| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Das Arbeiten in google drive ist sehr langsamWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
11.07.2016, 16:42
| #1 |
 |  Das Arbeiten in google drive ist sehr langsam Hallo liebes Trojanerboard Team, ich bin unwissend was Computer angeht und möchte mich daher an euch wenden und hoffe etwas zu lernen und meine Computerprobleme zu beheben. Ich kann nicht genau sagen ob ich etwas virusartiges auf meinem Pc habe aber er ist teilweise sehr langsam. Vorallem das Arbeiten auf google.drive gestaltet sich als sehr langsam. Ich habe das Antivirenprogramm Avira, das soweit erstmal sagt, dass mein Pc sicher ist. Ich habe wie in der Anleitung den Farbar Recovery Scan gemacht und das AVira Logfile erstellt. Die Daten seht ihr im Folgenden: Addition.txt: Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 10-07-2016 01
durchgeführt von Ronya (2016-07-11 15:38:45)
Gestartet von C:\Users\Ronya\desktop
Windows 8.1 (Update) (X64) (2015-08-19 14:13:29)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2355778515-3562703224-765601422-500 - Administrator - Enabled)
Gast (S-1-5-21-2355778515-3562703224-765601422-501 - Limited - Disabled)
Ronya (S-1-5-21-2355778515-3562703224-765601422-1001 - Administrator - Enabled) => C:\Users\Ronya
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3d9e0476-943f-4962-99dc-b9c937a43840}) (Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG) Hidden
Benutzerhandbücher (x32 Version: 3.0.0.3 - Lenovo) Hidden
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 5.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.1.51 - Lenovo)
Energy Manager (x32 Version: 1.0.1.51 - Lenovo) Hidden
Glary Utilities 2.56.0.1822 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.56.0.1822 - Glarysoft Ltd)
Google Drive (HKLM-x32\...\{709316AD-161C-4D5C-9AE7-0B3A822DA271}) (Version: 1.30.2170.0459 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Host App Service (HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\SweetLabs_AP) (Version: 0.269.7.927 - Pokki)
Intel Experience Center - Configuration (x32 Version: 1.7.0.179 - Intel) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2103 - Intel Corporation)
Intel(R) Experience Center Desktop Software (HKLM-x32\...\{3608ec0a-56b4-4d9d-b038-9b3e51d72582}) (Version: 1.7.0.179 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3304 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{B1AC3709-3E98-4F2C-A84E-4BCA2A452E64}) (Version: 4.2.40.2418 - Intel Corporation)
Intel(R) Update Manager (x32 Version: 1.6.2.69 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{b9007812-6a61-4dfc-8a0c-4c726c7dc43f}) (Version: 17.0.1 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.5.43 - SunplusIT)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.8 - Lenovo)
Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.8 - Lenovo) Hidden
Lenovo Motion Control (HKLM-x32\...\InstallShield_{E9325F15-6339-45E8-9DC4-C2D44B623039}) (Version: 2.5.1.0224 - PointGrab)
Lenovo Motion Control (x32 Version: 2.5.1.0224 - PointGrab) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.52953.1504 - CyberLink Corp.)
Lenovo Photo Master (x32 Version: 1.0.52953.1504 - CyberLink Corp.) Hidden
Lenovo Smart Voice (HKLM\...\Lenovo SmartVoice) (Version: 1.0.2.0 - Lenovo)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.0.13.12271 - Lenovo)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Lenovo Yoga 2 Demo (HKLM-x32\...\{03C682A4-05CD-4D22-B50A-B9C3C5F2B137}) (Version: 1.0.7 - Lenovo)
Lenovo Yoga PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.1.9.3 - Lenovo)
Lenovo Yoga PhoneCompanion (x32 Version: 1.1.9.3 - Lenovo) Hidden
MakerBot_Bundle_BETA_3.7.0.95_8.1_x64 (HKLM-x32\...\MakerBot) (Version: 3.7.0.95 - MakerBot)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 47.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 de)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
Mozilla Thunderbird 38.7.2 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.7.2 (x86 de)) (Version: 38.7.2 - Mozilla)
Nitro Pro 9 (HKLM\...\{4C32F7E8-A65F-4D3C-9153-9F3B57CB6872}) (Version: 9.0.5.9 - Nitro)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDF24 Creator 7.3.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Picto-Selector 1.7 (HKLM-x32\...\{8032E8DE-1764-4F00-B19E-EF2DBBDB649B}_is1) (Version: - M.C. van der Kooij)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7058 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Start Menu (HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\SweetLabs_Start_Menu) (Version: 0.269.7.927 - Pokki)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.7 - Synaptics Incorporated)
Trine 2 - Complete Story (HKLM-x32\...\Trine 2 - Complete Story_is1) (Version: - )
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports (10/27/2014 100.1.0.0) (HKLM\...\1D8A20A244A54F5B2205DA2E74E00AB42CE9C3C3) (Version: 10/27/2014 100.1.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports (10/27/2014 100.1.0.0) (HKLM\...\6EFF38D5C9DAEBC02D00EDAC1B0EBFE09DF3CF76) (Version: 10/27/2014 100.1.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports (10/27/2014 100.1.0.0) (HKLM\...\703C503DB153791AFD1609E2315BDA63FB883721) (Version: 10/27/2014 100.1.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports (10/27/2014 100.1.0.0) (HKLM\...\FB798FEEF8815896BACE053F2CACE979AC7FA12D) (Version: 10/27/2014 100.1.0.0 - MakerBot Industries, LLC)
Windows-Treiberpaket - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WISO Steuer-Sparbuch 2015 (HKLM-x32\...\{54793A4F-7BB8-4C90-A9C8-8E3393759E82}) (Version: 22.00.8811 - Buhl Data Service GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2355778515-3562703224-765601422-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Ronya\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-2355778515-3562703224-765601422-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Ronya\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {2898852A-68C6-4267-9426-D427C104D5BF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {43CA93D1-552C-425B-A124-CA03D5D4DA0D} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2355778515-3562703224-765601422-1001 => C:\Users\Ronya\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-05-20] (Microsoft Corporation)
Task: {5485DC44-3328-4345-A6D2-7BDA9344269A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-03] (Google Inc.)
Task: {5BE1C503-506F-435C-A8A1-776DDCB299C6} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated)
Task: {73508645-AE6F-4948-AC68-407E16DF0A1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {85A0BC55-2AE4-40B9-8496-D5CAAA3E7DB1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {97E1A6BF-08A4-4410-8D5B-8FCEE7CE3B74} - System32\Tasks\Lenovo Smart Voice => C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe [2014-06-19] (Lenovo)
Task: {A3C0DD49-17AC-440C-B9A0-CC5CC431AF4A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {B268B835-A849-4A38-9472-586FFB7A115C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-03] (Google Inc.)
Task: {C8A90D52-50DD-4248-8642-C5519E23A779} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-05-27] (Glarysoft Ltd)
Task: {D8A47027-BF89-4C06-818F-ADE27345C66F} - System32\Tasks\SweetLabs App Platform => C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2016-04-14] (Pokki)
Task: {D8C3DA3A-1542-4426-A353-682C23B77303} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-26] (Dropbox, Inc.)
Task: {DB37312D-F058-4F5B-A7F7-CAD4F603561D} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-12-02] (@ByELDI)
Task: {F0712376-4CC3-49F3-8E26-94F5F72B1427} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [2013-07-03] (Intel Corporation)
Task: {F2357DDE-B127-4B7A-AD27-69FF4AA8A347} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [2013-07-03] (Intel Corporation)
Task: {FCD60DDE-C0DD-4B9E-886E-2E32BCF7EA5D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-26] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-08-01 17:31 - 2013-08-01 17:31 - 00198120 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-08-01 17:31 - 2013-08-01 17:31 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2013-08-01 17:31 - 2013-08-01 17:31 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2015-04-13 18:43 - 2015-04-13 18:43 - 00111616 _____ () C:\Program Files\MakerBot\MakerWare\_ctypes.pyd
2015-04-13 18:43 - 2015-04-13 18:43 - 00047616 _____ () C:\Program Files\MakerBot\MakerWare\_socket.pyd
2015-04-13 18:43 - 2015-04-13 18:43 - 01210368 _____ () C:\Program Files\MakerBot\MakerWare\_ssl.pyd
2015-04-13 18:43 - 2015-04-13 18:43 - 00474624 _____ () C:\Program Files\MakerBot\MakerWare\_hashlib.pyd
2015-04-13 18:43 - 2015-04-13 18:43 - 00010752 _____ () C:\Program Files\MakerBot\MakerWare\select.pyd
2015-04-13 18:43 - 2015-04-13 18:43 - 00689664 _____ () C:\Program Files\MakerBot\MakerWare\unicodedata.pyd
2014-12-05 19:12 - 2014-12-05 19:12 - 02596352 _____ () C:\Program Files\MakerBot\MakerWare\vtkCommon.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 03111424 _____ () C:\Program Files\MakerBot\MakerWare\vtkFiltering.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 05822464 _____ () C:\Program Files\MakerBot\MakerWare\vtkGraphics.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 04569600 _____ () C:\Program Files\MakerBot\MakerWare\vtkIO.dll
2014-12-05 19:09 - 2014-12-05 19:09 - 02572288 _____ () C:\Program Files\MakerBot\MakerWare\opencv_core2410.dll
2014-12-05 19:09 - 2014-12-05 19:09 - 01200640 _____ () C:\Program Files\MakerBot\MakerWare\opencv_calib3d2410.dll
2014-12-05 19:10 - 2014-12-05 19:10 - 02236928 _____ () C:\Program Files\MakerBot\MakerWare\opencv_imgproc2410.dll
2014-12-05 19:10 - 2014-12-05 19:10 - 02413056 _____ () C:\Program Files\MakerBot\MakerWare\opencv_highgui2410.dll
2014-08-06 15:30 - 2014-08-06 15:30 - 00050688 _____ () C:\Program Files\MakerBot\MakerWare\boost_date_time-vc120-mt-1_56.dll
2014-08-06 15:30 - 2014-08-06 15:30 - 00116224 _____ () C:\Program Files\MakerBot\MakerWare\boost_filesystem-vc120-mt-1_56.dll
2014-08-06 15:29 - 2014-08-06 15:29 - 00019456 _____ () C:\Program Files\MakerBot\MakerWare\boost_system-vc120-mt-1_56.dll
2014-08-06 15:30 - 2014-08-06 15:30 - 00100864 _____ () C:\Program Files\MakerBot\MakerWare\boost_thread-vc120-mt-1_56.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00243200 _____ () C:\Program Files\MakerBot\MakerWare\vtksys.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00159232 _____ () C:\Program Files\MakerBot\MakerWare\vtkverdict.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00116736 _____ () C:\Program Files\MakerBot\MakerWare\vtkDICOMParser.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00783360 _____ () C:\Program Files\MakerBot\MakerWare\vtkNetCDF.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00110592 _____ () C:\Program Files\MakerBot\MakerWare\vtkNetCDF_cxx.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00080896 _____ () C:\Program Files\MakerBot\MakerWare\LSDyna.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00611328 _____ () C:\Program Files\MakerBot\MakerWare\vtkmetaio.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00127488 _____ () C:\Program Files\MakerBot\MakerWare\vtkpng.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00065024 _____ () C:\Program Files\MakerBot\MakerWare\vtkzlib.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00141312 _____ () C:\Program Files\MakerBot\MakerWare\vtkjpeg.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00314880 _____ () C:\Program Files\MakerBot\MakerWare\vtktiff.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00128000 _____ () C:\Program Files\MakerBot\MakerWare\vtkexpat.dll
2014-12-05 19:10 - 2014-12-05 19:10 - 00656896 _____ () C:\Program Files\MakerBot\MakerWare\opencv_flann2410.dll
2014-12-05 19:10 - 2014-12-05 19:10 - 00869888 _____ () C:\Program Files\MakerBot\MakerWare\opencv_features2d2410.dll
2014-08-06 15:29 - 2014-08-06 15:29 - 00028672 _____ () C:\Program Files\MakerBot\MakerWare\boost_chrono-vc120-mt-1_56.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 02085888 _____ () C:\Program Files\MakerBot\MakerWare\vtkhdf5.dll
2014-12-05 19:12 - 2014-12-05 19:12 - 00097280 _____ () C:\Program Files\MakerBot\MakerWare\vtkhdf5_hl.dll
2014-06-19 22:37 - 2012-04-25 04:43 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-06-19 22:38 - 2014-06-19 22:38 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-06-19 22:38 - 2014-06-19 22:38 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-06-19 22:38 - 2014-06-19 22:38 - 00062224 _____ () C:\ProgramData\LenovoTransition\Server\x64\dptf.dll
2016-05-20 21:11 - 2016-05-20 21:11 - 00959168 _____ () C:\Users\Ronya\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2014-02-24 16:39 - 2014-02-24 16:39 - 00013576 _____ () C:\Program Files (x86)\Lenovo\Motion Control\PointGrabDeviceAPI.dll
2014-06-19 22:14 - 2013-08-09 14:25 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-07-11 08:49 - 2016-07-11 08:49 - 00098816 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32api.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00110080 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\pywintypes27.dll
2016-07-11 08:49 - 2016-07-11 08:49 - 00364544 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\pythoncom27.dll
2016-07-11 08:49 - 2016-07-11 08:49 - 00320512 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32com.shell.shell.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00776704 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_hashlib.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 01176576 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._core_.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00806400 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._gdi_.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00816128 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._windows_.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 01067008 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._controls_.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00733184 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._misc_.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00682496 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\pysqlite2._sqlite.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00088064 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_ctypes.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00119808 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32file.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00108544 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32security.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00007168 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\hashobjs_ext.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00017920 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\thumbnails_ext.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00088064 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\usb_ext.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00012288 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\common.time34.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00018432 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32event.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00167936 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32gui.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00046080 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_socket.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 01208320 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_ssl.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00128512 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_elementtree.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00127488 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\pyexpat.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00038912 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32inet.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00036864 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_psutil_windows.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00525208 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\windows._lib_cacheinvalidation.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00011264 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32crypt.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00077312 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._html2.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00027136 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_multiprocessing.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00020480 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\_yappi.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00035840 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32process.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00686080 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\unicodedata.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00078848 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._animate.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00123392 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\wx._wizard.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00024064 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32pipe.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00010240 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\select.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00025600 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32pdh.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00017408 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32profile.pyd
2016-07-11 08:49 - 2016-07-11 08:49 - 00022528 ____R () C:\Users\Ronya\AppData\Local\Temp\_MEI49562\win32ts.pyd
2015-12-12 22:56 - 2016-05-25 19:03 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-06-25 00:15 - 2016-05-25 19:03 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-06-25 00:15 - 2016-05-25 19:04 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-06-25 00:15 - 2016-05-25 19:03 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-12 22:56 - 2016-05-25 19:03 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-12 22:56 - 2016-05-25 19:03 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-12 22:56 - 2016-06-13 22:13 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-06-25 00:15 - 2016-05-25 19:03 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-12 22:56 - 2016-06-13 22:13 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-12 22:56 - 2016-05-25 19:03 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-12 22:56 - 2016-05-25 19:04 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-12 22:56 - 2016-06-13 22:13 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-06-25 00:15 - 2016-05-25 19:05 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-02-19 04:51 - 2016-06-13 22:13 - 00021832 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-02-19 04:51 - 2016-06-13 22:13 - 00023872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32._winffi_kernel32.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-02-19 04:51 - 2016-06-13 22:13 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-02-19 04:51 - 2016-06-13 22:13 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-02-19 04:51 - 2016-06-13 22:13 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2015-12-12 22:56 - 2016-05-25 19:03 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2016-06-25 00:15 - 2016-05-25 19:04 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-12 22:56 - 2016-06-13 22:13 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-02-19 04:51 - 2016-06-13 22:13 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-06-25 00:15 - 2016-05-25 19:05 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-06-25 00:15 - 2016-06-13 22:13 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-06-25 00:15 - 2016-06-13 22:13 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-12 22:56 - 2016-05-25 19:04 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 01971504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00132912 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00223544 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-12 22:56 - 2016-05-25 19:05 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2015-12-12 22:56 - 2016-06-13 22:13 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-06-25 00:15 - 2016-06-13 22:13 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2014-06-19 22:38 - 2014-06-19 22:38 - 00101648 _____ () C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LUpdatePackage.dll
2016-04-09 00:53 - 2016-04-09 00:53 - 00153032 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2016-04-09 00:53 - 2016-04-09 00:53 - 00022472 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2016-04-14 01:00 - 2016-04-14 01:00 - 00569856 _____ () C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\ppGoogleNaClPluginChrome.dll
2016-04-14 01:00 - 2016-04-14 01:00 - 01400846 _____ () C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\avcodec-54.dll
2016-04-14 01:00 - 2016-04-14 01:00 - 00151054 _____ () C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\avutil-51.dll
2016-04-14 01:00 - 2016-04-14 01:00 - 00222734 _____ () C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\avformat-54.dll
2016-05-27 21:19 - 2016-05-27 21:19 - 22345912 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll
2016-05-03 16:41 - 2016-05-03 16:41 - 00322232 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll
2016-05-03 16:41 - 2016-05-03 16:41 - 46476472 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ronya\Desktop\emory_douglas.png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\Run: => "Lenovo Utility"
HKLM\...\StartupApproved\Run: => "Yoga PhoneCompanion"
HKLM\...\StartupApproved\Run: => "AutoStartTransition"
HKLM\...\StartupApproved\Run32: => "avgnt"
HKLM\...\StartupApproved\Run32: => "Avira SystrayStartTrigger"
HKLM\...\StartupApproved\Run32: => "Yoga Picks"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{2C6FCEFE-6E50-43F3-AE8C-9F44CD79AD67}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{441A55C7-3871-41C0-AEBF-328D9F074EA9}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{6D50410E-6742-4B73-A2B6-4D2CF1CD238E}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{A2C646E2-6207-4208-92D1-13966BDE22BF}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe
FirewallRules: [{1EF5F4C0-22F7-42F3-BABF-35FFF2EB6E81}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{783D707A-C010-4192-B828-253CC0C7D98C}] => (Allow) LPort=55100
FirewallRules: [{DA38683D-9FCD-4BBD-BDE2-CEAAF7F3A038}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe
FirewallRules: [{4C523D54-22B5-44A8-ACAE-F1D7328EFD96}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E57ED10A-76C8-4694-82E7-66B3F7B18B48}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5CDEF340-A68E-4D04-9F17-3B5762C01021}] => (Allow) C:\Users\Ronya\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [TCP Query User{D906B733-118F-45DC-B555-7DBCB6E79525}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{314D162B-F362-4B21-81F5-D6BA5A753619}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{709BD854-8B73-4018-923F-C0A0334532EE}C:\program files (x86)\openra\openra.game.exe] => (Allow) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{E6069AF1-4818-45E9-8D82-6BFDCF12AA5B}C:\program files (x86)\openra\openra.game.exe] => (Allow) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [{C43D4CF8-25EC-4EA0-99C0-164B4089E9A8}] => (Allow) C:\Program Files\MakerBot\MakerWare\conveyor-svc.exe
FirewallRules: [{F599A6DE-08DF-47B9-B0BC-A80C9AADCC58}] => (Allow) C:\Program Files\MakerBot\MakerWare\conveyor-svc.exe
FirewallRules: [{EEBDCF95-0A94-4A61-B562-E05139919849}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F1F0AD9E-721A-4ED2-AAA5-3733289AA623}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{D46461B8-0D1E-4315-9A62-1C9E30E87CB5}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1D308FCE-E210-46E2-986D-1056A6129E36}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{5EFFC249-A240-4FF7-A6D1-4B90FD28FFC4}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{96D2D51F-C2E5-4BD7-B685-EF0A2D72C399}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{155DB113-DAE1-4113-B881-7971089F8E95}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
18-06-2016 15:07:04 Windows Update
26-06-2016 17:02:21 Geplanter Prüfpunkt
04-07-2016 10:01:36 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (07/11/2016 09:16:01 AM) (Source: PhoneCompanionVap_ICS) (EventID: 1) (User: )
Description: PhoneCompanionVap_ICSIcsMgr : Enable Ics Get Public Guid error. failed with -2147024809
Error: (07/11/2016 09:16:01 AM) (Source: LenovoWiFiHotspotSvr) (EventID: 1) (User: )
Description: LenovoWiFiHotspotSvrCommandMonitorThread,Network state change event received. failed with 0
Error: (07/11/2016 09:16:01 AM) (Source: PhoneCompanionVap_ICS) (EventID: 1) (User: )
Description: PhoneCompanionVap_ICSIcsMgr : Enable Ics Get Public Guid error. failed with -2147024809
Error: (07/11/2016 09:16:01 AM) (Source: LenovoWiFiHotspotSvr) (EventID: 1) (User: )
Description: LenovoWiFiHotspotSvrCommandMonitorThread,Network state change event received. failed with 0
Error: (07/11/2016 09:15:56 AM) (Source: PhoneCompanionVap_ICS) (EventID: 1) (User: )
Description: PhoneCompanionVap_ICSIcsMgr : Enable Ics Get Public Guid error. failed with -2147024809
Error: (07/11/2016 09:15:56 AM) (Source: LenovoWiFiHotspotSvr) (EventID: 1) (User: )
Description: LenovoWiFiHotspotSvrCommandMonitorThread,Network state change event received. failed with 0
Error: (07/11/2016 09:15:56 AM) (Source: PhoneCompanionVap_ICS) (EventID: 1) (User: )
Description: PhoneCompanionVap_ICSIcsMgr : Enable Ics Get Public Guid error. failed with -2147024809
Error: (07/11/2016 09:15:56 AM) (Source: LenovoWiFiHotspotSvr) (EventID: 1) (User: )
Description: LenovoWiFiHotspotSvrCommandMonitorThread,Network state change event received. failed with 0
Error: (07/11/2016 09:15:55 AM) (Source: PhoneCompanionVap_ICS) (EventID: 1) (User: )
Description: PhoneCompanionVap_ICSIcsMgr : Enable Ics Get Public Guid error. failed with -2147024809
Error: (07/11/2016 09:15:55 AM) (Source: LenovoWiFiHotspotSvr) (EventID: 1) (User: )
Description: LenovoWiFiHotspotSvrCommandMonitorThread,Network state change event received. failed with 0
Systemfehler:
=============
Error: (07/11/2016 09:16:56 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/11/2016 09:16:26 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (07/10/2016 03:34:46 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/10/2016 03:34:16 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (07/09/2016 08:34:30 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/09/2016 08:34:00 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (07/08/2016 09:15:03 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/08/2016 09:14:33 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (07/08/2016 09:01:12 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/08/2016 09:00:42 AM) (Source: DCOM) (EventID: 10010) (User: Cassiopeia)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Prozentuale Nutzung des RAM: 41%
Installierter physikalischer RAM: 8104.27 MB
Verfügbarer physikalischer RAM: 4735.7 MB
Summe virtueller Speicher: 9384.27 MB
Verfügbarer virtueller Speicher: 5557.29 MB
==================== Laufwerke ================================
Drive c: (Windows8_OS) (Fixed) (Total:396.09 GB) (Free:312.67 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:50 GB) (Free:46.21 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: FA732346)
Partition: GPT.
==================== Ende von Addition.txt ============================
FRS.txt. Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 10-07-2016 01
durchgeführt von Ronya (Administrator) auf CASSIOPEIA (11-07-2016 15:38:21)
Gestartet von C:\Users\Ronya\desktop
Geladene Profile: Ronya (Verfügbare Profile: Ronya)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe
(MakerBot) C:\Program Files\MakerBot\MakerWare\conveyor-svc.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
(Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Pokki) C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvController.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Pokki) C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(Pokki) C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(Pokki) C:\Users\Ronya\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13656792 2013-10-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-27] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [111976 2013-08-03] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2774256 2013-08-29] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Yoga PhoneCompanion] => C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe [844304 2014-06-19] (Lenovo)
HKLM\...\Run: [AutoStartTransition] => C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [294672 2014-06-19] ()
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [59923440 2014-06-19] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-06-19] (Lenovo(beijing) Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [814608 2016-05-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24105936 2016-06-13] (Dropbox, Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [220704 2015-09-14] (Geek Software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-06-01] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23496872 2016-05-17] (Google)
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\RunOnce: [Application Restart #7] => C:\Users\Ronya\AppData\Local\Pokki\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-cli (Der Dateneintrag hat 571 mehr Zeichen).
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\RunOnce: [Application Restart #3] => C:\Users\Ronya\AppData\Local\Pokki\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-cli (Der Dateneintrag hat 571 mehr Zeichen).
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\MountPoints2: {7bbe51f6-6b95-11e5-826e-7c7a912a625e} - "F:\SETUP.EXE"
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\...\MountPoints2: {7bbe526d-6b95-11e5-826e-7c7a912a625e} - "F:\setup.exe"
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-06-19]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\Users\Ronya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2015-10-11]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Keine Datei)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{28A8504C-056F-4AA6-89FE-B3F12FC64711}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{C154CAEB-1F5F-488C-A165-40324D1B8E9A}: [DhcpNameServer] 150.210.1.3
Internet Explorer:
==================
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage-web.com/?s=lenovo&m=start
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://lenovo13.msn.com/?pc=LCJB
hxxp://www.lenovo.com
HKU\S-1-5-21-2355778515-3562703224-765601422-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2355778515-3562703224-765601422-1001 -> DefaultScope {C2E69A5E-5C00-11E5-8262-7C7A912A625E} URL = hxxps://secure.homepage-web.com/?src=omnibox&partner=lenovo&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2355778515-3562703224-765601422-1001 -> {3B314613-D55C-40F5-BFA0-7FA31A52A4A2} URL =
SearchScopes: HKU\S-1-5-21-2355778515-3562703224-765601422-1001 -> {C2E69A5E-5C00-11E5-8262-7C7A912A625E} URL = hxxps://secure.homepage-web.com/?src=omnibox&partner=lenovo&q={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-23] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-23] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Ronya\AppData\Roaming\Mozilla\Firefox\Profiles\slqkq9bi.default
FF NewTab: www.google.de
FF SelectedSearchEngine: Web Search
FF Homepage: hxxps://homepage-web.com/?s=lenovo&m=start
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-09] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-12] (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Ronya\AppData\Roaming\Mozilla\Firefox\Profiles\slqkq9bi.default\searchplugins\Web Search.xml [2015-10-06]
FF Extension: Avira Browser Safety - C:\Users\Ronya\AppData\Roaming\Mozilla\Firefox\Profiles\slqkq9bi.default\Extensions\abs@avira.com [2016-06-22]
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Ronya\AppData\Roaming\Mozilla\Firefox\Profiles\slqkq9bi.default\Extensions\ich@maltegoetz.de.xpi [2015-12-02]
FF Extension: Avira Safe Search Plus - C:\Users\Ronya\AppData\Roaming\Mozilla\Firefox\Profiles\slqkq9bi.default\Extensions\safesearchplus@avira.com.xpi [2016-06-06]
FF Extension: Adblock Plus - C:\Users\Ronya\AppData\Roaming\Mozilla\Firefox\Profiles\slqkq9bi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [970656 2016-05-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [467016 2016-05-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [467016 2016-05-17] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1435704 2016-05-17] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [302680 2016-06-01] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-26] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-26] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [115632 2013-08-03] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116656 2013-08-03] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148688 2013-08-03] (Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [124880 2013-08-03] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-01] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-09] (Intel Corporation)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-06-19] (Lenovo(beijing) Limited)
R2 LsvUIService; C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe [70416 2014-06-19] (Lenovo)
R2 MakerBot Conveyor Service; C:\Program Files\MakerBot\MakerWare\conveyor-svc.exe [85504 2015-06-05] (MakerBot) [Datei ist nicht signiert]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-17] ()
R2 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-12] (Nitro PDF Software)
R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-02-24] (PointGrab LTD)
R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [512776 2014-02-24] (PointGrab LTD)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe [249872 2014-06-19] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe [328720 2014-06-19] (Lenovo)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [288472 2013-09-14] (Realtek Semiconductor)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [743616 2015-12-02] (@ByELDI) [Datei ist nicht signiert]
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-06-19] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [34576 2014-06-19] (Lenovo)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-01-17] (Intel® Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128664 2016-03-16] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146712 2016-05-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-05-17] (Avira Operations GmbH & Co. KG)
S3 AX88772; C:\Windows\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (ASIX Electronics Corp.)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-09-05] (Motorola Solutions, Inc.)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [114680 2013-08-03] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [287160 2013-08-03] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494272 2013-08-03] (Intel Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-10-05] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [118728 2013-09-18] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-01] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-01] ()
R3 INETMON; C:\WINDOWS\System32\Drivers\INETMON.sys [29088 2013-08-01] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-01] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-08-09] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80160 2015-02-13] (McAfee, Inc.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3434464 2014-03-13] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-29] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1527712 2013-12-31] (Sunplus)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-07-11 15:38 - 2016-07-11 15:38 - 00030395 _____ C:\Users\Ronya\desktop\FRST.txt
2016-07-11 15:37 - 2016-07-11 15:38 - 00000000 ____D C:\FRST
2016-07-11 15:37 - 2016-07-11 15:37 - 02390528 _____ (Farbar) C:\Users\Ronya\desktop\FRST64.exe
2016-07-08 10:40 - 2016-07-08 10:40 - 00000000 ____D C:\Users\Ronya\desktop\RUN Mastermodule
2016-07-08 09:03 - 2016-07-08 09:56 - 00000000 ____D C:\Users\Ronya\desktop\Desmond Tutu
2016-06-29 21:11 - 2016-06-29 21:11 - 00092436 _____ C:\Users\Ronya\desktop\Immatrikulationsbescheinigung-1.pdf
2016-06-29 20:08 - 2016-06-29 20:09 - 00000000 ____D C:\Users\Ronya\Downloads\directcut
2016-06-28 17:02 - 2016-06-30 18:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-25 00:15 - 2016-06-25 00:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-06-17 01:37 - 2016-06-26 21:15 - 00000000 ____D C:\Users\Ronya\desktop\Xayas_voicemap
2016-06-17 01:36 - 2016-06-17 01:36 - 00000511 _____ C:\Users\Ronya\desktop\mp3DirectCut.lnk
2016-06-17 01:34 - 2016-06-17 01:34 - 00292995 _____ C:\Users\Ronya\Downloads\mp3DC222.exe
2016-06-15 01:30 - 2016-04-12 17:46 - 14467584 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2016-06-15 01:30 - 2016-04-12 17:30 - 12879872 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2016-06-15 01:28 - 2016-06-03 19:11 - 00472576 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-06-15 01:28 - 2016-06-03 15:38 - 01413120 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-06-15 01:28 - 2016-06-02 19:51 - 00050352 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-06-15 01:28 - 2016-05-29 17:04 - 01204224 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-06-15 01:28 - 2016-05-29 17:04 - 00569856 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-06-15 01:28 - 2016-05-29 17:04 - 00544256 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-06-15 01:28 - 2016-05-29 17:04 - 00276480 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-06-15 01:28 - 2016-05-29 17:04 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-06-15 01:28 - 2016-05-29 17:04 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-06-15 01:28 - 2016-04-14 17:25 - 02778624 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-06-15 01:28 - 2016-04-14 17:11 - 02464768 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-06-15 01:28 - 2016-01-31 21:17 - 00118624 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2016-06-15 01:28 - 2016-01-31 20:07 - 00110080 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2016-06-15 01:28 - 2016-01-31 19:42 - 03320832 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-06-15 01:28 - 2016-01-31 19:14 - 03607040 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2016-06-14 21:49 - 2016-05-18 07:31 - 00372568 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-06-14 21:49 - 2016-05-18 07:31 - 00315224 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2016-06-14 21:49 - 2016-05-14 01:04 - 00044032 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2016-06-14 21:49 - 2016-05-14 00:19 - 00035840 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2016-06-14 21:48 - 2016-05-14 22:01 - 00363104 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2016-06-14 21:48 - 2016-05-14 22:01 - 00320720 _____ (Microsoft Corporation) C:\windows\SysWOW64\ws2_32.dll
2016-06-14 21:48 - 2016-05-14 01:07 - 00281088 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2016-06-14 21:48 - 2016-05-13 23:58 - 00339456 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2016-06-14 21:48 - 2016-05-13 23:45 - 00802816 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2016-06-14 21:48 - 2016-05-13 23:35 - 00286208 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2016-06-14 21:48 - 2016-05-13 23:26 - 00631808 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2016-06-14 21:47 - 2016-05-09 23:35 - 07075328 _____ (Microsoft Corporation) C:\windows\system32\glcndFilter.dll
2016-06-14 21:47 - 2016-05-09 22:56 - 05270016 _____ (Microsoft Corporation) C:\windows\SysWOW64\glcndFilter.dll
2016-06-14 21:47 - 2016-05-09 22:45 - 07793152 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2016-06-14 21:47 - 2016-05-09 22:23 - 05265920 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2016-06-14 21:45 - 2016-05-19 01:15 - 01379040 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-06-14 21:45 - 2016-05-18 22:35 - 01097216 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2016-06-14 21:45 - 2016-05-12 20:38 - 00135336 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2016-06-14 21:45 - 2016-05-12 19:43 - 00115704 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2016-06-14 21:45 - 2016-05-12 18:17 - 00331776 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2016-06-14 21:45 - 2016-05-12 18:08 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2016-06-14 21:45 - 2016-05-12 18:07 - 01360896 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2016-06-14 21:45 - 2016-05-12 17:59 - 00398848 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2016-06-14 21:45 - 2016-05-12 17:43 - 00291328 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2016-06-14 21:45 - 2016-05-12 17:37 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\FwRemoteSvr.dll
2016-06-14 21:45 - 2016-05-06 17:45 - 00748544 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2016-06-14 21:45 - 2016-05-06 17:23 - 00503808 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2016-06-14 21:43 - 2016-05-16 23:13 - 00563016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2016-06-14 21:43 - 2016-05-16 23:13 - 00397224 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2016-06-14 21:43 - 2016-05-16 23:13 - 00340872 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2016-06-14 21:43 - 2016-05-16 23:13 - 00178008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-06-14 21:43 - 2016-05-14 01:09 - 04169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-06-14 21:43 - 2016-05-14 01:07 - 00675328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-06-14 21:43 - 2016-05-14 01:07 - 00416768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-06-14 21:43 - 2016-05-14 01:06 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-06-14 21:43 - 2016-05-14 00:34 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-06-14 21:43 - 2016-05-13 23:58 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-06-14 21:42 - 2016-05-21 19:28 - 25802752 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-06-14 21:42 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-06-14 21:42 - 2016-05-21 00:09 - 00572416 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-06-14 21:42 - 2016-05-21 00:08 - 02895360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-06-14 21:42 - 2016-05-21 00:02 - 06051328 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-06-14 21:42 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-06-14 21:42 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2016-06-14 21:42 - 2016-05-20 23:54 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-06-14 21:42 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-06-14 21:42 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-06-14 21:42 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-06-14 21:42 - 2016-05-20 23:27 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-06-14 21:42 - 2016-05-20 23:25 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-06-14 21:42 - 2016-05-20 23:25 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2016-06-14 21:42 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-06-14 21:42 - 2016-05-20 23:21 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2016-06-14 21:42 - 2016-05-20 23:19 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-06-14 21:42 - 2016-05-20 23:16 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-06-14 21:42 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-06-14 21:42 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2016-06-14 21:42 - 2016-05-20 23:11 - 15420928 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-06-14 21:42 - 2016-05-20 23:11 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-06-14 21:42 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-06-14 21:42 - 2016-05-20 23:09 - 00379392 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-06-14 21:42 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-06-14 21:42 - 2016-05-20 23:08 - 00806400 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-06-14 21:42 - 2016-05-20 23:06 - 02131968 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-06-14 21:42 - 2016-05-20 22:46 - 02597888 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-06-14 21:42 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-06-14 21:42 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-06-14 21:42 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-06-14 21:42 - 2016-05-20 22:34 - 01544192 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-06-14 21:42 - 2016-05-20 22:23 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-07-11 15:14 - 2016-06-03 14:03 - 00001140 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-11 15:03 - 2015-08-26 16:58 - 00001234 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-07-11 14:50 - 2015-08-19 16:13 - 00000000 ____D C:\Users\Ronya\AppData\Local\SweetLabs App Platform
2016-07-11 14:39 - 2016-01-21 21:59 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-07-11 14:16 - 2016-04-09 00:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-07-11 14:14 - 2016-06-03 14:03 - 00001136 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-11 08:50 - 2014-06-20 08:04 - 00772278 _____ C:\windows\system32\perfh007.dat
2016-07-11 08:50 - 2014-06-20 08:04 - 00162264 _____ C:\windows\system32\perfc007.dat
2016-07-11 08:50 - 2013-10-07 20:27 - 01780340 _____ C:\windows\system32\PerfStringBackup.INI
2016-07-11 08:50 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2016-07-11 08:49 - 2016-06-03 14:06 - 00000000 ___RD C:\Users\Ronya\Google Drive
2016-07-11 08:49 - 2015-12-22 20:10 - 00000348 _____ C:\windows\Tasks\GlaryInitialize.job
2016-07-11 08:49 - 2015-08-26 18:01 - 00000000 ___RD C:\Users\Ronya\Dropbox
2016-07-11 08:49 - 2015-08-26 16:58 - 00001230 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-07-11 00:33 - 2015-08-22 00:47 - 00000000 ____D C:\Users\Ronya\AppData\Local\ClassicShell
2016-07-11 00:18 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-07-11 00:17 - 2014-06-19 22:38 - 00020992 _____ C:\windows\system32\VfService.trf
2016-07-08 10:41 - 2015-08-19 16:13 - 00000000 ____D C:\Users\Ronya
2016-07-08 10:36 - 2016-02-02 11:53 - 00000000 ____D C:\Users\Ronya\desktop\Ronya Bilder
2016-07-08 10:29 - 2016-02-19 01:33 - 00000000 ____D C:\Users\Ronya\desktop\ASA SÜD_Nord
2016-07-08 10:26 - 2016-01-09 00:27 - 00000000 ____D C:\Users\Ronya\desktop\Evernote
2016-07-08 10:14 - 2016-03-16 16:48 - 00000000 ____D C:\Users\Ronya\desktop\CARMA_2016
2016-07-08 10:13 - 2015-11-26 16:06 - 00000000 ____D C:\Users\Ronya\desktop\CARMA 2015
2016-07-08 10:09 - 2015-08-19 16:13 - 00000000 ____D C:\Users\Ronya\AppData\Local\Packages
2016-07-07 19:51 - 2015-11-30 15:43 - 01064960 _____ C:\Users\Ronya\Downloads\PICTOSELECTORDATABASE.FDB
2016-07-07 19:51 - 2015-11-30 15:43 - 00000000 ____D C:\ProgramData\firebird
2016-07-07 17:00 - 2015-11-30 15:44 - 00000000 ____D C:\Users\Ronya\AppData\Roaming\Eendsoft
2016-07-06 19:30 - 2015-12-22 20:23 - 00000000 ____D C:\Users\Ronya\AppData\Roaming\vlc
2016-07-05 09:16 - 2015-08-20 20:58 - 00000000 ____D C:\Users\Ronya\AppData\Roaming\Skype
2016-07-04 17:58 - 2015-08-20 20:58 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-04 17:58 - 2015-08-20 20:57 - 00000000 ____D C:\ProgramData\Skype
2016-07-03 19:25 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\BBI
2016-07-03 18:03 - 2016-01-28 23:11 - 00000000 ____D C:\Users\Ronya\desktop\Arbeitszeugnis
2016-06-30 21:48 - 2016-01-28 23:08 - 00000000 ____D C:\Users\Ronya\desktop\BNE_Umweltbildung
2016-06-30 18:49 - 2015-08-19 16:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-28 17:01 - 2015-08-19 16:18 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2355778515-3562703224-765601422-1001
2016-06-28 12:51 - 2015-08-25 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-06-28 12:51 - 2014-06-19 22:18 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-27 19:26 - 2015-08-27 18:56 - 00000000 ____D C:\Users\Ronya\AppData\Local\CrashDumps
2016-06-25 00:15 - 2015-08-26 16:58 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-06-24 14:19 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\NDF
2016-06-18 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2016-06-18 15:07 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2016-06-17 01:39 - 2016-01-21 21:59 - 00003772 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-06-16 09:09 - 2013-08-22 16:44 - 00516912 _____ C:\windows\system32\FNTCACHE.DAT
2016-06-16 09:08 - 2015-08-26 14:52 - 00000000 ____D C:\windows\system32\appraiser
2016-06-16 09:08 - 2013-08-22 17:36 - 00000000 ___RD C:\windows\ToastData
2016-06-15 02:55 - 2015-08-21 11:14 - 00000000 ____D C:\windows\system32\MRT
2016-06-15 02:50 - 2015-08-21 11:14 - 142482544 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-06-14 19:13 - 2013-08-22 17:38 - 00828408 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-06-14 19:13 - 2013-08-22 17:38 - 00176632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-13 23:22 - 2015-08-28 10:48 - 00000000 ____D C:\Users\Ronya\AppData\Roaming\Nitro PDF
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-01-18 21:15 - 2016-01-18 21:15 - 0007605 _____ () C:\Users\Ronya\AppData\Local\Resmon.ResmonCfg
2014-06-19 22:16 - 2014-06-19 22:16 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Ronya\AppData\Local\Temp\avgnt.exe
C:\Users\Ronya\AppData\Local\Temp\oct2C7B.tmp.exe
C:\Users\Ronya\AppData\Local\Temp\oct9452.tmp.exe
C:\Users\Ronya\AppData\Local\Temp\ose00000.exe
C:\Users\Ronya\AppData\Local\Temp\ose00001.exe
C:\Users\Ronya\AppData\Local\Temp\ose00003.exe
C:\Users\Ronya\AppData\Local\Temp\SkypeSetup.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll => Datei ist digital signiert
C:\windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-07-08 08:37
==================== Ende von FRST.txt ============================
Ich hoffe, ich habe bis hierhin alles richtig gemacht. Bei dem Avira Scan kamen auch gar keine Funde raus. Da ich auch mit dem Code- Einfügen der Logs zu viele Zeichen habe mache ich den AVira Logfile separat. Ich hoffe das ist in Ordnung Liebe Grüße, Ronyafee |
| Themen zu Das Arbeiten in google drive ist sehr langsam |
| antivirus, arbeit google drive langsam, avg, avira, computer, device driver, failed, firefox, flash player, google, helper, home, internet, internet explorer, langsam, logfile, programm, proxy, prozesse, registry, rundll, scan, services.exe, software, svchost.exe, tcp, udp |
Baum-Darstellung