| |
| |||||||
Log-Analyse und Auswertung: Ständig erscheint Werbung im neuen FensterWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
08.10.2015, 21:47
| #16 |
| /// Malwareteam  |  Ständig erscheint Werbung im neuen Fenster Ja, zwischen 20 Minuten und 6 Stunden im Schnitt. |
|
08.10.2015, 22:09
| #17 |
 | Ständig erscheint Werbung im neuen Fenster So, jetzt ging es doch ganz schnell: ESET-LOG
__________________Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=75d7351a4315bc4781793cebc910bb92
# end=init
# utc_time=2015-10-06 07:17:11
# local_time=2015-10-06 09:17:11 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 26111
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=75d7351a4315bc4781793cebc910bb92
# end=updated
# utc_time=2015-10-06 07:39:13
# local_time=2015-10-06 09:39:13 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=75d7351a4315bc4781793cebc910bb92
# end=init
# utc_time=2015-10-07 07:21:18
# local_time=2015-10-07 09:21:18 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 26129
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=75d7351a4315bc4781793cebc910bb92
# end=updated
# utc_time=2015-10-07 07:22:14
# local_time=2015-10-07 09:22:14 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=75d7351a4315bc4781793cebc910bb92
# engine=26129
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-10-08 08:53:29
# local_time=2015-10-08 10:53:29 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='avast! Internet Security'
# compatibility_mode=779 16777213 85 85 285104 208758099 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 7791534 16241299 0 0
# scanned=310791
# found=58
# cleaned=0
# scan_time=5474
sh=EAEBBB1E5910A83F6959A21B8F92A8644ECCD4D0 ft=1 fh=2cf6e179b7bc7be9 vn="Mehrere Bedrohungen" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\6J9403ZF\bWFqbXBfZ2VudGxldW5fbWc=[1].exe"
sh=95C788831E2E96744602257001EC40D0A4561CC9 ft=1 fh=2581594816d57579 vn="Variante von Win32/Packed.ScrambleWrapper.O evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\6J9403ZF\quick_run[1].exe"
sh=CFFD591A24AE42F5E5BB56DB013534A60EB7FBE0 ft=1 fh=f1d921af7a72089a vn="Variante von Win32/WebBar.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\H6ZI2FHY\Web_Bar_Setup_Control[1].exe"
sh=952A6FDA8F02D9D4B47CE70775986971E4A4CD6B ft=1 fh=42f50a9695966eed vn="Variante von Win32/Toolbar.CrossRider.CZ evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\PWCNCCTN\installer[1].exe"
sh=CB0D088EAE0A56051FDE5C452232B46D7A1B5AD9 ft=1 fh=40a873037b30f306 vn="Variante von Win32/Agent.RLD Trojaner" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\PWCNCCTN\MaxDrivrUpdater[1].exe"
sh=2BBB1F91CDC34DF9BB43D9F103174252ECCA8BE6 ft=1 fh=c77385d863e283af vn="Variante von MSIL/NewPlayer.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\PWCNCCTN\MixVideoPlayerSetup[1].exe"
sh=F0C7677DEE19FF93F0EA94D9D092CF310301C2A0 ft=1 fh=57748d69230c5c03 vn="Win32/BrowseFox.AV evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\PWCNCCTN\PineTreeSetup[1].exe"
sh=19905B147DBCC086B475B84C609855DB2247158C ft=1 fh=c800e6575e5ef533 vn="Variante von Win32/OutBrowse.BY evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\PWCNCCTN\Reimage[1].exe"
sh=E27827C58A5CD6A661DFC3EBBA8927BBEAF4B7A0 ft=1 fh=8974fe5a46a74394 vn="Variante von Win32/Adware.EoRezo.AZ Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\PWCNCCTN\setup_gmsd_de[1].exe"
sh=ED3463A7DB95D4B0A40B18FF7D4C3A198AFE9C87 ft=1 fh=b73262d5706d13f5 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Local\Microsoft\Windows\INetCache\IE\Y9JAJSO4\Stub[1].exe"
sh=C28052B54F49AACF8660C7759B076341257F2241 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.I evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\AppData\Roaming\NU0TOMlbp7jjX1EL8Y2A6I"
sh=700EBDB486B71DA58D1BF16CEFFA23E4A02C3AC4 ft=0 fh=0000000000000000 vn="JS/InstallCore.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sabsn2\Downloads\itunes.jse"
sh=DF14E838BE152A78ADA20958C2E4349E303F9B85 ft=1 fh=6134b1af3de89857 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R0662VA.exe"
sh=C4824A6E56A61C8FCFF9BC41D7C027C27C6689D9 ft=1 fh=2d5151aa725d3772 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R16VS7O.exe"
sh=FF9ECDECDFBDE7E2410943F08955BF7CAD5763C5 ft=1 fh=7ae52c8b865f7bc6 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R1Z2TNI.exe"
sh=5CB51736F098BDC883A9AD57656B619955B66918 ft=1 fh=684d809d624933fc vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R37U1Q4.exe"
sh=E4EC3480BE3E75DBAF50905461E30D6A41AF63D4 ft=1 fh=dfe159ce3a181f96 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R4HVC9E.exe"
sh=32C5F0F83D29945F6574B0206BA237435441D127 ft=1 fh=4a2764867ca6c273 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R50TR7Z.exe"
sh=B9FAE0D2AE3375853989CCDA0AE3ABC64C683C7F ft=1 fh=9d150890c47749a0 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R5Q1VWB.exe"
sh=5A48D4C48EF5474B17557729F7C49866651D6236 ft=1 fh=0fc92535079d0b94 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$R6D80L6.exe"
sh=B4A4FEBE58D17FD83B76D9778915DD3CC5D24E1D ft=1 fh=c00652b2657becea vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RALSZWF.exe"
sh=CB5C592614A9595CBD8FBED9BBA19C299DC8C54A ft=1 fh=df969467b805fcbd vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RAVU8CI.exe"
sh=9C5A62C28B3CB60812539E0E362B5742C416267B ft=1 fh=70603a96a060d1f3 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RBPVUX3.exe"
sh=646DC310E48E199AECF77F5143CB983A090D436F ft=1 fh=e0b12634b3a69e63 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RE2NGL2.exe"
sh=E3713570FC89FEE56AE0CCAC362DF0E1F9BA0D04 ft=1 fh=d21451feba72960d vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$REE1VHB.exe"
sh=D8FDB5100B66377940F18E145B60BB02E05CE855 ft=1 fh=06e11ad270069eab vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RFBKAP7.exe"
sh=B2A64BBCAA25ECE6F59D14BB807297A18F5DA890 ft=1 fh=68b01f47112e4362 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RG2B60J.exe"
sh=FD29057B6173004748C149C6620C71E803C050B9 ft=1 fh=ac35de73fb96398f vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RHW6AVF.exe"
sh=A244A8E8EB7C35381AB1EB8983A8900CC4F8E0A9 ft=1 fh=6c3d55f8d61a5110 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RI9W55C.exe"
sh=FA97AC1668A7C0B906F8FBBD3F1992A0D02B2B22 ft=1 fh=50592ca4dc1044aa vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RKBS9O1.exe"
sh=3224D3ABA486BF3ABFB603D21B6111D118D2EBEE ft=1 fh=65fbf16a7564ab1f vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RLM6OS4.exe"
sh=AA7C97A6FEF195D1A5B752CC5A05F8615191D9E0 ft=1 fh=f7eeac73428fa7b2 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RLRZLXX.exe"
sh=74212E2F90A295B24952665BA8BF92DBEC16AF99 ft=1 fh=596c22b7d9ba6ddc vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RMEH95W.exe"
sh=AC84AE3CB1CC4D381A9C07B7F2A0A81EB2DF5640 ft=1 fh=1bc2e8b72c78014a vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RMLFQ4W.exe"
sh=B50FBC2238A2934F8FF4A5085CA828F68F533D33 ft=1 fh=3ff269b65f45a8a7 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RMVK6O0.exe"
sh=A4DC825B5497E85DAA089E1EF94529A97158D678 ft=1 fh=6cd79cced82b2d67 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RNJYZAX.exe"
sh=B8E1F621432372B34111697A0E10C2F4A6D3EE19 ft=1 fh=99004a34bdf1cefb vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RNQFPJO.exe"
sh=4559507A87AB0233EB55EBCC76A1420216A9B997 ft=1 fh=ce085c6dc2289aa8 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$ROGISFH.exe"
sh=ED626DE85F2C73BFFDFDA1D4CDBCCF5E41670B76 ft=1 fh=953e3a3e481e9b5b vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RQ96G2T.exe"
sh=30BDF2A555E1C7091C0D3352BC22C20632CCDF2C ft=1 fh=0a1fd9bc8a6b0252 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RRCFT6L.exe"
sh=8BDF3768CD619AA416ACBB0B46B7E91EDC94E8EA ft=1 fh=c5d98c8c566659b1 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RRCZ3BX.exe"
sh=E67C6DB0F68DDC6ED1E1E18A0544F2DDFDDBBCDC ft=1 fh=e11735fd570cded2 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RRPS512.exe"
sh=1672F21C128CD2333CAF7EBC6D4D3299C746CD44 ft=1 fh=25457999f23ec5b9 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RSOC6UP.exe"
sh=48CD47CA80DAE239BE99A76B5B2F0BE88AAD7201 ft=1 fh=c6f19ab63babf711 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RTPIM68.exe"
sh=6C9ED8D245CF82350470542899A15C509A560FB2 ft=1 fh=61aced4cfe0a5fd5 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RTPQUGX.exe"
sh=7018BBFD88D7A7FD7E9AD86AC17D2225C4ABEEBC ft=1 fh=35e39c7246fc4bb2 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RV3CHKE.exe"
sh=915B0C72B077208A0CF00F6DA3A595D82A6CD443 ft=1 fh=9290bbfb28b54ffb vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RVYVMEF.exe"
sh=38F4BE3C2AD31EA5515AB6E06E16820DEB51B9DE ft=1 fh=569c159b498d871a vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RW2CJB8.exe"
sh=11B11ADE5B774BF46BBC0D629D6CCA14355FA4BC ft=1 fh=133a7fa7451ed6e5 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RXHNECK.exe"
sh=7D5DD6CD07F1A262AFB35ECF0BACDFE30377D0D1 ft=1 fh=f201cb090fe06899 vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RY3E8MF.exe"
sh=7FAD2D5A0366D6AF278C5D0BC1F4A81F1FEF84CF ft=1 fh=4c9cb87d3b10ff6f vn="Variante von Win32/Kryptik.BUXO Trojaner" ac=I fn="F:\$RECYCLE.BIN\S-1-5-21-3331332763-822904720-3057489286-1000\$RZQWHDJ.exe"
sh=086C21445866163C17159D2B34656BAB3E96DDAD ft=1 fh=67082cf54d98cd31 vn="Variante von Win32/Kryptik.CGBF Trojaner" ac=I fn="F:\Musik_Irina\Neuer Ordner\dzhigan_-_lyubimaya_zaycev_net.exe"
sh=B65DE24B77EEEA65263A0FD2D85BE13D2E3A3AE2 ft=1 fh=9c6c6c9a4e32e297 vn="Variante von Win32/Kryptik.CGBF Trojaner" ac=I fn="F:\Musik_Irina\Neuer Ordner\dzhigan_i_loya_-_beregi_lyubov_zaycev_net.exe"
sh=3C79A12FB8484FECC0B7539DD583D02F30B39914 ft=1 fh=a3692e8461cd58d0 vn="Variante von Win32/LoadMoney.BD evtl. unerwünschte Anwendung" ac=I fn="F:\Musik_Irina\Neuer Ordner\ivan_dorn_-_kudri_slider_and_magnit_remix_zaycev_net.exe"
sh=DCD8CBE92D0B7E1020CB6A43239EA40447D2C48D ft=1 fh=27dbf93f6062720a vn="Variante von Win32/LoadMoney.AE evtl. unerwünschte Anwendung" ac=I fn="F:\Musik_Irina\Neuer Ordner\nyusha_-_naedine_zaycev_net.exe"
sh=2B9C05904E32CBBA97BBA675A4869C579890A58D ft=1 fh=9e9e030254fc1346 vn="Variante von Win32/LoadMoney.AE evtl. unerwünschte Anwendung" ac=I fn="F:\Musik_Irina\Neuer Ordner\nyusha_-_pyoryshko_zaycev_net.exe"
sh=B7827C62DBD27AEA27F52A5444DC8E722C3BAE2A ft=1 fh=de00becfed9b91f2 vn="Win32/VB.NFZ Trojaner" ac=I fn="F:\Recycled\ctfmon.exe"
sh=2F00848973F6ABAA5A31647A19C0DA6053A3E4C5 ft=1 fh=7307db50b33265a9 vn="Variante von Win32/Conficker.AA Wurm" ac=I fn="F:\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx"
 FRST-LOGCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:08-10-2015 durchgeführt von sabrina (Administrator) auf IDEA-PC (08-10-2015 23:02:00) Gestartet von C:\Users\sabsn2\Downloads Geladene Profile: UpdatusUser & sabrina (Verfügbare Profile: UpdatusUser & sabrina) Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Edge) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe (CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Infraware) C:\Users\sabsn2\AppData\Roaming\PolarisOfficeLink\POLink.exe (Dropbox, Inc.) C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\Dropbox.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Infraware) C:\Users\sabsn2\AppData\Roaming\PolarisOfficeLink\POLinkSync.exe (Infraware) C:\Users\sabsn2\AppData\Roaming\PolarisOfficeLink\POLinkUpdater.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Microsoft Corporation) C:\Windows\System32\wuapihost.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3743648 2015-08-20] (ELAN Microelectronics Corp.) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2012-10-13] (Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2012-10-13] (Lenovo(beijing) Limited) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-15] (Apple Inc.) HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Vimicro) HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332STI.EXE HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink) HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.) HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.) HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-09-15] (Apple Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-01] (AVAST Software) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3210108916-3864258014-2341951935-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-07-10] (Microsoft Corporation) HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\...\Run: [Facebook Update] => C:\Users\sabsn2\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-01-02] (Facebook Inc.) HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\...\Run: [Dropbox Update] => C:\Users\sabsn2\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.) HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\...\Run: [Polaris Office Sync] => C:\Users\sabsn2\AppData\Roaming\PolarisOfficeLink\POLinkLauncher.exe [805112 2015-08-21] (Infraware) AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-23] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [ 0POLinkIconDone] -> {4931EE43-90CB-4D46-A50F-474D7C5D97BE} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ 1POLinkIconFailed] -> {828F1FF1-021C-4EC0-A4F8-B1BFF6390DD3} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ 2POLinkIconIng] -> {8AE3CBEA-8E21-4883-BFD0-925F5513F190} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ 3POLinkIconProhibited] -> {DED0F1AF-0505-4FB7-83AA-C2E51FA0721F} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-01] (AVAST Software) ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.) ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.) ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.) ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.) Startup: C:\Users\sabsn2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-10-01] ShortcutTarget: Dropbox.lnk -> C:\Users\sabsn2\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{24c91061-0d0e-40ea-8c00-ab0d4c31f623}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{bf4280c7-ab38-45e7-87a3-0aa945d5bb20}: [DhcpNameServer] 192.168.100.254 Internet Explorer: ================== HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com HKU\S-1-5-21-3210108916-3864258014-2341951935-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com SearchScopes: HKU\S-1-5-21-3210108916-3864258014-2341951935-1002 -> DefaultScope {DB3AE123-9657-4070-8E58-0C6F45B51DF5} URL = SearchScopes: HKU\S-1-5-21-3210108916-3864258014-2341951935-1002 -> {DB3AE123-9657-4070-8E58-0C6F45B51DF5} URL = BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-01] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation) BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-01] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) Toolbar: HKLM - Kein Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei FireFox: ======== FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-05] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-05] (Google Inc.) FF Plugin HKU\S-1-5-21-3210108916-3864258014-2341951935-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\sabsn2\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited) FF Plugin HKU\S-1-5-21-3210108916-3864258014-2341951935-1002: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2014-07-10] (Sony Network Entertainment International LLC) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-07-31] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden Chrome: ======= CHR Profile: C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-05] CHR Extension: (Google Docs) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-05] CHR Extension: (Google Drive) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-05] CHR Extension: (YouTube) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-05] CHR Extension: (Google-Suche) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-05] CHR Extension: (avast! SafePrice) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-10-05] CHR Extension: (Google Tabellen) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-05] CHR Extension: (Google Docs Offline) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-05] CHR Extension: (Avast Online Security) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-05] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-10-05] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-05] CHR Extension: (Citavi Picker) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2015-10-05] CHR Extension: (Google Mail) - C:\Users\sabsn2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-05] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-10] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-22] CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <nicht gefunden> CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn] - C:\Program Files (x86)\Citavi 4\Pickers\Chrome\ChromePicker.crx [2014-02-07] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-01] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-10-01] (AVAST Software) R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [135072 2015-08-20] (ELAN Microelectronics Corp.) R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-18] (Nero AG) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-01] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-10-01] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-01] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [454528 2015-10-01] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-01] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-01] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-01] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-01] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-01] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-01] (AVAST Software) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7593176 2015-07-10] (Broadcom Corporation) S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-08] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Realsil Semiconductor Corporation) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Vimicro Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-08 22:59 - 2015-10-08 22:59 - 00000000 ____D C:\Users\sabsn2\Downloads\FRST-OlderVersion 2015-10-08 22:55 - 2015-10-08 22:55 - 00016148 _____ C:\WINDOWS\system32\IDEA-PC_sabrina_HistoryPrediction.bin 2015-10-08 22:15 - 2015-10-08 22:16 - 00000000 ____D C:\EEK 2015-10-08 22:15 - 2015-10-08 22:15 - 00000795 _____ C:\Users\sabsn2\Desktop\Start Emsisoft Emergency Kit.lnk 2015-10-08 22:11 - 2015-10-08 22:13 - 167922144 _____ C:\Users\sabsn2\Downloads\EmsisoftEmergencyKit.exe 2015-10-06 21:16 - 2015-10-06 21:16 - 02870984 _____ (ESET) C:\Users\sabsn2\Downloads\esetsmartinstaller_deu.exe 2015-10-06 12:41 - 2015-10-06 12:44 - 00000000 ___RD C:\Users\sabsn2\Desktop\Alle Musikordner 2015-10-05 21:49 - 2015-10-05 21:49 - 00001340 _____ C:\Users\sabsn2\Desktop\JRT.txt 2015-10-05 21:39 - 2015-09-29 20:17 - 01801288 _____ (Malwarebytes) C:\Users\sabsn2\Desktop\JRT.exe 2015-10-05 21:38 - 2015-10-05 21:38 - 01798976 _____ (Malwarebytes) C:\Users\sabsn2\Downloads\JRT.exe 2015-10-05 20:57 - 2015-10-05 21:29 - 00000000 ____D C:\AdwCleaner 2015-10-05 20:55 - 2015-10-05 20:55 - 01681408 _____ C:\Users\sabsn2\Downloads\AdwCleaner_5.010.exe 2015-10-05 20:55 - 2015-10-05 20:55 - 00072416 _____ C:\Users\sabsn2\Desktop\mbam.txt 2015-10-05 19:34 - 2015-10-08 22:04 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-10-05 19:34 - 2015-10-05 19:34 - 00001186 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-10-05 19:34 - 2015-10-05 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-10-05 19:34 - 2015-10-05 19:34 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-10-05 19:34 - 2015-10-05 19:34 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-10-05 19:34 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-10-05 19:34 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-10-05 19:34 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-10-05 19:33 - 2015-10-05 19:34 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\sabsn2\Downloads\mbam-setup-2.1.8.1057.exe 2015-10-05 19:30 - 2015-10-05 19:30 - 00001352 _____ C:\Users\sabsn2\Desktop\Revo Uninstaller.lnk 2015-10-05 19:30 - 2015-10-05 19:30 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-10-05 19:29 - 2015-10-05 19:29 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\sabsn2\Downloads\revosetup95.exe 2015-10-05 16:21 - 2015-10-05 21:54 - 00036977 _____ C:\Users\sabsn2\Downloads\Addition.txt 2015-10-05 16:19 - 2015-10-08 23:02 - 00023082 _____ C:\Users\sabsn2\Downloads\FRST.txt 2015-10-05 16:19 - 2015-10-08 23:02 - 00000000 ____D C:\FRST 2015-10-05 16:19 - 2015-10-08 22:59 - 02194944 _____ (Farbar) C:\Users\sabsn2\Downloads\FRST64.exe 2015-10-05 16:00 - 2015-10-05 16:00 - 00012438 _____ C:\Users\sabsn2\Documents\hijackthis.log 2015-10-05 15:57 - 2015-10-05 15:58 - 00388608 _____ (Trend Micro Inc.) C:\Users\sabsn2\Downloads\HijackThis_2.0.5.exe 2015-10-05 15:46 - 2015-10-05 15:46 - 00002571 _____ C:\Users\sabsn2\Desktop\Reimage2.lnk 2015-10-05 15:46 - 2015-10-05 15:46 - 00002339 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-10-05 15:46 - 2015-10-05 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-10-05 15:45 - 2015-10-08 22:50 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-05 15:45 - 2015-10-07 21:17 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-05 15:45 - 2015-10-05 15:45 - 00929872 _____ (Google Inc.) C:\Users\sabsn2\Downloads\ChromeSetup.exe 2015-10-05 15:45 - 2015-10-05 15:45 - 00004186 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-10-05 15:45 - 2015-10-05 15:45 - 00003954 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-10-05 15:44 - 2015-10-05 15:44 - 00002038 _____ C:\Users\Public\Desktop\Avast SafeZone.lnk 2015-10-05 15:44 - 2015-10-05 15:44 - 00001978 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk 2015-10-05 15:44 - 2015-10-05 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-10-05 15:41 - 2015-10-01 23:32 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2015-10-05 15:38 - 2015-10-05 15:38 - 05656224 _____ (AVAST Software) C:\Users\sabsn2\Downloads\avast_internet_security_setup_online.exe 2015-10-05 14:53 - 2015-10-05 14:53 - 00003350 _____ C:\WINDOWS\System32\Tasks\{64D3BB65-D716-488F-AA7E-AE28D09AD7A9} 2015-10-05 14:38 - 2015-10-05 14:38 - 00003386 _____ C:\WINDOWS\System32\Tasks\{380D76D0-3C40-4CDD-A6C1-97DCD41DBCC2} 2015-10-05 14:30 - 2015-09-15 05:31 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-10-05 14:30 - 2015-09-15 05:31 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-04 18:31 - 2015-10-04 18:31 - 00631808 _____ C:\WINDOWS\lhe.dat 2015-10-04 18:23 - 2015-10-05 20:48 - 00000000 ____D C:\Program Files (x86)\dd360bc6-2e37-447d-98fa-b8d0040286e1 2015-10-04 18:23 - 2015-10-05 15:17 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 2015-10-04 18:00 - 2015-10-04 18:00 - 00000000 ____D C:\Users\sabsn2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-10-02 00:13 - 2015-10-02 00:13 - 00001833 _____ C:\Users\Public\Desktop\iTunes.lnk 2015-10-02 00:13 - 2015-10-02 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-10-02 00:12 - 2015-10-02 00:13 - 00000000 ____D C:\Program Files\iTunes 2015-10-02 00:12 - 2015-10-02 00:12 - 00000000 ____D C:\Program Files\iPod 2015-10-02 00:12 - 2015-10-02 00:12 - 00000000 ____D C:\Program Files (x86)\iTunes 2015-10-02 00:10 - 2015-10-02 00:10 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple 2015-10-02 00:10 - 2015-10-02 00:10 - 00000000 ____D C:\Program Files\Bonjour 2015-10-02 00:10 - 2015-10-02 00:10 - 00000000 ____D C:\Program Files (x86)\Bonjour 2015-10-02 00:10 - 2015-10-02 00:10 - 00000000 ____D C:\Program Files (x86)\Apple Software Update 2015-10-01 23:57 - 2015-09-17 08:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-10-01 23:57 - 2015-09-17 08:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2015-10-01 23:57 - 2015-09-17 08:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2015-10-01 23:57 - 2015-09-17 08:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-10-01 23:57 - 2015-09-17 08:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2015-10-01 23:57 - 2015-09-17 08:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-10-01 23:57 - 2015-09-17 08:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-10-01 23:57 - 2015-09-17 08:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-10-01 23:57 - 2015-09-17 08:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-10-01 23:57 - 2015-09-17 08:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-10-01 23:57 - 2015-09-17 08:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-10-01 23:57 - 2015-09-17 08:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-10-01 23:57 - 2015-09-17 07:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-10-01 23:57 - 2015-09-17 07:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-10-01 23:57 - 2015-09-17 07:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-10-01 23:57 - 2015-09-17 07:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-10-01 23:57 - 2015-09-17 07:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-10-01 23:57 - 2015-09-17 07:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-10-01 23:57 - 2015-09-17 07:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-10-01 23:57 - 2015-09-17 07:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-10-01 23:57 - 2015-09-17 07:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-10-01 23:57 - 2015-09-17 07:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2015-10-01 23:56 - 2015-09-25 02:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll 2015-10-01 23:56 - 2015-09-25 02:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll 2015-10-01 23:56 - 2015-09-25 02:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-10-01 23:56 - 2015-09-25 01:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll 2015-10-01 23:56 - 2015-09-25 01:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll 2015-10-01 23:56 - 2015-09-25 01:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2015-10-01 23:56 - 2015-09-25 01:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2015-10-01 23:56 - 2015-09-25 01:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-10-01 23:56 - 2015-09-25 01:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-10-01 23:56 - 2015-09-25 01:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-10-01 23:56 - 2015-09-25 01:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-10-01 23:56 - 2015-09-25 01:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-10-01 23:56 - 2015-09-25 01:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll 2015-10-01 23:56 - 2015-09-25 01:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-10-01 23:56 - 2015-09-25 01:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2015-10-01 23:56 - 2015-09-25 01:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-10-01 23:56 - 2015-09-25 01:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2015-10-01 23:56 - 2015-09-25 01:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2015-10-01 23:56 - 2015-09-25 01:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll 2015-10-01 23:56 - 2015-09-25 00:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-10-01 23:56 - 2015-09-25 00:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2015-10-01 23:56 - 2015-09-25 00:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2015-10-01 23:56 - 2015-09-25 00:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-10-01 23:56 - 2015-09-25 00:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-10-01 23:56 - 2015-09-25 00:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2015-10-01 23:56 - 2015-09-25 00:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll 2015-10-01 23:56 - 2015-09-25 00:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll 2015-10-01 23:56 - 2015-09-25 00:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll 2015-10-01 23:56 - 2015-09-25 00:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll 2015-10-01 23:56 - 2015-09-25 00:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2015-10-01 23:56 - 2015-09-19 07:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2015-10-01 23:56 - 2015-09-17 08:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-10-01 23:56 - 2015-09-17 08:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-10-01 23:56 - 2015-09-17 08:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-10-01 23:56 - 2015-09-17 08:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-10-01 23:56 - 2015-09-17 08:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-10-01 23:56 - 2015-09-17 08:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-10-01 23:56 - 2015-09-17 08:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2015-10-01 23:56 - 2015-09-17 08:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-10-01 23:56 - 2015-09-17 08:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-10-01 23:56 - 2015-09-17 08:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-10-01 23:56 - 2015-09-17 08:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2015-10-01 23:56 - 2015-09-17 08:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2015-10-01 23:56 - 2015-09-17 08:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-10-01 23:56 - 2015-09-17 08:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2015-10-01 23:56 - 2015-09-17 08:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2015-10-01 23:56 - 2015-09-17 08:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-10-01 23:56 - 2015-09-17 08:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-10-01 23:56 - 2015-09-17 08:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-10-01 23:56 - 2015-09-17 08:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2015-10-01 23:56 - 2015-09-17 08:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2015-10-01 23:56 - 2015-09-17 08:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-10-01 23:56 - 2015-09-17 08:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2015-10-01 23:56 - 2015-09-17 08:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-10-01 23:56 - 2015-09-17 08:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-10-01 23:56 - 2015-09-17 08:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2015-10-01 23:56 - 2015-09-17 08:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-10-01 23:56 - 2015-09-17 08:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-10-01 23:56 - 2015-09-17 08:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-10-01 23:56 - 2015-09-17 08:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2015-10-01 23:56 - 2015-09-17 08:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2015-10-01 23:56 - 2015-09-17 08:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll 2015-10-01 23:56 - 2015-09-17 08:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2015-10-01 23:56 - 2015-09-17 08:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-10-01 23:56 - 2015-09-17 08:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2015-10-01 23:56 - 2015-09-17 08:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-10-01 23:56 - 2015-09-17 08:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-10-01 23:56 - 2015-09-17 08:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2015-10-01 23:56 - 2015-09-17 08:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2015-10-01 23:56 - 2015-09-17 08:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-10-01 23:56 - 2015-09-17 08:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2015-10-01 23:56 - 2015-09-17 08:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-10-01 23:56 - 2015-09-17 08:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-10-01 23:56 - 2015-09-17 08:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-10-01 23:56 - 2015-09-17 08:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll 2015-10-01 23:56 - 2015-09-17 08:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-10-01 23:56 - 2015-09-17 08:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-10-01 23:56 - 2015-09-17 08:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-10-01 23:56 - 2015-09-17 08:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-10-01 23:56 - 2015-09-17 08:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-10-01 23:56 - 2015-09-17 08:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2015-10-01 23:56 - 2015-09-17 08:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2015-10-01 23:56 - 2015-09-17 08:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2015-10-01 23:56 - 2015-09-17 08:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2015-10-01 23:56 - 2015-09-17 08:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-10-01 23:56 - 2015-09-17 08:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-10-01 23:56 - 2015-09-17 08:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll 2015-10-01 23:56 - 2015-09-17 08:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2015-10-01 23:56 - 2015-09-17 08:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-10-01 23:56 - 2015-09-17 08:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2015-10-01 23:56 - 2015-09-17 08:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-10-01 23:56 - 2015-09-17 08:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll 2015-10-01 23:56 - 2015-09-17 07:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2015-10-01 23:56 - 2015-09-17 07:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2015-10-01 23:56 - 2015-09-17 07:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-10-01 23:56 - 2015-09-17 07:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2015-10-01 23:56 - 2015-09-17 07:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-10-01 23:56 - 2015-09-17 07:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-10-01 23:56 - 2015-09-17 07:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-10-01 23:56 - 2015-09-17 07:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2015-10-01 23:56 - 2015-09-17 07:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2015-10-01 23:56 - 2015-09-17 07:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-10-01 23:56 - 2015-09-17 07:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-10-01 23:56 - 2015-09-17 07:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-10-01 23:56 - 2015-09-17 07:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2015-10-01 23:56 - 2015-09-17 07:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-10-01 23:56 - 2015-09-17 07:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-10-01 23:56 - 2015-09-17 07:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-10-01 23:56 - 2015-09-17 07:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-10-01 23:56 - 2015-09-17 07:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2015-10-01 23:56 - 2015-09-17 07:50 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2015-10-01 23:56 - 2015-09-17 07:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-10-01 23:56 - 2015-09-17 07:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-10-01 23:56 - 2015-09-17 07:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2015-10-01 23:56 - 2015-09-17 07:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll 2015-10-01 23:56 - 2015-09-17 07:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll 2015-10-01 23:56 - 2015-09-17 07:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys 2015-10-01 23:56 - 2015-09-17 07:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll 2015-10-01 23:56 - 2015-09-17 07:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll 2015-10-01 23:56 - 2015-09-17 07:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2015-10-01 23:56 - 2015-09-17 07:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2015-10-01 23:56 - 2015-09-17 07:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2015-10-01 23:56 - 2015-09-17 07:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2015-10-01 23:56 - 2015-09-17 07:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2015-10-01 23:56 - 2015-09-17 07:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-10-01 23:56 - 2015-09-17 07:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2015-10-01 23:56 - 2015-09-17 07:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2015-10-01 23:56 - 2015-09-17 07:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2015-10-01 23:56 - 2015-09-17 07:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2015-10-01 23:56 - 2015-09-17 07:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll 2015-10-01 23:56 - 2015-09-17 07:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-10-01 23:56 - 2015-09-17 07:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-10-01 23:56 - 2015-09-17 07:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-10-01 23:56 - 2015-09-17 07:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-10-01 23:56 - 2015-09-17 07:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-10-01 23:56 - 2015-09-17 07:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2015-10-01 23:56 - 2015-09-17 07:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2015-10-01 23:56 - 2015-09-17 07:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2015-10-01 23:56 - 2015-09-17 07:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-10-01 23:56 - 2015-09-17 07:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll 2015-10-01 23:56 - 2015-09-17 07:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-10-01 23:56 - 2015-09-17 07:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-10-01 23:56 - 2015-09-17 07:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-10-01 23:56 - 2015-09-17 07:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-10-01 23:56 - 2015-09-17 07:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-10-01 23:56 - 2015-09-17 07:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2015-10-01 23:56 - 2015-09-17 07:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-10-01 23:56 - 2015-09-17 07:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2015-10-01 23:56 - 2015-09-17 07:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-10-01 23:56 - 2015-09-17 07:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-10-01 23:56 - 2015-09-17 07:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2015-10-01 23:56 - 2015-09-17 07:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-10-01 23:56 - 2015-09-17 07:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll 2015-10-01 23:56 - 2015-09-17 07:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-10-01 23:56 - 2015-09-17 07:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2015-10-01 23:56 - 2015-09-17 07:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2015-10-01 23:56 - 2015-09-17 07:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2015-10-01 23:56 - 2015-09-17 07:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2015-10-01 23:56 - 2015-09-17 07:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-10-01 23:56 - 2015-09-17 07:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2015-10-01 23:56 - 2015-09-17 07:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2015-10-01 23:56 - 2015-09-17 07:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-10-01 23:56 - 2015-09-17 07:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2015-10-01 23:56 - 2015-09-17 07:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2015-10-01 23:56 - 2015-09-17 07:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-10-01 23:56 - 2015-09-17 07:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-10-01 23:56 - 2015-09-17 07:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-10-01 23:56 - 2015-09-17 07:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-10-01 23:56 - 2015-09-17 07:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2015-10-01 23:56 - 2015-09-17 07:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2015-10-01 23:56 - 2015-09-17 07:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2015-10-01 23:56 - 2015-09-13 04:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-10-01 23:56 - 2015-09-13 03:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-10-01 23:32 - 2015-10-01 23:32 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2015-10-01 23:28 - 2015-10-01 23:28 - 00454528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys 2015-09-16 21:39 - 2015-09-16 21:39 - 00000000 ____D C:\WINDOWS\PCHEALTH 2015-09-16 21:22 - 2015-09-16 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant 2015-09-16 21:21 - 2015-04-18 10:26 - 00427224 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe 2015-09-16 21:21 - 2014-11-26 11:01 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat 2015-09-16 21:19 - 2015-10-06 21:08 - 00369718 _____ C:\Users\Public\CAFADEBUG.log 2015-09-16 21:19 - 2015-09-16 21:19 - 00000000 ____D C:\Program Files\Dolby Digital Plus 2015-09-16 21:16 - 2015-09-16 21:16 - 07231400 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 03153264 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\UCI64A96.DLL 2015-09-16 21:16 - 2015-09-16 21:16 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 01052208 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64BP16.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 00431048 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 00340656 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 00283928 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 00151791 _____ C:\WINDOWS\system32\Drivers\DS1Parm.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00071024 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxPageMaster64.dll 2015-09-16 21:16 - 2015-09-16 21:16 - 00014718 _____ C:\WINDOWS\system32\Drivers\MicGain.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00011842 _____ C:\WINDOWS\system32\Drivers\EdgeEQ.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00010107 _____ C:\WINDOWS\system32\Drivers\MicEQ.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00008269 _____ C:\WINDOWS\system32\Drivers\AFA.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00006520 _____ C:\WINDOWS\system32\Drivers\ISAPSII.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00006312 _____ C:\WINDOWS\system32\Drivers\FXMisc.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00003657 _____ C:\WINDOWS\system32\Drivers\BIT_CLK.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00003027 _____ C:\WINDOWS\system32\Drivers\SPKVol.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00002171 _____ C:\WINDOWS\system32\Drivers\OrVerbs.ini 2015-09-16 21:16 - 2015-09-16 21:16 - 00001816 _____ C:\WINDOWS\system32\Drivers\ALTMIXER.INI 2015-09-16 21:13 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-09-16 21:13 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-09-16 21:13 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-09-16 21:12 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-09-16 21:12 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-09-16 21:12 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-09-16 21:12 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-09-16 21:12 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-09-16 21:12 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-09-16 21:12 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-09-16 21:12 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-09-16 21:12 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-09-16 21:12 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-09-16 21:12 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll 2015-09-16 21:12 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2015-09-16 21:12 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-09-16 21:12 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-09-16 21:12 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-09-16 21:12 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-09-16 21:12 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-09-16 21:12 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-09-16 21:12 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-09-16 21:12 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2015-09-16 21:12 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-08 22:22 - 2015-06-13 11:11 - 00001246 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3210108916-3864258014-2341951935-1002UA.job 2015-10-08 22:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-10-08 22:06 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-10-08 22:04 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-10-07 21:18 - 2015-04-29 16:36 - 00000000 ___RD C:\Users\sabsn2\Documents\Polaris Office 2015-10-07 21:18 - 2015-04-29 16:35 - 00000000 ____D C:\Users\sabsn2\AppData\Roaming\PolarisOfficeLink 2015-10-07 21:18 - 2014-07-13 12:09 - 00000000 ___RD C:\Users\sabsn2\Dropbox 2015-10-07 21:18 - 2014-07-13 12:04 - 00000000 ____D C:\Users\sabsn2\AppData\Roaming\Dropbox 2015-10-07 21:17 - 2014-04-09 20:12 - 00000000 ____D C:\Users\sabsn2\AppData\Local\HTC MediaHub 2015-10-07 21:16 - 2015-08-17 05:22 - 00000000 ____D C:\Users\sabsn2 2015-10-07 21:15 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-10-07 06:03 - 2014-02-15 21:46 - 00004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{DBB5FBF8-2C7F-4F39-816B-FBC61A5C4C86} 2015-10-06 21:20 - 2015-08-17 05:47 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-10-06 21:20 - 2015-07-10 18:34 - 00772342 _____ C:\WINDOWS\system32\perfh007.dat 2015-10-06 21:20 - 2015-07-10 18:34 - 00154170 _____ C:\WINDOWS\system32\perfc007.dat 2015-10-06 21:15 - 2015-07-10 14:20 - 00029680 _____ C:\WINDOWS\setupact.log 2015-10-06 21:12 - 2013-07-31 20:08 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-10-06 21:08 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-10-06 12:42 - 2015-06-18 18:02 - 00000000 ____D C:\Users\sabsn2\Desktop\mein-tester 2015-10-05 21:30 - 2015-08-17 05:12 - 00142350 _____ C:\WINDOWS\PFRO.log 2015-10-05 21:29 - 2012-10-13 16:50 - 00000000 ____D C:\Program Files (x86)\Amazon 2015-10-05 20:22 - 2014-01-02 21:17 - 00000948 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3210108916-3864258014-2341951935-1002UA.job 2015-10-05 20:22 - 2014-01-02 21:17 - 00000926 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3210108916-3864258014-2341951935-1002Core.job 2015-10-05 17:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache 2015-10-05 15:58 - 2013-01-05 14:44 - 00000000 ____D C:\Users\sabsn2\AppData\Local\VirtualStore 2015-10-05 15:46 - 2013-01-05 17:27 - 00000000 ____D C:\Users\sabsn2\AppData\Local\Google 2015-10-05 15:46 - 2013-01-05 17:27 - 00000000 ____D C:\Program Files (x86)\Google 2015-10-05 14:33 - 2012-07-26 07:26 - 00000218 _____ C:\WINDOWS\win.ini 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning 2015-10-05 14:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-10-04 18:27 - 2015-08-22 11:25 - 00000000 ____D C:\Users\sabsn2\AppData\Local\MicrosoftEdge 2015-10-04 18:17 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-10-04 17:55 - 2015-07-11 18:16 - 00000000 ____D C:\ProgramData\EPSON 2015-10-04 17:54 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-10-02 00:12 - 2013-01-05 19:11 - 00000000 ____D C:\Program Files\Common Files\Apple 2015-10-02 00:10 - 2013-01-05 19:12 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2015-10-01 23:32 - 2014-07-13 12:22 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2015-10-01 23:32 - 2014-07-13 12:22 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2015-10-01 23:32 - 2013-07-31 20:09 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2015-10-01 23:32 - 2013-07-31 20:09 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2015-10-01 23:32 - 2013-07-31 20:08 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2015-10-01 23:32 - 2013-07-31 20:08 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-10-01 23:32 - 2013-07-31 20:08 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-10-01 23:30 - 2014-12-10 17:52 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2015-10-01 23:30 - 2013-07-31 20:08 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2015-10-01 23:25 - 2015-08-17 19:48 - 00002410 _____ C:\Users\sabsn2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-10-01 23:25 - 2015-08-17 19:48 - 00000000 ___RD C:\Users\sabsn2\OneDrive 2015-10-01 23:19 - 2015-07-10 14:20 - 00274160 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-10-01 23:17 - 2015-07-10 18:46 - 00000000 ____D C:\Program Files\Windows Journal 2015-10-01 21:30 - 2015-08-17 06:07 - 00000000 ____D C:\Windows.old 2015-09-17 02:08 - 2014-07-14 14:49 - 00000000 ____D C:\Users\sabsn2\Desktop\Sabrina_ 2015-09-16 21:59 - 2013-01-05 16:42 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-09-16 21:53 - 2015-05-28 18:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-09-16 21:39 - 2013-08-26 13:10 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-09-16 21:19 - 2015-08-17 05:19 - 00000000 ____D C:\Program Files\CONEXANT 2015-09-16 21:16 - 2012-10-13 16:27 - 00000000 ____D C:\ProgramData\Conexant 2015-09-16 21:16 - 2012-08-22 10:52 - 01317096 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys 2015-09-16 20:45 - 2013-01-05 14:44 - 00000000 ____D C:\Users\sabsn2\AppData\Local\Packages ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\sabsn2\AppData\Roaming\NU0TOMlbp7jjX1EL8Y2A6I 2012-10-13 16:29 - 2012-10-13 16:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\sabsn2\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpivjjj1.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-10-04 18:11 ==================== Ende von FRST.txt ============================ Hier der Link zum Screenshot über die Malware Meldung hxxp://img4web.com/view/87UJK4 |
|
09.10.2015, 11:08
| #18 |
| /// Malwareteam | Ständig erscheint Werbung im neuen Fenster Tritt das nur um Chrome auf?
__________________
__________________ |
|
12.10.2015, 08:23
| #19 |
| /// Malwareteam | Ständig erscheint Werbung im neuen Fenster Hallo, benötigst Du noch weiterhin Hilfe ? Sollte ich innerhalb der nächsten 24 Stunden keine Antwort von dir erhalten, werde ich dein Thema aus meinen Abos nehmen und bekomme dadurch keine Nachricht über neue Antworten. Das Verschwinden der Symptome bedeutet nicht, dass dein System schon sauber ist |
|
14.10.2015, 10:44
| #20 |
| | Ständig erscheint Werbung im neuen Fenster Halloo, tut mir leid. Ich war die letzten Tage nicht zu Hause und daher nicht am Laptop. Da Problem trifft nur auf Chrome zu. Vielleicht siehst du diese Antwort doch noch. LG |
|
14.10.2015, 19:20
| #21 |
| /// Malwareteam | Ständig erscheint Werbung im neuen Fenster Hi, kein Problem  Schritt # 1: Revo Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Danach neu herunterladen und installieren. Direkt nach der frischen Installation folgendes machen: https://support.google.com/chrome/answer/3296214?hl=de Schritt # 2: Frage Besteht das Problem immer noch? Schritt # 3: Bitte Posten
__________________ --> Ständig erscheint Werbung im neuen Fenster |
|
| Themen zu Ständig erscheint Werbung im neuen Fenster |
| antivirus, avast, bho, bonjour, defender, explorer, firewall, google, hijack, hijackthis, internet, internet explorer, logfile, lsass.exe, microsoft, neue, nvidia, onedrive, popups-werbefenster, security, senden, software, usb, werbung, werbung im neuen fenster, windows, wmp, öffnet |
dann auf 
und dann auf 
. 
Linear-Darstellung
