Hier ist das neue FRST Log-File:
Code:
Alles auswählen Aufklappen ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:12-08-2015
durchgeführt von VM (Administrator) auf CK-PC (13-08-2015 13:38:00)
Gestartet von C:\Users\VM\Downloads
Geladene Profile: VM (Verfügbare Profile: VM)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Arachnoid Biometrics Identification Group Corp.) C:\Program Files\Acer\Acer Bio Protection\CompPtcVUI.exe
(Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
() C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
() C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
() C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
( ) C:\Windows\System32\lxeecoms.exe
() C:\ACER\Mobility Center\MobilityService.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Deutsche Telekom AG) C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe
(NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Prolific Technology Inc.) C:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(sonix) C:\Windows\PLFSetL.exe
() C:\Windows\PLFSetI.exe
() C:\Program Files\Lexmark Pro700 Series\ezprint.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
() C:\Program Files\Lexmark Pro700 Series\lxeemon.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Lexware\Update Manager\LxUpdateManager.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(BillP Studios) C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
(Dropbox, Inc.) C:\Users\VM\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
(Dropbox, Inc.) C:\Users\VM\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Program Files\PdaNet for Android\PdaNetPC.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Realtek Semiconductor Corp.) C:\Users\VM\AppData\Local\Temp\RtkBtMnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Inc.) C:\Program Files\Acer\Acer VCM\acp2HID.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Common Files\Lexware\LxWebAccess\LxWebAccess.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664 2012-10-12] (Synaptics Incorporated)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-05-30] (Acer Incorporated)
HKLM\...\Run: [ArcadeDeluxeAgent] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [147456 2008-07-24] (CyberLink Corp.)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [1468296 2009-06-01] (Microsoft Corporation)
HKLM\...\Run: [Lexmark Pro700 Series Fax Server] => C:\Program Files\Lexmark Pro700 Series\fm3032.exe [316072 2011-01-23] ()
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [405504 2008-08-01] (Acer Inc.)
HKLM\...\Run: [PLFSetL] => C:\Windows\PLFSetL.exe [94208 2011-01-22] (sonix)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-06-30] ()
HKLM\...\Run: [EzPrint] => C:\Program Files\Lexmark Pro700 Series\ezprint.exe [139944 2010-01-18] ()
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [182808 2008-07-20] (Intel Corporation)
HKLM\...\Run: [CLMLServer] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [167936 2008-07-24] (CyberLink)
HKLM\...\Run: [lxeemon.exe] => C:\Program Files\Lexmark Pro700 Series\lxeemon.exe [770728 2011-01-23] ()
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1115728 2009-12-15] (Dritek System Inc.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104 2015-07-07] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-15] (Avast Software s.r.o.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9398888 2011-11-04] (Realtek Semiconductor)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [LexwareInfoService] => C:\Program Files\Lexware\Update Manager\LxUpdateManager.exe [208424 2013-10-08] (Haufe-Lexware GmbH & Co. KG)
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2009-06-14] (Arachnoid Biometrics Identification Group Corp.)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [WinPatrol] => C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [496192 2014-02-25] (BillP Studios)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [Dropbox Update] => C:\Users\VM\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-23] (Dropbox, Inc.)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [Boost] => C:\Program Files\Boost\Boost.exe
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk [2009-06-14]
ShortcutTarget: Acer VCM.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-07-26]
ShortcutTarget: Dropbox.lnk -> C:\Users\VM\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2013-03-15]
ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files\PdaNet for Android\PdaNetPC.exe ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\VM\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-05-07] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-07-29] (Egis Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKU\S-1-5-21-2667981686-1106648099-187186479-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2667981686-1106648099-187186479-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2667981686-1106648099-187186479-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO: ShowBarObj Class -> {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} -> C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-07-29] (Egis)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-07] (Avast Software s.r.o.)
BHO: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2667981686-1106648099-187186479-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: haufereader - No CLSID Value -
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 217.0.43.33 217.0.43.17 192.168.1.1
Tcpip\..\Interfaces\{066A667D-6DAF-4F8A-8A55-60BBBB3ADDE2}: [DhcpNameServer] 217.0.43.49 217.0.43.33 192.168.1.1
Tcpip\..\Interfaces\{E8D12279-C9FE-4919-B3C2-94C4123E65E8}: [DhcpNameServer] 217.0.43.33 217.0.43.17 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.omniboxes.com/?type=sc&ts=1438896928&z=62595911280979c1b8ce685g9zfc7b7bbt1q9batab&from=tti&uid=HitachiXHTS543232L9A300_090329FB2406LEKT8BPCX
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll [2014-08-26] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2010-10-22] (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-07-17] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll [2012-10-25] (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-17] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2667981686-1106648099-187186479-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\VM\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-03-19] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2667981686-1106648099-187186479-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll [2012-10-30] (Amazon.com, Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-28]
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2013-06-08]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-25]
FF HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff [2014-03-11]
Chrome:
=======
CHR Profile: C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-10]
CHR Extension: (Google Docs) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-10]
CHR Extension: (Google Drive) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-10]
CHR Extension: (YouTube) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-10]
CHR Extension: (Google Search) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-10]
CHR Extension: (Google Sheets) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-10]
CHR Extension: (Avast Online Security) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-10]
CHR Extension: (Freemake Video Converter) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2015-08-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]
CHR Extension: (Gmail) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-10]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-07]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-06-08]
CHR HKU\S-1-5-21-2667981686-1106648099-187186479-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2014-03-11]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-07] (Avast Software s.r.o.)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3207800 2015-05-07] (Avast Software)
R2 BUNAgentSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [Datei ist nicht signiert]
R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [81504 2008-01-16] () [Datei ist nicht signiert]
R2 DeviceManager; C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe [40960 2009-05-25] () [Datei ist nicht signiert]
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany) [Datei ist nicht signiert]
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-06-02] () [Datei ist nicht signiert]
R2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [815104 2008-04-30] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-09-09] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R2 FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [233472 2013-10-30] (Teruten) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
R2 IGBASVC; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [3520512 2009-06-14] () [Datei ist nicht signiert]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [Datei ist nicht signiert]
S2 lxeeCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxee_device; C:\Windows\system32\lxeecoms.exe [598696 2010-04-14] ( )
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] () [Datei ist nicht signiert]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R2 Netzmanager Service; C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe [2635776 2012-07-20] (Deutsche Telekom AG) [Datei ist nicht signiert]
R2 NTIBackupSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [45056 2008-04-25] (NewTech InfoSystems, Inc.) [Datei ist nicht signiert]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-25] () [Datei ist nicht signiert]
R2 PLFlash DeviceIoControl Service; C:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe [81920 2008-08-29] (Prolific Technology Inc.) [Datei ist nicht signiert]
R2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [466944 2008-04-30] (Intel(R) Corporation) [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [233472 2008-07-19] (Acer Incorporated) [Datei ist nicht signiert]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2009-06-14] (Alfa Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-05-07] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [74976 2015-05-07] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55200 2015-05-07] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-05-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787760 2015-05-07] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [428120 2015-06-28] (Avast Software s.r.o.)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57888 2015-05-07] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209048 2015-05-07] ()
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [26024 2010-01-01] (Elaborate Bytes AG)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [37344 2013-10-30] () [Datei ist nicht signiert]
R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2007-01-26] () [Datei ist nicht signiert]
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [62496 2011-11-04] (ITE Tech. Inc. )
R3 L1E; C:\Windows\System32\DRIVERS\L1E60x86.sys [54824 2012-10-12] (Atheros Communications, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [98520 2015-08-12] (Malwarebytes Corporation)
R3 NETwNv32; C:\Windows\System32\DRIVERS\NETwNv32.sys [7346176 2012-10-12] (Intel Corporation)
R2 NTIPPKernel; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [122368 2008-01-16] (Cyberlink Corp.) [Datei ist nicht signiert]
S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R3 pmkbdfltr; C:\Windows\System32\DRIVERS\pmkbdfltr.sys [15248 2012-10-12] (PenMount)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [103552 2009-05-25] (TCT International Mobile Ltd)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [23608 2012-10-12] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1759744 2011-01-22] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-10-16] (Avira GmbH)
R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2009-09-01] () [Datei ist nicht signiert]
S3 TelekomNM3; C:\Program Files\Netzmanager\NMInfraIS2\Driver\TelekomNM3.sys [35040 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [42496 2011-05-10] (Apple, Inc.) [Datei ist nicht signiert]
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-05-07] (Avast Software)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [61424 2008-07-18] (Cyberlink Corp.)
S2 Aspi32; kein ImagePath
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S1 DritekPortIO; kein ImagePath
S3 IpInIp; kein ImagePath
S3 NwlnkFlt; kein ImagePath
S3 NwlnkFwd; kein ImagePath
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S3 S6U12Scanner; system32\drivers\usbscan.sys [X]
S3 usbscan; system32\DRIVERS\usbscan.sys [X]
U5 usbser; C:\Windows\System32\Drivers\usbser.sys [27648 2009-04-11] (Microsoft Corporation)
S1 wsfd_vt_1_10_0_20; system32\drivers\wsfd_vt_1_10_0_20.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-13 09:34 - 2015-08-13 09:34 - 00000389 _____ C:\Users\VM\Desktop\Downloads.lnk
2015-08-13 08:38 - 2015-07-21 22:55 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-13 08:38 - 2015-07-21 18:07 - 03605440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-08-13 08:38 - 2015-07-21 18:07 - 03553216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-13 08:38 - 2015-07-21 18:07 - 00140224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2015-08-13 08:38 - 2015-07-21 18:07 - 00056256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-13 08:38 - 2015-07-21 18:03 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2015-08-13 08:38 - 2015-07-21 18:03 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-13 08:38 - 2015-07-21 18:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-13 08:35 - 2015-07-31 21:27 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 08:35 - 2015-07-09 16:20 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-08-13 08:34 - 2015-07-10 21:37 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-13 08:31 - 2015-07-11 17:56 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-13 08:23 - 2015-08-13 08:23 - 01677824 _____ (Farbar) C:\Users\VM\Downloads\FRST.exe
2015-08-13 08:23 - 2015-08-13 08:23 - 00000000 ____D C:\Users\VM\Downloads\FRST-OlderVersion
2015-08-13 08:10 - 2015-07-18 18:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-13 08:07 - 2015-07-10 21:37 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-13 08:07 - 2015-07-10 21:37 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-13 08:05 - 2015-08-01 00:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-13 08:05 - 2015-07-31 23:46 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-13 08:05 - 2015-07-31 23:46 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-13 08:05 - 2015-07-31 23:46 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-13 08:05 - 2015-07-31 23:46 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-13 08:05 - 2015-07-31 22:41 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-13 08:05 - 2015-07-31 22:40 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-13 08:05 - 2015-07-31 22:35 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-13 08:05 - 2015-07-31 22:33 - 02066944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-13 08:05 - 2015-07-31 22:33 - 01072640 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-13 08:05 - 2015-07-31 22:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-13 08:05 - 2015-07-31 22:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-13 08:03 - 2015-08-13 08:03 - 00000000 ____D C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-13 08:01 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-13 08:01 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-13 08:01 - 2015-07-01 17:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 22:15 - 2015-08-12 22:17 - 00567072 _____ C:\Users\VM\Downloads\Setup (12).zip
2015-08-12 22:14 - 2015-08-12 22:15 - 00567112 _____ C:\Users\VM\Downloads\Setup (11).zip
2015-08-12 21:49 - 2015-07-22 22:54 - 12386816 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-12 21:49 - 2015-07-22 22:54 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-12 21:49 - 2015-07-22 22:51 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-12 21:49 - 2015-07-22 22:47 - 09751040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-12 21:49 - 2015-07-22 22:46 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-12 21:49 - 2015-07-22 22:46 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-12 21:49 - 2015-07-22 22:45 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-12 21:49 - 2015-07-22 22:45 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-12 21:49 - 2015-07-22 22:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-12 21:49 - 2015-07-22 22:44 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-12 21:49 - 2015-07-22 22:44 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-12 21:49 - 2015-07-22 22:44 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-12 21:49 - 2015-07-22 22:44 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-12 21:49 - 2015-07-22 22:44 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-12 21:49 - 2015-07-22 22:43 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-12 21:49 - 2015-07-22 22:43 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-12 21:49 - 2015-07-22 22:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-12 21:49 - 2015-07-22 22:43 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-12 21:49 - 2015-07-22 22:43 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-12 21:49 - 2015-07-22 22:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-12 21:49 - 2015-07-22 22:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-12 21:49 - 2015-07-22 22:42 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-12 21:21 - 2015-08-10 15:01 - 00050779 _____ C:\zoek-results2015-08-10-130148.log
2015-08-12 21:15 - 2015-08-12 21:15 - 00002102 _____ C:\Users\VM\Downloads - Verknüpfung.lnk
2015-08-12 21:14 - 2015-08-12 22:22 - 00002636 _____ C:\runcheck.txt
2015-08-12 21:12 - 2015-08-12 21:13 - 01308672 _____ C:\Users\VM\Downloads\zoek (1).exe
2015-08-12 20:57 - 2015-08-12 20:58 - 00567084 _____ C:\Users\VM\Downloads\Setup (10).zip
2015-08-12 20:44 - 2015-08-12 20:44 - 00000000 ____D C:\Users\VM\Desktop\Trojaner Board
2015-08-12 20:41 - 2015-08-12 20:43 - 00567081 _____ C:\Users\VM\Downloads\Setup (9).zip
2015-08-12 20:37 - 2015-08-12 20:38 - 00567084 _____ C:\Users\VM\Downloads\Setup (8).zip
2015-08-12 20:35 - 2015-08-12 20:36 - 00567086 _____ C:\Users\VM\Downloads\Setup (7).zip
2015-08-12 20:31 - 2015-08-12 20:33 - 00567068 _____ C:\Users\VM\Downloads\Setup (6).zip
2015-08-12 19:33 - 2015-08-13 13:38 - 00000000 ____D C:\FRST
2015-08-11 21:17 - 2015-08-11 21:18 - 00152152 _____ C:\Windows\Minidump\Mini081115-01.dmp
2015-08-11 09:40 - 2015-08-11 09:40 - 02870984 _____ (ESET) C:\Users\VM\Downloads\esetsmartinstaller_deu.exe
2015-08-10 20:02 - 2015-08-12 21:04 - 00000000 ____D C:\Users\VM\Documents\Add-in Express
2015-08-10 09:23 - 2015-08-12 21:21 - 00000381 _____ C:\zoek-results.log
2015-08-10 09:20 - 2015-08-10 09:42 - 00000000 ____D C:\zoek_backup
2015-08-10 09:19 - 2015-08-10 09:19 - 01308672 _____ C:\Users\VM\Downloads\zoek.exe
2015-08-09 22:11 - 2015-08-09 22:11 - 00567080 _____ C:\Users\VM\Downloads\Setup (5).zip
2015-08-09 20:53 - 2015-08-09 20:55 - 00567093 _____ C:\Users\VM\Downloads\Setup (4).zip
2015-08-09 19:27 - 2015-08-09 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-08-09 19:27 - 2015-08-09 19:27 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware
2015-08-09 19:27 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-09 19:27 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-09 19:27 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-09 19:19 - 2015-08-09 19:20 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\VM\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-09 19:02 - 2015-08-13 08:10 - 00001929 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-09 19:00 - 2015-08-09 19:08 - 00000000 ____D C:\AdwCleaner
2015-08-09 18:59 - 2015-08-09 19:00 - 02248704 _____ C:\Users\VM\Downloads\AdwCleaner_4.208 (1).exe
2015-08-09 18:59 - 2015-08-09 18:59 - 02248704 _____ C:\Users\VM\Downloads\AdwCleaner_4.208.exe
2015-08-09 18:34 - 2015-08-09 18:35 - 00567065 _____ C:\Users\VM\Downloads\Setup (3).zip
2015-08-09 17:30 - 2015-08-09 17:31 - 00567076 _____ C:\Users\VM\Downloads\Setup (2).zip
2015-08-09 17:21 - 2015-08-09 21:35 - 00070475 _____ C:\Users\VM\Downloads\Addition.txt
2015-08-09 17:18 - 2015-08-13 13:38 - 00030724 _____ C:\Users\VM\Downloads\FRST.txt
2015-08-09 13:48 - 2015-08-09 13:48 - 00154016 _____ C:\Windows\Minidump\Mini080915-01.dmp
2015-08-06 23:41 - 2015-08-06 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-08-06 23:41 - 2015-08-06 23:41 - 00000000 ____D C:\Program Files\7-Zip
2015-08-06 23:35 - 2015-08-06 23:35 - 00000000 _____ C:\Windows\prleth.sys
2015-08-06 23:35 - 2015-08-06 23:35 - 00000000 _____ C:\Windows\hgfs.sys
2015-08-06 23:32 - 2015-08-06 23:32 - 00854702 _____ C:\Users\VM\Downloads\Setup (1).zip
2015-08-06 23:27 - 2015-08-06 23:29 - 63112928 _____ C:\Users\VM\Downloads\winzip195-32.exe
2015-08-06 23:25 - 2015-08-06 23:25 - 00854702 _____ C:\Users\VM\Downloads\Setup.zip
2015-08-06 21:03 - 2015-08-06 21:03 - 00000000 ____D C:\Users\VM\Documents\Samsung
2015-08-06 21:02 - 2015-08-06 21:02 - 00001878 _____ C:\Users\Public\Desktop\S5 Smart Switch.lnk
2015-08-06 21:02 - 2015-08-06 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2015-08-06 21:02 - 2015-05-21 08:02 - 00184192 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2015-08-06 21:02 - 2015-05-21 08:02 - 00089984 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2015-08-06 20:54 - 2015-08-06 20:55 - 38754408 _____ (Samsung Electronics Co., Ltd.) C:\Users\VM\Downloads\Smart_Switch_PC_4.0.15064_11.exe
2015-08-05 00:03 - 2015-08-05 00:03 - 00877152 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-08-05 00:03 - 2015-08-05 00:03 - 00538208 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-07-22 03:15 - 2015-07-22 03:15 - 00164536 _____ C:\Windows\Minidump\Mini072215-01.dmp
2015-07-21 20:19 - 2015-07-21 20:19 - 00001160 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2667981686-1106648099-187186479-1000Core1d0c3e1cb6b7a4b.job
2015-07-21 19:34 - 2015-07-03 18:04 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-21 19:32 - 2015-06-17 18:50 - 02264576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-21 19:32 - 2015-06-17 17:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-21 19:32 - 2015-06-12 18:01 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-21 19:10 - 2015-05-31 10:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-21 19:08 - 2015-06-27 18:03 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-21 19:08 - 2015-06-27 18:02 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-21 19:08 - 2015-06-27 18:02 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-21 19:08 - 2015-06-27 18:01 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-07-21 19:08 - 2015-06-27 16:21 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-21 19:08 - 2015-06-27 16:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-21 19:08 - 2015-06-12 15:13 - 00440768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-21 19:08 - 2015-01-09 02:17 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-17 19:58 - 2015-07-17 19:58 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0c0ba2e0e95cd.job
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-13 11:44 - 2006-11-02 14:47 - 00003344 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-13 11:44 - 2006-11-02 14:47 - 00003344 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-13 09:54 - 2009-06-14 08:52 - 01224627 _____ C:\Windows\WindowsUpdate.log
2015-08-13 09:49 - 2014-04-08 21:08 - 00000000 ___RD C:\Users\VM\Dropbox
2015-08-13 09:49 - 2014-04-08 21:05 - 00000000 ____D C:\Users\VM\AppData\Roaming\Dropbox
2015-08-13 09:47 - 2010-03-07 21:25 - 00240944 _____ C:\ProgramData\lxeescan.log
2015-08-13 09:44 - 2009-02-02 14:15 - 00000147 _____ C:\Windows\system32\agent.log
2015-08-13 09:42 - 2014-05-29 19:37 - 00434350 _____ C:\Windows\PFRO.log
2015-08-13 09:41 - 2009-07-02 01:19 - 00010652 _____ C:\Windows\bthservsdp.dat
2015-08-13 09:34 - 2009-06-28 18:16 - 00000000 ____D C:\Users\VM
2015-08-13 09:11 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-08-13 09:03 - 2006-11-02 14:47 - 00493368 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-13 09:00 - 2009-07-19 20:05 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-13 08:58 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2015-08-13 08:38 - 2010-06-04 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-13 08:35 - 2009-02-02 13:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-13 08:13 - 2013-07-23 00:17 - 00000000 ____D C:\Windows\system32\MRT
2015-08-13 08:13 - 2006-11-02 12:24 - 129304528 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-08-13 08:01 - 2006-11-02 12:23 - 00000301 _____ C:\Windows\win.ini
2015-08-12 19:20 - 2014-02-12 16:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-08-12 19:16 - 2009-06-28 18:16 - 09699328 _____ C:\Users\VM\ntuser.bak
2015-08-12 19:16 - 2006-11-02 12:22 - 77070336 _____ C:\Windows\system32\config\SOFTWARE.bak
2015-08-12 19:16 - 2006-11-02 12:22 - 53477376 _____ C:\Windows\system32\config\COMPONENTS.bak
2015-08-12 19:16 - 2006-11-02 12:22 - 121372672 _____ C:\Windows\system32\config\SYSTEM.bak
2015-08-12 19:16 - 2006-11-02 12:22 - 00524288 _____ C:\Windows\system32\config\DEFAULT.bak
2015-08-12 19:16 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2015-08-12 19:16 - 2006-11-02 12:22 - 00053248 _____ C:\Windows\system32\config\SAM.bak
2015-08-12 16:15 - 2014-02-27 01:18 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2015-08-12 08:43 - 2011-02-07 21:19 - 00008592 _____ C:\Users\VM\AppData\Local\d3d9caps.dat
2015-08-11 21:17 - 2014-06-18 00:15 - 436925715 _____ C:\Windows\MEMORY.DMP
2015-08-11 21:17 - 2010-01-11 01:25 - 00000000 ____D C:\Windows\Minidump
2015-08-10 09:36 - 2011-05-29 23:14 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2015-08-10 09:36 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-08-10 08:26 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Branding
2015-08-09 19:27 - 2011-02-12 12:38 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-09 19:08 - 2014-01-02 23:46 - 00000000 ____D C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-09 19:08 - 2010-11-07 00:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-09 19:08 - 2009-06-28 18:19 - 00000933 _____ C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-09 14:11 - 2010-03-07 22:06 - 00578700 _____ C:\ProgramData\lxeeJSW.log
2015-08-09 14:11 - 2010-03-07 21:31 - 00000000 ____D C:\ProgramData\Lx_cats
2015-08-06 23:10 - 2008-01-21 09:16 - 01605732 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-06 21:04 - 2014-05-29 20:01 - 00008072 _____ C:\Windows\setupact.log
2015-08-06 21:03 - 2010-11-26 23:31 - 00000000 ____D C:\ProgramData\Samsung
2015-08-06 20:57 - 2009-09-01 23:06 - 00000000 ____D C:\Users\VM\AppData\Roaming\Samsung
2015-08-06 20:57 - 2009-07-03 00:52 - 00000000 ____D C:\Program Files\Samsung
2015-08-06 20:57 - 2009-02-02 13:17 - 00000000 ____D C:\Program Files\InstallShield Installation Information
2015-07-17 20:07 - 2011-06-20 11:54 - 00002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-07-17 19:58 - 2015-06-03 11:47 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d09de23cf47d90.job
2015-07-17 19:52 - 2015-06-28 23:15 - 00000546 _____ C:\Windows\Tasks\Adobe Acrobat Update Task.job
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-03-11 18:24 - 2012-06-24 15:07 - 0000000 _____ () C:\Users\VM\AppData\Roaming\FileIn.cns
2012-03-11 18:24 - 2012-06-24 15:07 - 0000000 _____ () C:\Users\VM\AppData\Roaming\FileOut.cns
2012-04-02 00:11 - 2012-04-02 00:11 - 0012969 _____ () C:\Users\VM\AppData\Roaming\Kommagetrennte Werte (DOS).CAL
2009-09-23 21:17 - 2009-09-23 21:17 - 0000000 _____ () C:\Users\VM\AppData\Roaming\wklnhst.dat
2011-02-07 21:19 - 2015-08-12 08:43 - 0008592 _____ () C:\Users\VM\AppData\Local\d3d9caps.dat
2009-07-14 13:23 - 2013-12-17 00:49 - 0047616 _____ () C:\Users\VM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-03-13 22:14 - 2012-08-03 21:25 - 0004096 _____ () C:\Users\VM\AppData\Local\keyfile3.drm
2014-06-12 19:51 - 2014-06-12 19:51 - 0014836 _____ () C:\Users\VM\AppData\Local\recently-used.xbel
2010-11-04 22:24 - 2013-06-08 21:23 - 0000125 ___SH () C:\ProgramData\.zreglib
2009-06-14 09:10 - 2009-06-14 09:12 - 0006064 _____ () C:\ProgramData\ArcadeDeluxe2.log
2010-03-07 21:11 - 2010-03-07 21:11 - 0000000 _____ () C:\ProgramData\cmn_upld.log
2009-07-02 23:25 - 2009-07-02 23:25 - 0000056 _____ () C:\ProgramData\ezsidmv.dat
2010-03-07 21:56 - 2010-03-07 21:56 - 0000252 _____ () C:\ProgramData\FastPics.log
2009-07-03 01:01 - 2010-12-12 16:35 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt
2010-08-09 21:03 - 2014-12-24 04:43 - 0034075 _____ () C:\ProgramData\lxee.log
2010-12-22 22:54 - 2013-09-11 21:16 - 0000675 _____ () C:\ProgramData\lxeeDiagnostics.log
2010-03-07 22:06 - 2015-08-09 14:11 - 0578700 _____ () C:\ProgramData\lxeeJSW.log
2010-03-07 21:25 - 2015-08-13 09:47 - 0240944 _____ () C:\ProgramData\lxeescan.log
2010-03-07 21:11 - 2010-03-07 21:11 - 0000000 _____ () C:\ProgramData\LxWbGwLog.log
2009-07-03 23:42 - 2011-01-21 19:32 - 0031586 _____ () C:\ProgramData\nvModes.001
2009-07-03 23:42 - 2011-01-22 02:09 - 0034610 _____ () C:\ProgramData\nvModes.dat
Einige Dateien in TEMP:
====================
C:\Users\VM\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpuu6rig.dll
C:\Users\VM\AppData\Local\Temp\RtkBtMnt.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-13 09:51
==================== Ende vom raportu ============================
Der PC läuft schon um einiges stabiler, aber er ist noch recht langsam u nd er stockt oft recht lange. Außerdem hatte ich heute morgen die Meldung, das "jemand" versucht, eine andere Startseite, als die die ich festgelegt habe, zu aktivieren. Ich habe da auf "Reject" und nicht auf "Accept" geklickt. Ich hoffe, das war okay so.
Liebe Grüße
Claudia
13.08.2015, 12:43
Baum-Darstellung