Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus

Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus


Log-Analyse und Auswertung: Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 28.08.2016, 10:43   #1
powerzug
 
Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus - Standard

Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus


Hallo zusammen ich habe den Verdacht, dass ich von einem Trojaner/Virus/Malware befallen bin.
Der Computer reagiert allerdings normal, bei allen Aktivitäten. Auch ist mein Computer nicht langsamer geworden, ausser bei Downloads hab ich das Gefühl es könnte schneller sein.

Code:
ATTFilter
==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Sirrix AG) C:\Program Files (x86)\Sirrix AG\BitBox\bin\BitBoxService.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
() C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Samsung Electronics) C:\ProgramData\Samsung Apps\Portable SSD\Samsung Portable SSD Daemon.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Ashampoo Development GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 14\LiveTuner2.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe
(Yahoo! Inc) C:\Users\hochs\AppData\Local\yahoomessenger\app-0.8.267\Yahoo Messenger.exe
(Yahoo! Inc) C:\Users\hochs\AppData\Local\yahoomessenger\app-0.8.267\Yahoo Messenger.exe
(Yahoo! Inc) C:\Users\hochs\AppData\Local\yahoomessenger\app-0.8.267\Yahoo Messenger.exe
(FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files (x86)\TraXEx\TraXEx.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch.exe
(Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(AVM Software Inc.) C:\Program Files (x86)\Paltalk Messenger\paltalk.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(AVM Software Inc.) C:\Program Files (x86)\Paltalk Messenger\paltalk.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Mirko Böer) C:\Program Files (x86)\RouterControl\RouterControl.exe
() C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
(CounterPath) C:\Program Files (x86)\CounterPath\Bria 4\Bria4.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(The CefSharp Authors) C:\Program Files (x86)\CounterPath\Bria 4\CefSharp.BrowserSubprocess.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
(AVM Software Inc.) C:\Program Files (x86)\Paltalk Messenger\paltalk.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
() C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 14\LiveTunerService.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(EJIE Technology) C:\Program Files (x86)\Clover\clover.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350232 2016-06-16] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [586352 2016-08-21] ()
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [615144 2016-03-09] (Samsung Electronics Co.,Ltd)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-26] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated)
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 14\LiveTuner2.exe [4164944 2016-07-01] (Ashampoo Development GmbH & Co. KG)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4657312 2016-08-21] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [PowerDVD16Agent] => C:\Program Files (x86)\CyberLink\PowerDVD16\PowerDVD16Agent.exe [525352 2016-05-13] (CyberLink Corp.)
HKLM-x32\...\Run: [Ad Muncher] => C:\Program Files (x86)\Ad Muncher\AdMunch.exe [560760 2016-08-06] (Murray Hurps Software Pty Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\jv16 PowerTools X\StartupOptimizer.exe "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-08-10] ()
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2086240 2015-04-28] (Wondershare)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498720 2016-06-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425352 2016-06-03] (Acronis International GmbH)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2631120 2016-07-28] (Malwarebytes Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] (Atheros Communications)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1084688 2016-04-21] (Apple Inc.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\jv16 PowerTools X\StartupOptimizer.exe "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [HP Officejet 6700 (NET)] => C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe [4535192 2016-06-09] ()
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [Bria 4] => C:\Program Files (x86)\CounterPath\Bria 4\Bria4.exe [4734344 2016-07-11] (CounterPath)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [RouterControl] => C:\Program Files (x86)\RouterControl\ROUTERCONTROL.EXE [3449344 2009-05-19] (Mirko Böer)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [Yahoo Messenger Updater] => C:\Users\hochs\AppData\Roaming\Yahoo Messenger\YMUpdater\YMUpdater.exe [115144 2016-08-18] (Yahoo!, Inc.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [Yahoo Messenger] => C:\Users\hochs\AppData\Local\yahoomessenger\app-0.8.267\Yahoo Messenger.exe [61315088 2016-08-18] (Yahoo! Inc)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [Free Download Manager] => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe [9647104 2016-08-23] (FreeDownloadManager.org)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3966064 2016-08-05] (Tonec Inc.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\MountPoints2: {3aefeae5-1f0f-11e6-9b9c-806e6f6e6963} - "E:\pcwstart.exe" 
HKU\S-1-5-21-2615813048-3284018108-3599952075-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [   IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2016-08-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2016-08-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2016-08-09] (Acronis)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TraXEx 7.0.lnk [2016-08-17]
ShortcutTarget: TraXEx 7.0.lnk -> C:\Program Files (x86)\TraXEx\TraXEx.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-08-14] ()
Startup: C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopVideoPlayer.lnk [2016-08-20]
ShortcutTarget: DesktopVideoPlayer.lnk -> C:\Users\hochs\AppData\Local\vghd\bin\vghd.exe (Keine Datei)
Startup: C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PalTalk.lnk [2016-08-06]
ShortcutTarget: PalTalk.lnk -> C:\Program Files (x86)\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{312630d7-a3ea-4a35-adc2-e36214d724f3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{81c71945-0989-48f6-948e-0f58b3f79291}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9758ba7f-718c-4803-9b3d-86710972f7a9}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-07-13] (Internet Download Manager, Tonec Inc.)
BHO: Kein Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Keine Datei
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-08-06] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-08-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-06] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-07-13] (Internet Download Manager, Tonec Inc.)
BHO-x32: Kein Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Keine Datei
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-06] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-08-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-06] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO-x32: Kein Name -> {FFFFFEF0-5B30-21D4-945D-000000000000} -> C:\Program Files (x86)\Star Downloader\SDIEInt.dll [2006-02-26] ()
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2615813048-3284018108-3599952075-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-27] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-27] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-27] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-27] (Microsoft Corporation)

Edge: 
======
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_1.0.5.0_neutral__c1wakc4j0nefm [2016-08-07]

FireFox:
========
FF ProfilePath: C:\Users\hochs\AppData\Roaming\Mozilla\Firefox\Profiles\52oxieul.default
FF Homepage: hxxps://www.startpage.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-13] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-06] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-08-26] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-06] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-08-26] (LastPass)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-08-27] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-08-27] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-08-20]
FF Extension: (LastPass) - C:\Users\hochs\AppData\Roaming\Mozilla\Firefox\Profiles\52oxieul.default\extensions\support@lastpass.com [2016-08-26]
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-08-03]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\hochs\AppData\Roaming\Mozilla\Firefox\Profiles\52oxieul.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2016-08-26]
FF Extension: (Adblock Plus) - C:\Users\hochs\AppData\Roaming\Mozilla\Firefox\Profiles\52oxieul.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-08-26]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-05-12] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\hochs\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\hochs\AppData\Roaming\IDM\idmmzcc5 [2016-08-28] [ist nicht signiert]
FF HKU\S-1-5-21-2615813048-3284018108-3599952075-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi

Chrome: 
=======
CHR HomePage: Default -> hxxps://startseite.com/
CHR DefaultSearchURL: Default -> hxxps://www.startpage.com/do/dsearch?query={searchTerms}&cat=web&pl=opensearch&language=deutsch
CHR DefaultSearchKeyword: Default -> https://startpage.com
CHR Profile: C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Free Download Manager Chrome extension) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2016-08-28]
CHR Extension: (Google Docs) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-15]
CHR Extension: (Google Drive) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-15]
CHR Extension: (WhatsChrome) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgkodfmeijboinjdegggmkbkjfiagaan [2016-08-07]
CHR Extension: (YouTube) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-15]
CHR Extension: (Porno-Blocker und Kindersicherung) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\cenggogncmgefhljmbhbjgfbfjbmpkml [2016-08-15]
CHR Extension: (Adobe Acrobat) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-08-20]
CHR Extension: (Google Docs Offline) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-15]
CHR Extension: (AdBlock) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-26]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2016-08-27]
CHR Extension: (Erfassen Webseite Screenshot - FireShot) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2016-06-23]
CHR Extension: (Chrono Download Manager) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\mciiogijehkdemklbdcbfkefimifhecn [2016-08-28]
CHR Extension: (IDM Integration Module) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-08-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-15]
CHR Extension: (Google Mail) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-15]
CHR Extension: (Chrome Media Router) - C:\Users\hochs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-20]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-08-05]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2016-06-23]
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-08-05]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1277688 2016-08-21] ()
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6086744 2016-08-25] ()
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159320 2016-08-22] (Adobe Systems, Incorporated)
R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
R2 BitBoxService; C:\Program Files (x86)\Sirrix AG\BitBox\bin\BitBoxService.exe [738304 2016-06-20] (Sirrix AG) [Datei ist nicht signiert]
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [90112 2016-07-25] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2981056 2016-08-11] (Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [391656 2016-07-22] (Digital Wave Ltd.)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [135496 2016-06-11] (SurfRight B.V.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
S3 m2UpdateService_F8F8565687B043BDB2BA3B7982C22B5E; C:\Program Files (x86)\Swisscom\My Swisscom Assistant\m2UpdateService.exe [8331360 2015-11-26] (Swisscom (Schweiz) AG)
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (Visicom Media Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [750032 2016-07-28] (Malwarebytes Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4692840 2016-08-15] (Acronis International GmbH)
R2 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [7717528 2016-07-18] (Acronis International GmbH)
R2 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1516920 2016-08-21] ()
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1310448 2016-08-14] (Overwolf LTD)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [950200 2016-05-24] (Bitdefender)
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [623848 2016-03-09] (Samsung Electronics Co.,Ltd)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-17] (Microsoft Corporation)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [9729272 2016-08-11] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7248144 2016-08-08] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-07-01] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1693104 2016-07-01] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 14\LiveTunerService.exe [257872 2016-07-01] ()
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\TunesGo Retro\DriverInstall.exe [116368 2016-04-16] (Wondershare)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
S3 athr; C:\Windows\System32\drivers\athw10x.sys [4316456 2016-06-16] (Qualcomm Atheros Communications, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1603264 2016-08-22] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [850464 2016-08-22] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-07-01] (BitDefender LLC)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-08-09] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-08-09] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [75360 2016-08-04] ()
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [375136 2016-08-25] (Acronis International GmbH)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [182936 2015-12-16] (BitDefender LLC)
R0 ignis; C:\Windows\system32\DRIVERS\ignis.sys [299816 2016-07-01] (Bitdefender)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 14\LiveTuner64.sys [14320 2014-03-20] ()
R3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [49272 2014-12-29] (Visicom Media Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-28] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
S3 prl_virtual_hid; C:\Windows\System32\drivers\prl_virtual_hid.sys [19688 2015-09-18] ()
R1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [34608 2016-06-09] (Audials AG)
S3 taphss6; C:\Windows\System32\drivers\taphss6.sys [42064 2016-08-15] (Anchorfree Inc.)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1267544 2016-08-25] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [212320 2016-08-25] (Acronis International GmbH)
S3 tnd; C:\Windows\system32\DRIVERS\tnd.sys [687968 2016-08-25] (Acronis International GmbH)
R3 TotRec8; C:\WINDOWS\system32\drivers\TotRec8.sys [125568 2015-10-20] (High Criteria inc.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [520032 2016-07-01] (BitDefender S.R.L.)
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [119712 2016-04-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [182480 2016-04-29] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [135768 2016-04-28] (Oracle Corporation)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331104 2016-08-25] (Acronis International GmbH)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R2 {41E8078B-96D9-42DC-8789-A1CF102CD880}; C:\Program Files (x86)\CyberLink\PowerDVD16\Common\NavFilter\000.fcl [29624 2016-03-28] (CyberLink Corp.)
U3 DfSdkS; kein ImagePath
S3 NPF; system32\drivers\NPF.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-08-28 11:25 - 2016-08-28 11:35 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Adobe
2016-08-28 11:19 - 2016-08-28 11:19 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Atheros
2016-08-28 11:10 - 2016-08-28 11:19 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Bitdefender
2016-08-28 11:05 - 2016-08-28 11:06 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2016-08-28 11:05 - 2016-08-28 11:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2016-08-28 11:05 - 2016-08-28 11:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2016-08-28 10:48 - 2016-08-28 11:37 - 00000000 ____D C:\FRST
2016-08-28 10:13 - 2016-08-28 10:14 - 157286400 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part6.rar
2016-08-28 10:13 - 2016-08-28 10:14 - 157286400 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part5.rar
2016-08-28 10:13 - 2016-08-28 10:14 - 157286400 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part4.rar
2016-08-28 10:13 - 2016-08-28 10:14 - 157286400 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part3.rar
2016-08-28 10:13 - 2016-08-28 10:13 - 54107190 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part7.rar
2016-08-28 10:12 - 2016-08-28 10:14 - 157286400 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part1.rar
2016-08-28 10:12 - 2016-08-28 10:13 - 157286400 _____ C:\Users\hochs\Downloads\CAAINUGENVGANCCRG.part2.rar
2016-08-28 10:07 - 2016-08-28 10:07 - 00002756 _____ C:\Users\hochs\Downloads\333179792d081560db7da4895d27228227acbdda.dlc
2016-08-28 09:58 - 2016-08-28 09:58 - 00001347 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser in the Box.lnk
2016-08-28 09:58 - 2016-08-28 09:58 - 00001335 _____ C:\Users\Public\Desktop\Browser in the Box.lnk
2016-08-28 09:58 - 2016-08-28 09:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser in the Box
2016-08-28 09:57 - 2016-08-28 09:57 - 00000000 ____D C:\ProgramData\Sirrix AG
2016-08-28 09:57 - 2016-08-28 09:57 - 00000000 ____D C:\Program Files (x86)\Sirrix AG
2016-08-28 09:55 - 2016-08-28 09:55 - 00000000 ____D C:\Program Files\Oracle
2016-08-28 09:46 - 2016-08-14 16:09 - 00485873 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20160828-094649.backup
2016-08-28 09:41 - 2016-08-28 09:41 - 00000000 ____D C:\Program Files\Common Files\AV
2016-08-28 09:41 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2016-08-28 09:39 - 2016-08-28 09:47 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-28 09:39 - 2016-08-28 09:41 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-28 09:39 - 2016-08-28 09:39 - 00001475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-08-28 09:39 - 2016-08-28 09:39 - 00001463 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-08-28 09:39 - 2016-08-28 09:39 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-08-28 09:39 - 2016-08-28 09:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-08-28 09:39 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-08-28 09:30 - 2016-08-28 09:30 - 00344928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-28 02:26 - 2016-08-28 02:29 - 00000000 ____D C:\Users\hochs\Downloads\home_made_pro_am_pussy_4_720p.mp4 - hd-area.org
2016-08-28 02:23 - 2016-08-28 02:23 - 00002992 _____ C:\Users\hochs\Downloads\dad82ff837cf7d22a95974c8353b6eeba7879229.dlc
2016-08-28 02:23 - 2016-08-28 02:23 - 00002992 _____ C:\Users\hochs\Downloads\dad82ff837cf7d22a95974c8353b6eeba7879229 (3).dlc
2016-08-28 02:23 - 2016-08-28 02:23 - 00002992 _____ C:\Users\hochs\Downloads\dad82ff837cf7d22a95974c8353b6eeba7879229 (2).dlc
2016-08-28 02:23 - 2016-08-28 02:23 - 00002992 _____ C:\Users\hochs\Downloads\dad82ff837cf7d22a95974c8353b6eeba7879229 (1).dlc
2016-08-28 02:22 - 2016-08-28 02:22 - 00013755 _____ C:\Users\hochs\Downloads\helper.html
2016-08-28 01:41 - 2016-08-28 11:28 - 00000000 ____D C:\Users\hochs\AppData\Roaming\IDM
2016-08-28 01:41 - 2016-08-28 09:30 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2016-08-28 01:41 - 2016-08-28 02:11 - 00000000 ____D C:\Users\hochs\Downloads\Compressed
2016-08-28 01:41 - 2016-08-28 01:44 - 00001093 _____ C:\Users\hochs\Desktop\Internet Download Manager.lnk
2016-08-28 01:41 - 2016-08-28 01:41 - 00000000 ____D C:\Users\hochs\Downloads\Video
2016-08-28 01:41 - 2016-08-28 01:41 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-08-28 01:41 - 2016-08-28 01:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-08-28 01:41 - 2016-08-28 01:41 - 00000000 ____D C:\ProgramData\IDM
2016-08-28 01:41 - 2016-08-28 01:41 - 00000000 _____ C:\Users\hochs\Downloads\Download.htm
2016-08-28 01:39 - 2016-08-28 01:41 - 06895345 _____ (Tonec Inc.) C:\Users\hochs\Downloads\IDM_Pre.exe
2016-08-28 01:39 - 2016-08-28 01:39 - 06895345 _____ (Tonec Inc.) C:\Users\hochs\Downloads\IDM_Pre (1).exe
2016-08-28 01:38 - 2016-08-28 01:38 - 00000000 _____ C:\Users\hochs\Downloads\da9e.tmp
2016-08-28 01:35 - 2016-08-28 01:35 - 00000000 ____D C:\Users\hochs\Downloads\Internet Download Manager 6 25 Build 25 Pre-Activated
2016-08-28 01:29 - 2016-08-28 01:29 - 00000196 _____ C:\Users\hochs\Downloads\a6dbb02e-c968-40a7-899f-d43a357ae8b4.htm
2016-08-28 01:26 - 2016-08-28 01:26 - 03875576 _____ C:\Users\hochs\Downloads\Nicht bestätigt 790328.crdownload
2016-08-28 01:26 - 2016-08-28 01:26 - 03875576 _____ C:\Users\hochs\Downloads\Nicht bestätigt 72968.crdownload
2016-08-28 01:25 - 2016-08-28 01:25 - 03875576 _____ C:\Users\hochs\Downloads\Nicht bestätigt 426776.crdownload
2016-08-28 01:20 - 2016-08-28 01:20 - 00004440 _____ C:\Users\hochs\Downloads\e7b3c70dacfd72a5689c890d8fbb75d688f8b75d.dlc
2016-08-28 01:20 - 2016-08-28 01:20 - 00004440 _____ C:\Users\hochs\Downloads\e7b3c70dacfd72a5689c890d8fbb75d688f8b75d (3).dlc
2016-08-28 01:20 - 2016-08-28 01:20 - 00004440 _____ C:\Users\hochs\Downloads\e7b3c70dacfd72a5689c890d8fbb75d688f8b75d (2).dlc
2016-08-28 01:20 - 2016-08-28 01:20 - 00004440 _____ C:\Users\hochs\Downloads\e7b3c70dacfd72a5689c890d8fbb75d688f8b75d (1).dlc
2016-08-28 01:15 - 2016-08-28 11:24 - 00000000 ____D C:\Users\hochs\AppData\Local\Free Download Manager
2016-08-28 01:15 - 2016-08-28 01:15 - 00001168 _____ C:\Users\Public\Desktop\Free Download Manager 5.lnk
2016-08-28 01:15 - 2016-08-28 01:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
2016-08-28 01:15 - 2016-08-28 01:15 - 00000000 ____D C:\Program Files\FreeDownloadManager.ORG
2016-08-27 20:41 - 2016-08-27 20:42 - 00000000 ____D C:\Users\hochs\Downloads\Cuban.Fury.Echte.Maenner.tanzen.German.2014.AC3.BDRip.x264-FRACTAL
2016-08-27 20:39 - 2016-08-27 20:39 - 00003480 _____ C:\Users\hochs\Downloads\5b1f9ae276247c172704601f80fd4f7e6cdb3388 (1).dlc
2016-08-27 20:38 - 2016-08-27 20:38 - 00003480 _____ C:\Users\hochs\Downloads\5b1f9ae276247c172704601f80fd4f7e6cdb3388.dlc
2016-08-27 20:37 - 2016-08-27 20:37 - 00001918 _____ C:\Users\Public\Desktop\Star Downloader.lnk
2016-08-27 20:37 - 2016-08-27 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Downloader
2016-08-27 20:37 - 2016-08-27 20:37 - 00000000 ____D C:\Program Files (x86)\Star Downloader
2016-08-27 20:36 - 2016-08-27 20:37 - 02452082 _____ (Star Downloader) C:\Users\hochs\Downloads\sdfree.exe
2016-08-27 20:32 - 2016-08-27 20:33 - 00000000 ____D C:\Users\hochs\Downloads\Star.Trek.Beyond.2016.German.TS.V2.MD.x264-MULTiPLEX - filecrypt.cc
2016-08-27 20:11 - 2016-08-27 20:11 - 00001348 _____ C:\Users\hochs\Desktop\4K Video Downloader.lnk
2016-08-27 20:11 - 2016-08-27 20:11 - 00000000 ____D C:\Users\hochs\AppData\Local\4kdownload.com
2016-08-27 20:11 - 2016-08-27 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2016-08-27 20:11 - 2016-08-27 20:11 - 00000000 ____D C:\Program Files (x86)\4KDownload
2016-08-27 20:10 - 2016-08-27 20:11 - 31335352 _____ (Open Media LLC ) C:\Users\hochs\Downloads\4kvideodownloader_4.1.exe
2016-08-27 20:04 - 2016-08-27 20:04 - 00003113 _____ C:\Users\hochs\Downloads\ardmediathek.host
2016-08-27 19:52 - 2016-08-27 19:52 - 00003149 _____ C:\Users\hochs\Downloads\zdfmediathek.host
2016-08-27 11:56 - 2016-08-27 11:59 - 00000000 ____D C:\Users\hochs\Downloads\The.Mechanic.2.Resurrection.2016.TS.MD.German.x264-PS - filecrypt.cc
2016-08-27 09:14 - 2016-08-27 09:14 - 00000838 _____ C:\Users\hochs\Documents\psr7.lic
2016-08-27 09:13 - 2016-08-27 09:55 - 00548864 _____ C:\Users\hochs\Documents\Passwort.ps7
2016-08-27 09:07 - 2016-08-27 09:07 - 00001214 _____ C:\Users\Public\Desktop\Password Safe 7.lnk
2016-08-27 09:07 - 2016-08-27 09:07 - 00000000 ____D C:\Users\hochs\Downloads\Bitdefender Safepay
2016-08-27 09:07 - 2016-08-27 09:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Safe and Repository 7
2016-08-27 09:07 - 2016-08-27 09:07 - 00000000 ____D C:\ProgramData\InstallMate
2016-08-27 09:07 - 2016-08-27 09:07 - 00000000 ____D C:\Program Files (x86)\Password Safe and Repository 7
2016-08-27 08:47 - 2016-08-27 08:47 - 00418464 _____ C:\Users\hochs\Downloads\SecureSafe-Recovery-Code.pdf
2016-08-27 08:08 - 2016-08-27 08:08 - 00001542 _____ C:\Users\Public\Desktop\Ein-Klick-Optimierung (WO14).lnk
2016-08-27 08:08 - 2016-08-27 08:08 - 00001314 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 14.lnk
2016-08-27 08:08 - 2016-08-27 08:08 - 00000214 _____ C:\Users\Public\Desktop\My Software Deals.url
2016-08-27 08:08 - 2016-08-27 08:08 - 00000000 ____D C:\ProgramData\Ashampoo
2016-08-27 08:08 - 2009-08-24 22:13 - 00034304 _____ (mst software GmbH, Germany) C:\WINDOWS\system32\DfSdkBt.exe
2016-08-27 08:07 - 2016-08-27 08:08 - 28473112 _____ (Ashampoo GmbH & Co. KG ) C:\Users\hochs\Downloads\ashampoo_winoptimizer_14_e14.00.02_sm.exe
2016-08-27 05:34 - 2015-11-11 13:56 - 00043618 ____N C:\Users\hochs\Downloads\qualcomm_atheros_ar8171_8175_pci_e_gigabit_ethernet_controller_ndis_630.dll
2016-08-27 05:34 - 2015-11-11 13:56 - 00029361 ____N C:\Users\hochs\Downloads\manual_installation_guidequalcomm_atheros_ar8171_8175_pci_e_gigabit_ethernet_controller_ndis_630.pdf
2016-08-27 05:34 - 2015-11-11 13:56 - 00005159 ____N C:\Users\hochs\Downloads\qualcomm_atheros_ar8171_8175_pci_e_gigabit_ethernet_controller_ndis_6301.sys
2016-08-27 05:34 - 2015-11-11 13:56 - 00003638 ____N C:\Users\hochs\Downloads\READ-ME.txt
2016-08-27 05:34 - 2015-11-11 13:56 - 00001474 ____N C:\Users\hochs\Downloads\qualcomm_atheros_ar8171_8175_pci_e_gigabit_ethernet_controller_ndis_630.cat
2016-08-27 05:33 - 2016-08-27 05:33 - 00031404 _____ C:\Users\hochs\Downloads\qualcomm_atheros_ar8171_8175_pci_e_gigabit_ethernet_controller_ndis_630_driver.zip
2016-08-27 04:55 - 2016-08-27 04:55 - 00981592 _____ (SlimWare Utilities, Inc.) C:\Users\hochs\Downloads\SlimDrivers-setup.exe
2016-08-27 04:40 - 2016-08-27 04:50 - 00000000 ____D C:\Users\hochs\Downloads\lhd-hwahrheit-1080p.mkv - hd-area.org
2016-08-27 04:21 - 2016-08-27 04:49 - 00000000 ____D C:\Users\hochs\Downloads\Nichts.mehr.wie.vorher.German.2013.AC3.DVDRip.x264-iMPERiUM - filecrypt.cc
2016-08-26 18:00 - 2016-08-27 04:02 - 00000000 ____D C:\Users\hochs\Downloads\Wie.Klaut.Man.Eine.Million.German.DL.1966.HDTV.720p.x264.AC3-msd - hd-area.org
2016-08-26 17:50 - 2016-08-26 17:54 - 00000000 ____D C:\Users\hochs\Downloads\Dafranosuri
2016-08-26 16:31 - 2016-08-26 16:31 - 00001158 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
2016-08-26 16:31 - 2016-08-26 16:31 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2016-08-26 16:31 - 2016-08-26 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2016-08-26 16:30 - 2016-08-26 16:31 - 00000000 ____D C:\Program Files (x86)\LastPass
2016-08-26 16:03 - 2016-08-28 11:28 - 00000000 ____D C:\Users\hochs\AppData\LocalLow\LastPass
2016-08-26 15:57 - 2016-08-26 15:57 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Mozilla
2016-08-26 11:43 - 2016-08-26 15:54 - 00000000 ____D C:\Users\hochs\Downloads\Crouching.Tiger.Hidden.Dragon.Sword.of.Destiny.2016.German.Dubbed.DL.2160p.WEB-DL.x264-NIMA4K
2016-08-25 19:45 - 2016-08-26 11:41 - 00000000 ____D C:\Users\hochs\Downloads\Made.in.France.2015.German.1080p.BluRay.x264-ROOR - filecrypt.cc
2016-08-25 18:26 - 2016-08-25 18:26 - 00331104 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\virtual_file2355.sys
2016-08-25 18:26 - 2016-08-25 18:26 - 00181088 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\fltsrv2263.sys
2016-08-25 18:26 - 2016-08-25 18:26 - 00000000 ____D C:\ProgramData\Acronis Mobile Backup Data
2016-08-24 04:24 - 2016-08-24 04:24 - 00142170 _____ C:\Users\hochs\Documents\Invoice_9636875_3300331493042016.pdf
2016-08-24 04:23 - 2016-08-24 04:23 - 00071918 _____ C:\Users\hochs\Documents\Details_9636875_3300765375082016_10000149531615.pdf
2016-08-24 04:17 - 2016-08-24 04:27 - 204759040 _____ C:\Users\hochs\Documents\DSM_DS214+_8451.pat
2016-08-23 19:03 - 2016-08-24 20:04 - 00000000 ____D C:\Users\hochs\Downloads\xan-The.Ardennes-avc.mkv - hd-area.org
2016-08-23 18:53 - 2016-08-24 20:03 - 00000000 ____D C:\Users\hochs\Downloads\kilotwobravo180.mkv - hd-area.org
2016-08-23 18:47 - 2016-08-23 18:51 - 00000000 ____D C:\Users\hochs\Downloads\The.Confirmation.2016.German.AC3.DVDRip.x264-MULTiPLEX - filecrypt.cc
2016-08-23 18:31 - 2016-08-23 18:31 - 00000000 ____D C:\Users\hochs\AppData\Local\Deployment
2016-08-22 20:18 - 2016-08-22 20:32 - 00000000 ____D C:\Users\hochs\Downloads\Riff.Piraten.1939.German.DL.1080p.BluRay.x264-CONTRiBUTiON - filecrypt.cc
2016-08-22 19:57 - 2016-08-22 19:57 - 00002126 _____ C:\Users\Public\Desktop\Google Slides.lnk
2016-08-22 19:57 - 2016-08-22 19:57 - 00002124 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2016-08-22 19:57 - 2016-08-22 19:57 - 00002114 _____ C:\Users\Public\Desktop\Google Docs.lnk
2016-08-22 19:57 - 2016-08-22 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-08-22 19:32 - 2016-08-22 19:32 - 00000000 ____D C:\Snort
2016-08-22 19:30 - 2016-08-22 19:30 - 00000000 ____D C:\ProgramData\AVAST Software
2016-08-21 16:07 - 2016-08-22 20:17 - 00000000 ____D C:\Users\hochs\Downloads\Der.Wert.des.Menschen.German.2015.DL.PAL.DVDR-SAViOUR - filecrypt.cc
2016-08-21 15:59 - 2016-08-22 20:17 - 00000000 ____D C:\Users\hochs\Downloads\Nick.Knattertons.Abenteuer.Der.Raub.der.Gloria.Nylon.1959.German.BDRip.x264-MONOBiLD - filecrypt.cc
2016-08-21 13:45 - 2016-08-21 13:45 - 00000000 ____D C:\Users\hochs\Downloads\Unterschrift
2016-08-21 04:04 - 2016-08-21 04:04 - 00000000 ____D C:\ProgramData\Wondershare
2016-08-21 04:03 - 2016-08-21 04:03 - 00000000 ____D C:\Users\hochs\AppData\Local\CrashRpt
2016-08-21 04:03 - 2016-08-21 04:03 - 00000000 ____D C:\Users\hochs\AppData\Local\BMExplorer
2016-08-20 19:13 - 2016-08-22 20:17 - 00000000 ____D C:\Users\hochs\Downloads\Suicide.Squad.TS.MD.GERMAN.x264-KarlsKrone - filecrypt.cc
2016-08-20 15:12 - 2016-08-20 15:12 - 00000000 ____D C:\Users\hochs\AppData\Local\PeerDistRepub
2016-08-20 14:01 - 2016-08-20 14:01 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iStripper
2016-08-20 10:41 - 2016-08-20 10:41 - 00000000 ____D C:\Users\hochs\AppData\Local\Remove_Empty_Directories
2016-08-20 10:36 - 2016-08-20 10:36 - 00001179 _____ C:\Users\Public\Desktop\Remove Empty Directories.lnk
2016-08-20 10:36 - 2016-08-20 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remove Empty Directories
2016-08-20 10:36 - 2016-08-20 10:36 - 00000000 ____D C:\Program Files (x86)\Remove Empty Directories
2016-08-20 10:23 - 2016-08-25 18:47 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Paltalk
2016-08-20 07:47 - 2016-08-20 07:47 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2016-08-20 07:47 - 2016-08-20 07:47 - 00002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2016-08-20 07:47 - 2016-08-20 07:47 - 00002228 _____ C:\Users\Public\Desktop\Adobe FormsCentral.lnk
2016-08-20 07:47 - 2016-08-20 07:47 - 00002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2016-08-20 07:47 - 2016-08-20 07:47 - 00002114 _____ C:\Users\Public\Desktop\Adobe Acrobat XI Pro.lnk
2016-08-19 22:36 - 2016-08-20 07:39 - 00001150 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-19 22:36 - 2016-08-20 07:39 - 00001146 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-19 22:36 - 2016-08-19 22:41 - 00004208 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-19 22:36 - 2016-08-19 22:41 - 00003976 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-18 18:24 - 2016-08-28 11:24 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Yahoo Messenger
2016-08-18 18:24 - 2016-08-18 18:24 - 00002381 _____ C:\Users\hochs\Desktop\Yahoo Messenger.lnk
2016-08-18 18:24 - 2016-08-18 18:24 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yahoo! Inc
2016-08-18 18:24 - 2016-08-18 18:24 - 00000000 ____D C:\Users\hochs\AppData\Local\yahoomessenger
2016-08-18 00:11 - 2016-08-18 00:11 - 00002449 ____R C:\WINDOWS\RouterControl0_Uninstall.in
2016-08-18 00:11 - 2009-05-19 13:49 - 00330344 _____ (Mirko Böer) C:\WINDOWS\RCoUn0.exe
2016-08-18 00:10 - 2016-08-18 00:11 - 00001107 _____ C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RouterControl.lnk
2016-08-18 00:10 - 2016-08-18 00:11 - 00001077 _____ C:\Users\hochs\Desktop\RouterControl.lnk
2016-08-18 00:10 - 2016-08-18 00:11 - 00000000 ____D C:\Program Files (x86)\RouterControl
2016-08-18 00:10 - 2016-08-18 00:10 - 00002449 ____R C:\WINDOWS\RouterControl_Uninstall.in
2016-08-18 00:10 - 2016-08-18 00:10 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RouterControl
2016-08-18 00:10 - 2009-05-19 13:49 - 00330344 _____ (Mirko Böer) C:\WINDOWS\RCoUn.EXE
2016-08-17 18:30 - 2016-08-17 18:30 - 00002081 _____ C:\Users\Public\Desktop\TraXEx-Schredder.lnk
2016-08-17 18:30 - 2016-08-17 18:30 - 00002059 _____ C:\Users\Public\Desktop\TraXEx-Löschautomat.lnk
2016-08-17 18:30 - 2016-08-17 18:30 - 00002051 _____ C:\Users\Public\Desktop\TraXEx 7.0.lnk
2016-08-17 18:30 - 2016-08-17 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TraXEx 7.0
2016-08-17 18:30 - 2016-08-17 18:30 - 00000000 ____D C:\Program Files (x86)\TraXEx
2016-08-17 00:17 - 2016-08-17 00:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-17 00:17 - 2016-08-17 00:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-08-17 00:17 - 2016-08-17 00:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-08-15 11:40 - 2016-08-15 11:40 - 00042064 _____ (Anchorfree Inc.) C:\WINDOWS\system32\Drivers\taphss6.sys
2016-08-15 03:42 - 2016-08-15 03:43 - 00000000 ____D C:\ProgramData\F-Secure
2016-08-15 03:42 - 2016-08-15 03:42 - 00000000 ____D C:\Users\hochs\AppData\Local\F-Secure
2016-08-14 16:09 - 2016-08-14 16:09 - 00006666 _____ C:\WINDOWS\system32\Drivers\etc\hosts_PTbackup2.bak
2016-08-14 16:05 - 2016-08-14 16:05 - 08981510 _____ C:\Users\hochs\Documents\DESKTOP-GBIJB17.arn
2016-08-14 15:56 - 2016-08-14 15:56 - 00000022 ___SH C:\Users\hochs\AppData\Roaming\App1755 Conf_DB.ind
2016-08-14 15:56 - 2016-08-14 15:56 - 00000022 ___SH C:\Users\hochs\AppData\Roaming\0BF913075E33065.xrd
2016-08-14 15:56 - 2016-08-14 15:56 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools X
2016-08-14 15:55 - 2016-08-22 19:42 - 00000000 ____D C:\Program Files (x86)\jv16 PowerTools X
2016-08-14 15:55 - 2016-08-14 15:55 - 00001952 _____ C:\Users\hochs\Desktop\jv16 PowerTools X.lnk
2016-08-14 15:37 - 2016-08-14 15:49 - 00000000 ____D C:\ProgramData\WindSolutions
2016-08-14 15:37 - 2016-08-14 15:37 - 00001436 _____ C:\Users\hochs\Desktop\CopyTrans Control Center.lnk
2016-08-14 15:37 - 2016-08-14 15:37 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2016-08-14 15:18 - 2016-08-14 15:18 - 00001428 _____ C:\Users\Public\Desktop\Wondershare TunesGo Retro.lnk
2016-08-14 15:18 - 2016-08-14 15:18 - 00000000 ____D C:\Users\hochs\AppData\Local\Wondershare
2016-08-14 15:18 - 2016-08-14 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2016-08-14 15:17 - 2016-08-14 15:17 - 00000000 ____D C:\Program Files (x86)\Wondershare
2016-08-14 14:29 - 2016-08-14 14:29 - 00002266 _____ C:\Users\Public\Desktop\Xilisoft Video Converter Ultimate.lnk
2016-08-14 14:29 - 2016-08-14 14:29 - 00000000 ____D C:\ProgramData\Xilisoft
2016-08-14 14:29 - 2016-08-14 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
2016-08-14 14:29 - 2016-08-14 14:29 - 00000000 ____D C:\Program Files (x86)\Xilisoft
2016-08-14 14:22 - 2016-08-14 14:23 - 00000000 ____D C:\ProgramData\Freemake
2016-08-14 14:22 - 2016-08-14 14:22 - 00001408 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
2016-08-14 14:22 - 2016-08-14 14:22 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2016-08-14 14:22 - 2016-08-14 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2016-08-14 14:22 - 2016-08-14 14:22 - 00000000 ____D C:\Program Files (x86)\Freemake
2016-08-14 13:35 - 2016-08-14 13:35 - 00000000 ____D C:\Users\hochs\Documents\Benutzerdefinierte Office-Vorlagen
2016-08-14 12:55 - 2016-08-14 12:55 - 00000000 ____D C:\Users\hochs\AppData\Local\CrashReportClient
2016-08-14 12:21 - 2016-08-14 12:21 - 00000000 ____D C:\Program Files\Epic Games
2016-08-14 12:19 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-08-14 12:19 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-08-14 12:19 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-08-14 12:19 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-08-14 12:19 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-08-14 12:19 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-08-14 12:19 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-08-14 12:19 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-08-14 12:19 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-08-14 12:19 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-08-14 12:19 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-08-14 12:19 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-08-14 12:18 - 2016-08-14 12:20 - 00002617 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2016-08-14 12:18 - 2016-08-14 12:20 - 00002605 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2016-08-14 12:18 - 2016-08-14 12:19 - 00000000 ____D C:\ProgramData\Epic
2016-08-14 12:18 - 2016-08-14 12:18 - 00000000 ____D C:\Users\hochs\AppData\Local\UnrealEngine
2016-08-14 12:18 - 2016-08-14 12:18 - 00000000 ____D C:\Users\hochs\AppData\Local\EpicGamesLauncher
2016-08-14 12:18 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-08-13 23:41 - 2016-08-13 23:41 - 00000000 ____D C:\Program Files\CMAK
2016-08-13 23:41 - 2016-08-13 23:41 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-08-13 10:03 - 2016-08-13 10:03 - 00000000 ___HD C:\$Windows.~WS
2016-08-12 22:02 - 2016-08-12 22:02 - 00001961 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-08-12 22:02 - 2016-08-12 22:02 - 00001949 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2016-08-12 22:02 - 2016-08-12 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-08-12 22:02 - 2016-08-12 22:02 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-08-12 21:20 - 2016-08-12 21:20 - 00000000 ____D C:\Users\hochs\AppData\Local\Disc_Soft_Ltd
2016-08-11 20:03 - 2016-08-11 20:03 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2016-08-10 05:51 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 05:51 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 05:51 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 05:51 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-10 05:51 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-10 05:51 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-10 05:51 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-10 05:51 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 05:51 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-10 05:51 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-10 05:51 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-10 05:51 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-10 05:51 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-10 05:51 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 05:51 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-08-10 05:51 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 05:51 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-10 05:51 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-10 05:51 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-10 05:51 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-10 05:51 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-10 05:51 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 05:51 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 05:51 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-10 05:51 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 05:51 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 05:51 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 05:51 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 05:51 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-10 05:51 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 05:51 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 05:51 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 05:51 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 05:51 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-10 05:51 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 05:51 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-10 05:51 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-08-10 05:51 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-10 05:51 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-10 05:51 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-08-10 05:51 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-08-10 05:51 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 05:51 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 05:51 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 05:51 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 05:51 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 05:51 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-10 05:51 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 05:51 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 05:51 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-10 05:51 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 05:51 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 05:51 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 05:51 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-10 05:51 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-10 05:51 - 2016-07-22 03:32 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-10 05:51 - 2016-07-22 03:27 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-10 05:51 - 2016-07-22 03:27 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-10 05:51 - 2016-07-22 03:27 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-10 05:51 - 2016-07-22 03:26 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-10 05:51 - 2016-07-22 03:25 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-10 05:51 - 2016-07-22 03:20 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-10 05:51 - 2016-07-22 03:18 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-10 05:51 - 2016-07-22 03:18 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-10 05:51 - 2016-07-22 03:18 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-10 05:51 - 2016-07-22 03:11 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-10 05:51 - 2016-07-22 03:11 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-10 05:51 - 2016-07-22 02:49 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-10 05:51 - 2016-07-22 02:32 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-10 05:51 - 2016-07-22 02:31 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-09 20:38 - 2016-08-09 20:38 - 00047672 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2016-08-09 20:38 - 2016-08-09 20:38 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2016-08-09 20:38 - 2016-08-09 20:38 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-08-09 20:09 - 2016-08-09 20:09 - 00002315 _____ C:\Users\hochs\Desktop\RT 7 Lite (64-Bit).lnk
2016-08-09 20:09 - 2016-08-09 20:09 - 00000000 ____D C:\WINDOWS\system32\RT 7 Lite
2016-08-09 20:09 - 2016-08-09 20:09 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockers Team
2016-08-09 20:09 - 2016-08-09 20:09 - 00000000 ____D C:\Program Files\Rockers Team
2016-08-08 17:27 - 2016-08-08 17:27 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-08-08 17:15 - 2016-08-28 11:22 - 00000000 ____D C:\AdwCleaner
2016-08-07 15:28 - 2016-08-07 15:28 - 00000000 ____D C:\Users\hochs\AppData\Local\ElevatedDiagnostics
2016-08-07 15:17 - 2016-08-17 01:11 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-07 15:15 - 2016-08-07 15:15 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-07 15:14 - 2016-08-07 15:14 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-07 15:14 - 2016-08-07 15:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-07 15:14 - 2016-08-07 15:14 - 00000000 ____D C:\Program Files\MSBuild
2016-08-07 15:14 - 2016-08-07 15:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-07 15:14 - 2016-08-07 15:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-07 15:14 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-07 15:14 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-07 15:14 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-07 15:14 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-07 15:14 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-07 15:14 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-07 14:29 - 2016-08-08 16:59 - 00000000 ____D C:\Users\hochs\AppData\Local\ConnectedDevicesPlatform
2016-08-07 14:29 - 2016-08-07 14:29 - 00000020 ___SH C:\Users\hochs\ntuser.ini
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-08-07 14:27 - 2016-08-07 14:27 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-08-07 14:26 - 2016-08-09 20:48 - 00002563 _____ C:\WINDOWS\diagwrn.xml
2016-08-07 14:26 - 2016-08-09 20:48 - 00001908 _____ C:\WINDOWS\diagerr.xml
2016-08-07 14:25 - 2016-08-28 11:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-07 14:25 - 2016-08-25 18:44 - 00003256 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForhochs
2016-08-07 14:25 - 2016-08-07 14:43 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-08-07 14:25 - 2016-08-07 14:25 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-07 14:25 - 2016-08-07 14:25 - 00003566 _____ C:\WINDOWS\System32\Tasks\Driver Easy Scheduled Scan
2016-08-07 14:25 - 2016-08-07 14:25 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{82C7B0E5-717C-433B-B746-49CB807503D5}
2016-08-07 14:25 - 2016-08-07 14:25 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-08-07 14:25 - 2016-08-07 14:25 - 00002676 _____ C:\WINDOWS\System32\Tasks\IPTV-Aufnahme Teleclub
2016-08-07 14:25 - 2016-08-07 14:25 - 00002668 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2016-08-07 14:25 - 2016-08-07 14:25 - 00002668 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2016-08-07 14:25 - 2016-08-07 14:25 - 00002536 _____ C:\WINDOWS\System32\Tasks\SamsungMagician
2016-08-07 14:25 - 2016-08-07 14:25 - 00002494 _____ C:\WINDOWS\System32\Tasks\Samsung_PSSD_Registration
2016-08-07 14:25 - 2016-08-07 14:25 - 00002428 _____ C:\WINDOWS\System32\Tasks\PrivaZer_SkipUAC
2016-08-07 14:25 - 2016-08-07 14:25 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-08-07 14:25 - 2016-08-07 14:25 - 00002288 _____ C:\WINDOWS\System32\Tasks\RtHDVBg
2016-08-07 14:25 - 2016-08-07 14:25 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-08-07 14:25 - 2016-08-07 14:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Nero
2016-08-07 14:25 - 2016-08-07 14:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2016-08-07 14:25 - 2016-08-07 14:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-08-07 14:23 - 2016-08-07 14:23 - 00000000 ____D C:\ProgramData\USOShared
2016-08-07 14:22 - 2016-08-07 14:22 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-07 14:20 - 2016-08-07 14:22 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-07 14:19 - 2016-08-21 19:49 - 00000000 ____D C:\Users\hochs
2016-08-07 14:19 - 2016-08-07 14:23 - 00000000 ____D C:\Users\Administrator
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Vorlagen
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Startmenü
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Netzwerkumgebung
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Lokale Einstellungen
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Eigene Dateien
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Druckumgebung
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Documents\Eigene Videos
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Documents\Eigene Musik
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Documents\Eigene Bilder
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\AppData\Local\Verlauf
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\AppData\Local\Anwendungsdaten
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\hochs\Anwendungsdaten
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2016-08-07 14:19 - 2016-08-07 14:19 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2016-08-07 14:18 - 2016-08-07 14:18 - 00317063 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2016-08-07 14:18 - 2016-08-07 14:18 - 00006786 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat
2016-08-07 14:18 - 2016-08-07 14:18 - 00002626 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____D C:\Program Files\Realtek
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-08-07 14:18 - 2016-08-07 14:18 - 00000000 ____D C:\Program Files\Elantech
2016-08-07 14:18 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 06452948 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-08-07 14:18 - 2016-06-03 05:59 - 06364216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 02455608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 01352760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-08-07 14:18 - 2016-06-03 05:59 - 00534072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-08-07 14:18 - 2016-06-03 05:59 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-08-07 14:17 - 2016-08-28 09:22 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-07 14:17 - 2016-08-07 14:17 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-08-07 13:57 - 2016-08-07 13:59 - 00000036 _____ C:\WINDOWS\progress.ini
2016-08-07 13:51 - 2016-08-08 20:28 - 00000000 ____D C:\Windows10Upgrade
2016-08-07 13:51 - 2016-08-07 14:29 - 00000000 ___HD C:\$GetCurrent
2016-08-07 13:51 - 2016-08-07 13:51 - 00000742 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk
2016-08-07 13:51 - 2016-08-07 13:51 - 00000730 _____ C:\Users\hochs\Desktop\Windows 10-Upgrade-Assistent.lnk
2016-08-07 09:09 - 2016-08-07 09:09 - 00001127 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-08-07 09:09 - 2016-08-07 09:09 - 00001115 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-08-07 09:03 - 2016-08-19 19:27 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-08-07 08:47 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2016-08-07 08:47 - 2016-08-07 08:47 - 00001313 _____ C:\Users\Public\Desktop\Samsung Magician.lnk
2016-08-07 08:47 - 2016-08-07 08:47 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-08-07 08:46 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Portable SSD T3
2016-08-07 08:46 - 2016-08-07 08:46 - 00001729 _____ C:\Users\Public\Desktop\Samsung Portable SSD T3.lnk
2016-08-07 08:46 - 2016-08-07 08:46 - 00000000 ____D C:\ProgramData\Samsung Apps
2016-08-06 18:49 - 2016-08-07 14:22 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paltalk Messenger
2016-08-06 18:49 - 2016-08-06 18:49 - 00002065 _____ C:\Users\hochs\Desktop\Paltalk Messenger.lnk
2016-08-06 18:49 - 2016-08-06 18:49 - 00001186 _____ C:\Users\hochs\Desktop\Upgrade to Paltalk Extreme.lnk
2016-08-06 18:49 - 2016-08-06 18:49 - 00000000 ____D C:\Program Files (x86)\Paltalk Messenger
2016-08-06 18:12 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcomsoft Password Recovery
2016-08-06 18:12 - 2016-08-06 18:12 - 00000000 ____D C:\ProgramData\Elcomsoft Password Recovery
2016-08-06 18:12 - 2016-08-06 18:12 - 00000000 ____D C:\Program Files (x86)\Elcomsoft Password Recovery
2016-08-06 18:12 - 2016-08-06 18:12 - 00000000 ____D C:\Program Files (x86)\Elcomsoft
2016-08-06 11:42 - 2016-08-18 18:26 - 00000000 ____D C:\Users\hochs\AppData\Local\SquirrelTemp
2016-08-06 11:42 - 2016-08-07 14:19 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2016-08-06 11:42 - 2016-08-06 11:42 - 00002253 _____ C:\Users\hochs\Desktop\WhatsApp.lnk
2016-08-06 11:42 - 2016-08-06 11:42 - 00000000 ____D C:\Users\hochs\AppData\Local\WhatsApp
2016-08-06 10:16 - 2016-08-06 10:16 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2016-08-06 09:27 - 2016-08-20 10:41 - 00000000 ____D C:\xampp2
2016-08-06 09:19 - 2016-08-20 07:37 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-08-06 09:18 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2016-08-06 09:16 - 2016-08-20 10:41 - 00000000 ____D C:\xampp
2016-08-06 09:05 - 2016-08-06 09:05 - 00000000 ____D C:\Program Files (x86)\MySQL
2016-08-06 08:57 - 2016-08-20 10:37 - 00000000 ____D C:\Users\hochs\.mythtv
2016-08-06 08:57 - 2016-08-07 14:22 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MythTV
2016-08-06 08:56 - 2016-08-06 08:57 - 00000000 ____D C:\Program Files (x86)\MythTV
2016-08-06 08:15 - 2016-08-20 13:56 - 00000000 ____D C:\ProgramData\Ad Muncher
2016-08-06 08:15 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad Muncher
2016-08-06 08:15 - 2016-08-06 08:15 - 00000000 ____D C:\Program Files (x86)\Ad Muncher
2016-08-05 17:50 - 2016-08-05 15:04 - 00217256 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
2016-08-04 18:57 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
2016-08-04 18:57 - 2016-08-04 18:57 - 00001184 _____ C:\Users\Public\Desktop\Minimal ADB and Fastboot.lnk
2016-08-04 18:57 - 2016-08-04 18:57 - 00000000 ____D C:\Program Files (x86)\Minimal ADB and Fastboot
2016-08-04 18:21 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-08-04 18:21 - 2016-08-04 18:21 - 00001833 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-08-04 18:21 - 2016-08-04 18:21 - 00000000 ____D C:\Program Files\iTunes
2016-08-04 18:21 - 2016-08-04 18:21 - 00000000 ____D C:\Program Files\iPod
2016-08-04 18:21 - 2016-08-04 18:21 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-08-01 10:03 - 2016-08-07 14:22 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileBot
2016-08-01 10:03 - 2016-08-01 10:03 - 00002164 _____ C:\Users\hochs\Desktop\FileBot.lnk
2016-08-01 10:03 - 2016-08-01 10:03 - 00000000 ____D C:\Program Files\FileBot
2016-07-31 23:01 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
2016-07-31 22:57 - 2016-07-31 23:05 - 00000000 ____D C:\Users\hochs\AppData\Local\ManyCam
2016-07-31 22:51 - 2016-07-31 23:01 - 00001075 _____ C:\Users\Public\Desktop\ManyCam.lnk
2016-07-31 22:51 - 2016-07-31 22:51 - 00000000 ____D C:\ProgramData\ManyCam
2016-07-31 22:50 - 2016-07-31 23:02 - 00000000 ____D C:\Program Files (x86)\ManyCam
2016-07-31 16:33 - 2016-08-07 14:22 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
2016-07-31 16:33 - 2016-07-31 16:33 - 00000000 ____D C:\Users\hochs\AppData\Local\Package Cache
2016-07-31 08:56 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeaZip
2016-07-31 08:56 - 2016-07-31 08:56 - 00000836 _____ C:\Users\hochs\Desktop\PeaZip.lnk
2016-07-31 08:55 - 2016-07-31 08:59 - 00000000 ____D C:\Program Files\PeaZip
2016-07-31 08:45 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clover
2016-07-31 08:45 - 2016-07-31 08:45 - 00001063 _____ C:\Users\Public\Desktop\Clover.lnk
2016-07-31 08:45 - 2016-07-31 08:45 - 00000000 ____D C:\Users\hochs\AppData\Local\Clover
2016-07-31 08:45 - 2016-07-31 08:45 - 00000000 ____D C:\Program Files (x86)\Clover
2016-07-31 07:21 - 2016-07-30 23:34 - 00001172 _____ C:\Users\hochs\Desktop\KaraFun Player 2 - Kopie.lnk
2016-07-31 00:59 - 2016-08-07 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games
2016-07-31 00:59 - 2016-07-31 00:59 - 00001519 _____ C:\Users\Public\Desktop\Unreal Tournament 3 Black Edition.lnk
2016-07-31 00:49 - 2016-08-14 12:18 - 00000000 ____D C:\Program Files (x86)\Epic Games
2016-07-30 23:34 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaraFun Player 2
2016-07-30 23:34 - 2016-07-30 23:34 - 00001172 _____ C:\Users\hochs\Desktop\KaraFun Player 2.lnk
2016-07-30 23:34 - 2016-07-30 23:34 - 00000000 ____D C:\ProgramData\Recisio
2016-07-30 23:34 - 2016-07-30 23:34 - 00000000 ____D C:\Program Files (x86)\KaraFun Player 2
2016-07-30 11:57 - 2016-08-27 04:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-30 11:57 - 2016-08-26 16:05 - 00000000 ____D C:\Users\hochs\AppData\Local\Mozilla
2016-07-30 11:57 - 2016-08-26 15:57 - 00001243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-30 11:57 - 2016-08-26 15:57 - 00001231 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-30 11:57 - 2016-08-26 15:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-30 03:20 - 2016-08-07 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-07-30 03:20 - 2016-07-30 03:20 - 00001154 _____ C:\Users\Public\Desktop\VLC media player.lnk

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-08-28 11:30 - 2016-07-17 00:51 - 01719680 _____ C:\WINDOWS\system32\perfh007.dat
2016-08-28 11:30 - 2016-07-17 00:51 - 00429702 _____ C:\WINDOWS\system32\perfc007.dat
2016-08-28 11:30 - 2016-05-20 20:58 - 03711796 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-28 11:28 - 2016-07-16 08:04 - 00065536 _____ C:\WINDOWS\system32\config\ELAM
2016-08-28 11:28 - 2016-06-11 01:58 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-28 11:24 - 2016-05-20 21:29 - 00000000 ___RD C:\Users\hochs\iCloudDrive
2016-08-28 11:24 - 2016-05-20 21:05 - 00000000 ____D C:\Program Files\Bitdefender Agent
2016-08-28 11:23 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-08-28 11:19 - 2016-05-20 21:27 - 00070504 _____ C:\bdlog.txt
2016-08-28 10:36 - 2016-06-23 07:03 - 00000000 ____D C:\Users\hochs\Documents\Outlook-Dateien
2016-08-28 09:55 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-08-28 09:48 - 2016-05-20 21:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-08-28 09:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-28 09:25 - 2016-05-20 20:55 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-28 04:07 - 2016-07-24 21:14 - 00000000 ____D C:\Users\hochs\AppData\Local\Glance
2016-08-28 03:09 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-28 01:20 - 2016-05-20 21:32 - 00000000 ____D C:\Users\hochs\AppData\Local\JDownloader 2.0
2016-08-27 17:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-27 08:08 - 2016-05-29 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2016-08-27 08:08 - 2016-05-29 19:27 - 00000000 ____D C:\Program Files (x86)\Ashampoo
2016-08-27 08:06 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-26 11:20 - 2016-05-22 18:12 - 00000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForhochs.job
2016-08-25 18:39 - 2016-05-20 21:00 - 00000000 ____D C:\ProgramData\Acronis
2016-08-25 18:26 - 2016-05-20 21:01 - 01267544 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\tib.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00687968 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\tnd.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00375136 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\file_tracker.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00368480 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\snapman.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00331104 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\virtual_file.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00212320 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\tib_mounter.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00181088 _____ (Acronis International GmbH) C:\WINDOWS\system32\Drivers\fltsrv.sys
2016-08-25 18:26 - 2016-05-20 21:01 - 00001297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis True Image.lnk
2016-08-25 18:26 - 2016-05-20 21:01 - 00001285 _____ C:\Users\Public\Desktop\Acronis True Image.lnk
2016-08-25 18:22 - 2016-05-20 21:26 - 00000000 ____D C:\Users\hochs\AppData\Local\Apple
2016-08-23 18:31 - 2016-05-28 10:47 - 00000000 ____D C:\Users\hochs\AppData\Local\Apps\2.0
2016-08-22 19:57 - 2016-05-20 20:55 - 00000000 ____D C:\Users\hochs\AppData\Local\Google
2016-08-22 18:34 - 2016-05-20 21:07 - 01603264 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2016-08-22 18:34 - 2016-05-20 21:07 - 00850464 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2016-08-21 16:04 - 2016-05-20 21:27 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Apple Computer
2016-08-21 07:36 - 2016-05-20 20:53 - 00000000 ____D C:\Users\hochs\AppData\Local\Packages
2016-08-21 07:18 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-21 04:03 - 2016-05-31 18:39 - 00000000 ____D C:\ProgramData\Atheros
2016-08-21 04:03 - 2016-05-20 21:27 - 00000000 ____D C:\Users\hochs\AppData\Local\Apple Computer
2016-08-20 18:43 - 2016-05-27 07:02 - 00001390 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2016-08-20 18:43 - 2016-05-27 07:02 - 00001329 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2016-08-20 18:43 - 2016-05-27 07:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-08-20 18:43 - 2016-05-27 07:02 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2016-08-20 16:20 - 2016-05-20 20:55 - 00000000 ____D C:\Users\hochs\AppData\Local\MicrosoftEdge
2016-08-20 14:42 - 2016-07-10 08:42 - 00000000 ____D C:\ProgramData\Overwolf
2016-08-20 10:40 - 2016-07-15 20:16 - 00000000 ____D C:\Users\hochs\AppData\Local\PrivaZer
2016-08-20 10:40 - 2016-05-21 05:50 - 00000000 ____D C:\Users\hochs\AppData\LocalLow\Adobe
2016-08-20 10:38 - 2016-07-10 08:41 - 00000000 ____D C:\Users\hochs\AppData\Local\Overwolf
2016-08-20 10:37 - 2016-05-20 20:53 - 00000000 ____D C:\Users\hochs\AppData\Local\Comms
2016-08-20 07:49 - 2016-05-21 05:48 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-20 07:46 - 2016-05-21 05:47 - 00000000 ____D C:\ProgramData\Adobe
2016-08-20 07:46 - 2016-05-21 05:47 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-08-18 02:42 - 2016-07-10 08:42 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-08-17 00:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-08-17 00:17 - 2016-05-21 09:20 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-17 00:16 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-15 20:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-08-15 04:20 - 2016-07-09 04:00 - 00002126 _____ C:\Users\hochs\Desktop\cnlabSpeedTest.lnk
2016-08-15 04:20 - 2016-07-09 04:00 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cnlab AG
2016-08-15 04:20 - 2016-07-09 04:00 - 00000000 ____D C:\Users\hochs\AppData\Local\cnlabSpeedTest
2016-08-14 15:41 - 2016-07-16 07:48 - 00006664 _____ C:\WINDOWS\system32\Drivers\etc\hosts_PTBackup.bak
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-13 23:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-13 23:41 - 2016-05-20 20:53 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-12 23:17 - 2016-05-21 10:19 - 00000000 ____D C:\Users\hochs\.VirtualBox
2016-08-12 23:00 - 2016-05-21 10:19 - 00000000 ____D C:\Users\hochs\VirtualBox VMs
2016-08-08 17:17 - 2016-07-05 19:50 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2016-08-08 17:17 - 2016-06-22 12:27 - 00000000 ____D C:\ProgramData\Lavasoft
2016-08-08 17:17 - 2016-06-22 12:27 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2016-08-08 04:48 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-07 18:09 - 2016-05-20 21:09 - 00002480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-08-07 15:23 - 2016-05-20 20:53 - 00000000 ____D C:\Users\hochs\AppData\Local\VirtualStore
2016-08-07 15:17 - 2016-07-16 13:49 - 00000000 ____D C:\WINDOWS\Setup
2016-08-07 15:17 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-07 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-07 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-07 15:14 - 2016-07-16 13:43 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\telnet.exe
2016-08-07 14:31 - 2016-05-20 20:55 - 00002398 _____ C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-07 14:31 - 2016-05-20 20:55 - 00000000 ___RD C:\Users\hochs\OneDrive
2016-08-07 14:29 - 2016-06-03 03:46 - 00000468 __RSH C:\ProgramData\ntuser.pol
2016-08-07 14:27 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-07 14:26 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-07 14:26 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-07 14:26 - 2016-05-20 21:41 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-07 14:24 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-07 14:23 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-07 14:22 - 2016-07-24 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio
2016-08-07 14:22 - 2016-07-24 11:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Web Stream Recorder
2016-08-07 14:22 - 2016-07-24 01:08 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt
2016-08-07 14:22 - 2016-07-21 18:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-08-07 14:22 - 2016-07-20 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CounterPath Bria 4
2016-08-07 14:22 - 2016-07-17 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EMDB
2016-08-07 14:22 - 2016-07-16 11:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Recorder
2016-08-07 14:22 - 2016-07-16 10:39 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gabriel Denys
2016-08-07 14:22 - 2016-07-16 10:36 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jan Sušnik
2016-08-07 14:22 - 2016-07-16 10:33 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Playlist Creator 3.6.2
2016-08-07 14:22 - 2016-07-16 07:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-08-07 14:22 - 2016-07-15 20:16 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer
2016-08-07 14:22 - 2016-07-05 19:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-08-07 14:22 - 2016-06-22 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DoNotSpy10
2016-08-07 14:22 - 2016-06-22 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
2016-08-07 14:22 - 2016-06-22 08:46 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2016-08-07 14:22 - 2016-06-18 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avery Zweckform
2016-08-07 14:22 - 2016-06-12 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2016-08-07 14:22 - 2016-06-11 03:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Network Inventory 3
2016-08-07 14:22 - 2016-06-11 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Network Monitor 2
2016-08-07 14:22 - 2016-06-11 01:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2016-08-07 14:22 - 2016-06-01 05:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyMDb
2016-08-07 14:22 - 2016-05-28 10:47 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Logitech
2016-08-07 14:22 - 2016-05-27 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2016-08-07 14:22 - 2016-05-23 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016
2016-08-07 14:22 - 2016-05-23 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-08-07 14:22 - 2016-05-21 09:19 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2016-08-07 14:22 - 2016-05-21 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-08-07 14:22 - 2016-05-21 06:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-08-07 14:22 - 2016-05-21 05:41 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-07 14:22 - 2016-05-21 05:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-07 14:22 - 2016-05-20 21:35 - 00000000 ____D C:\Users\Default.migrated
2016-08-07 14:22 - 2016-05-20 21:32 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-08-07 14:22 - 2016-05-20 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Swisscom
2016-08-07 14:22 - 2016-05-20 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-08-07 14:22 - 2016-05-20 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2016
2016-08-07 14:20 - 2016-07-24 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2016-08-07 14:20 - 2016-07-17 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
2016-08-07 14:20 - 2016-07-17 00:52 - 00000000 ____D C:\WINDOWS\OCR
2016-08-07 14:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-08-07 14:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-07 14:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-07 14:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-07 14:20 - 2016-06-22 12:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2016-08-07 14:20 - 2016-06-12 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2016-08-07 14:20 - 2016-05-27 19:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-07 14:20 - 2016-05-20 21:41 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-08-07 14:20 - 2016-05-20 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2016-08-07 14:19 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-07 14:19 - 2016-07-10 08:42 - 00000000 ____D C:\Users\hochs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-08-07 14:19 - 2016-07-01 16:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2016-08-07 14:18 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-07 14:18 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-07 14:18 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2016-08-07 13:54 - 2016-05-20 21:02 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-07 12:28 - 2016-05-21 05:48 - 00000000 ____D C:\Users\hochs\AppData\Local\Adobe
2016-08-07 09:11 - 2016-05-20 21:30 - 00000000 ____D C:\Users\hochs\AppData\Local\F1E5964B-262A-4856-A13B-52D28ED9F3FF.aplzod
2016-08-07 08:47 - 2016-05-27 13:45 - 00000000 ____D C:\ProgramData\SAMSUNG
2016-08-06 10:21 - 2016-07-05 19:48 - 00000000 ____D C:\ProgramData\Oracle
2016-08-06 10:16 - 2016-07-12 20:23 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-08-06 10:16 - 2016-07-12 20:22 - 00000000 ____D C:\Program Files\Java
2016-08-06 10:16 - 2016-07-05 19:48 - 00000000 ____D C:\Users\hochs\.oracle_jre_usage
2016-08-06 10:16 - 2016-07-05 19:48 - 00000000 ____D C:\Program Files (x86)\Java
2016-08-06 10:15 - 2016-07-05 19:48 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-08-04 18:21 - 2016-05-20 21:26 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-07-31 22:23 - 2016-05-31 18:35 - 00000000 ____D C:\Users\hochs\Documents\Bluetooth Folder
2016-07-31 22:20 - 2016-05-27 19:48 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-31 22:20 - 2016-05-27 19:48 - 00000000 ____D C:\ProgramData\Skype

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-03-26 13:48 - 2015-03-26 13:48 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2016-08-14 15:56 - 2016-08-14 15:56 - 0000022 ___SH () C:\Users\hochs\AppData\Roaming\0BF913075E33065.xrd
2016-08-14 15:56 - 2016-08-14 15:56 - 0000022 ___SH () C:\Users\hochs\AppData\Roaming\App1755 Conf_DB.ind
2016-05-20 21:09 - 2016-05-20 21:09 - 0427224 _____ () C:\ProgramData\1463771146.bdinstall.bin
2016-06-14 18:42 - 2016-06-14 18:42 - 0026778 _____ () C:\ProgramData\1465922534.bdinstall.bin
2016-05-21 06:09 - 2016-05-21 06:09 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0003439 _____ () C:\ProgramData\cfGH0330.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0002297 _____ () C:\ProgramData\cfSB1580.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0002244 _____ () C:\ProgramData\cfSB1590.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0002595 _____ () C:\ProgramData\cfSB1600.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0002595 _____ () C:\ProgramData\cfSB1610.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0002244 _____ () C:\ProgramData\cfSB1700.ini
2016-01-26 00:34 - 2016-01-26 00:34 - 0003582 _____ () C:\ProgramData\cfSB1710.ini
2016-08-07 14:18 - 2016-08-07 14:18 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-26 00:34 - 2016-01-26 00:34 - 0057587 _____ () C:\ProgramData\SBXH7.cfg

Einige Dateien in TEMP:
====================
C:\Users\hochs\AppData\Local\Temp\libeay32.dll
C:\Users\hochs\AppData\Local\Temp\msvcr120.dll
C:\Users\hochs\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-08-19 05:59

==================== Ende von FRST.txt ============================

 

Themen zu Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus
adobe, avast, bonjour, computer, converter, defender, downloader, explorer, firefox, flash player, free download, homepage, installation, internet, karte, keylogger, malware, mozilla, officejet, prozesse, realtek, registry, safer networking, scan, svchost.exe, system, trojaner, virus, windows, windows 10, windowsapps, wlan


« Windows 10: Firefox Shortcut wird mit yeabests.cc ergänzt | Windows Logfile »


Ähnliche Themen: Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus


  1. Vermutung auf Viren oder Windows 10 beschädigt!
    Plagegeister aller Art und deren Bekämpfung - 28.08.2016 (15)
  2. Vermutung an Trojaner oder Virus
    Plagegeister aller Art und deren Bekämpfung - 09.02.2016 (61)
  3. Magento-Lücke: Angreifer können gezielt Kreditkarten-Daten abgreifen
    Nachrichten - 26.06.2015 (0)
  4. Virus oder Trojaner eingefangen?Private Daten verschwunden...
    Plagegeister aller Art und deren Bekämpfung - 23.10.2014 (3)
  5. Daten von 800.000 Telefonkunden in Frankreich gestohlen
    Nachrichten - 03.02.2014 (0)
  6. Geklaute Kreditkarten Daten
    Log-Analyse und Auswertung - 27.01.2014 (5)
  7. protocolmindm Website infiziert → PC oder Mac kompromittiert (FTP Daten gestohlen)
    Plagegeister aller Art und deren Bekämpfung - 22.04.2013 (2)
  8. Links auf Antiviren Seiten werden mit Google 404 abgefangen, Online Banking Daten "gestohlen"
    Plagegeister aller Art und deren Bekämpfung - 04.07.2012 (2)
  9. Windows Security-Drohung - Zahlung innerhalb 24 Stunden oder Platte wird gelöscht
    Plagegeister aller Art und deren Bekämpfung - 07.02.2012 (63)
  10. Geheime Daten bei Japans Raumfahrtagentur gestohlen
    Nachrichten - 15.01.2012 (0)
  11. Logfiles (Vermutung Botnetzwerk oder ähnliches)
    Log-Analyse und Auswertung - 28.08.2011 (3)
  12. Daten von über einer Million Kunden bei Neckermann.de gestohlen
    Nachrichten - 31.05.2011 (0)
  13. Angriff auf Playstation Network: Persönliche Daten von Millionen Kunden gestohlen
    Nachrichten - 27.04.2011 (0)
  14. PSN-Hack: Persönliche Daten von Millionen Kunden gestohlen
    Nachrichten - 27.04.2011 (0)
  15. meinen Flyff Daten wurden gestohlen !
    Plagegeister aller Art und deren Bekämpfung - 18.11.2009 (2)
  16. [Vermutung] Immernoch Trojaner und/oder Malware
    Plagegeister aller Art und deren Bekämpfung - 15.12.2008 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus - Hallo zusammen ich habe den Verdacht, dass ich von einem Trojaner/Virus/Malware befallen bin. Der Computer reagiert allerdings normal, bei allen Aktivitäten. Auch ist mein Computer nicht langsamer geworden, ausser bei - Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus...
Archiv
Du betrachtest: Kreditkarten Daten innerhalb kürzester Zeit 2x gestohlen / Vermutung Trojaner oder Virus auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131