\system32\WCN 2015-10-31 05:00 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\system32\slmgr 2015-10-31 05:00 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2015-10-31 05:00 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-10-31 05:00 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Setup 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\oobe 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\com 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Setup 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\oobe 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\MUI 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\migwiz 2015-10-31 05:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism 2015-10-31 04:59 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2015-10-31 04:59 - 2009-07-14 06:37 - 00000000 ____D C:\Windows\DigitalLocker 2015-10-31 04:59 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2015-10-31 04:59 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-10-31 04:59 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender 2015-10-31 04:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\com 2015-10-31 04:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\servicing 2015-10-31 04:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\IME 2015-10-31 04:59 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System 2015-10-31 04:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\he-IL 2015-10-31 04:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\he-IL 2015-10-31 04:54 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker 2015-10-31 04:53 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Globalization 2015-10-30 19:50 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries 2015-10-30 19:43 - 2012-02-24 03:28 - 00000000 ____D C:\Program Files (x86)\Google 2015-10-30 19:42 - 2012-02-24 03:50 - 00000000 ____D C:\ProgramData\Asus 2015-10-30 19:42 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-10-30 19:40 - 2012-02-24 03:42 - 00000000 ____D C:\ProgramData\Deadtime Stories 2015-10-29 22:17 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ar-SA 2015-10-29 22:17 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ar-SA 2015-10-29 22:13 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\restore 2015-10-29 21:39 - 2012-02-24 03:50 - 00000000 ____D C:\ProgramData\ChangeFolderView 2015-10-29 21:35 - 2012-02-24 03:28 - 04495548 _____ C:\Windows\AsDebug.log 2015-10-29 21:35 - 2012-02-24 02:55 - 00002966 _____ C:\Windows\PQArecord.log 2015-10-29 21:35 - 2011-02-18 21:12 - 00519678 _____ C:\Windows\AsCDProc.log 2015-10-29 21:35 - 2009-07-29 06:20 - 00000000 ____D C:\Windows\Log 2015-10-29 21:34 - 2009-07-14 05:45 - 00274464 _____ C:\Windows\system32\FNTCACHE.DAT ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-10-29 21:35 - 2015-10-31 19:17 - 0000387 _____ () C:\Users\Sheba\AppData\Roaming\sp_data.sys 2015-10-31 19:17 - 2015-10-31 19:17 - 0024576 _____ () C:\Users\Sheba\AppData\Local\uninst.tmp 2012-02-24 03:42 - 2010-10-06 18:45 - 0131984 _____ () C:\ProgramData\FullRemove.exe 2015-10-31 06:21 - 2015-10-31 06:21 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2015-10-31 06:20 - 2015-10-31 06:21 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2015-10-31 06:20 - 2015-10-31 06:20 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log Einige Dateien in TEMP: ==================== C:\Users\Sheba\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-10-31 02:31 ==================== Ende von FRST.txt ============================
  15. Thanks a lot, take all time you need - it's 4:20am here and I'm gonna go to sleep as well. Also it's not just that I want to get rid of any potential malware, I also want to get rid of anything unneeded. I want to get as close to a "clean" Windows version as possible, so anything on there by ASUS which isn't needed should go as well. I haven't spoken to my friend since I formatted the harddrive yet, as he's on vacation right now. I went into his store and talked to his colleague, though, who told me that yeah, there shouldn't have been a "clean" ISO out there which automatically came with SP1 and since mine did, it's likely that something was up with it. He also looked at my ISO and said he believes that the size of the ISO is different from the "official" one, though he wasn't sure about that since he didn't have an official one at hand. He said that the advice of my friend was still valid, though, as they advice people in the store to rather get "clean" Windows versions as they very often have customers complaining about new computers taking forever to boot because of all the software ASUS/other brands put on there. I can understand... my "clean" computer gets popups by so many programs upon boot... that damn Antivirus program (which also needs to go; I want Avira) gives me popups, then there's like two recovery softwares, some weird bar at the right side of the desktop... incredible...