Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: AdwCleaner meldet 1 Fund - Fehlalarm?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 08.06.2017, 21:26   #1
Clocks
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Hallo,

ich habe am 03.06.2017 einen Suchlauf mit dem AdwCleaner durchgeführt, wobei 1 Fund angezeigt wurde. Danach habe ich mit dem Junkware Removal Tool einen Suchlauf durchgeführt, wobei kein Fund angezeigt wurde. Da in letzter Zeit häufiger Fehlalarme beim AdwCleaner vorkamen, bin ich erstmal von einem Fehlalarm ausgegangen. Heute habe ich vom AdwCleaner nochmals einen Suchlauf durchführen lassen, wobei der o.g. Fund immer noch angezeigt wird. Jetzt zweifle ich, ob es ein Fehlalarm ist.

Für eine Nachricht, ob es ein Fehlalarm ist, bin ich dankbar und bedanke mich für Eure Hilfe schonmal im voraus.

Anbei folgende Datei: AdwCleaner.txt vom 03.06.2017. Die JRT.txt vom 03.06.2017 habe ich leider nicht mehr. Aktuelle Dateien vom AdwCleaner und Junkware Removal Tool könnte ich, falls gewünscht, nachreichen.

Code:
ATTFilter
# AdwCleaner v6.047 - Bericht erstellt am 03/06/2017 um 19:36:16
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-06-02.2 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : haufdemb - DESKTOP-1QKGMBB
# Gestartet von : C:\Users\haufdemb\Desktop\adwcleaner_6.047.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Keine schädlichen Dateien gefunden.


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [24158 Bytes] - [02/01/2017 09:58:39]
C:\AdwCleaner\AdwCleaner[S0].txt - [1352 Bytes] - [13/11/2016 23:02:01]
C:\AdwCleaner\AdwCleaner[S100].txt - [8746 Bytes] - [25/11/2016 23:06:07]
C:\AdwCleaner\AdwCleaner[S101].txt - [8821 Bytes] - [25/11/2016 23:40:15]
C:\AdwCleaner\AdwCleaner[S102].txt - [8896 Bytes] - [25/11/2016 23:44:34]
C:\AdwCleaner\AdwCleaner[S103].txt - [8971 Bytes] - [26/11/2016 10:09:24]
C:\AdwCleaner\AdwCleaner[S104].txt - [9046 Bytes] - [26/11/2016 10:22:56]
C:\AdwCleaner\AdwCleaner[S105].txt - [9121 Bytes] - [26/11/2016 10:36:42]
C:\AdwCleaner\AdwCleaner[S106].txt - [9196 Bytes] - [26/11/2016 19:57:11]
C:\AdwCleaner\AdwCleaner[S107].txt - [9271 Bytes] - [26/11/2016 20:01:10]
C:\AdwCleaner\AdwCleaner[S108].txt - [9346 Bytes] - [26/11/2016 21:33:40]
C:\AdwCleaner\AdwCleaner[S109].txt - [9421 Bytes] - [27/11/2016 00:01:34]
C:\AdwCleaner\AdwCleaner[S10].txt - [2084 Bytes] - [14/11/2016 20:34:29]
C:\AdwCleaner\AdwCleaner[S110].txt - [9496 Bytes] - [27/11/2016 21:03:48]
C:\AdwCleaner\AdwCleaner[S111].txt - [9571 Bytes] - [27/11/2016 21:45:47]
C:\AdwCleaner\AdwCleaner[S112].txt - [9646 Bytes] - [27/11/2016 22:32:27]
C:\AdwCleaner\AdwCleaner[S113].txt - [9721 Bytes] - [27/11/2016 23:35:59]
C:\AdwCleaner\AdwCleaner[S114].txt - [9893 Bytes] - [28/11/2016 09:53:20]
C:\AdwCleaner\AdwCleaner[S115].txt - [9968 Bytes] - [28/11/2016 09:54:21]
C:\AdwCleaner\AdwCleaner[S116].txt - [10043 Bytes] - [28/11/2016 10:00:29]
C:\AdwCleaner\AdwCleaner[S117].txt - [10120 Bytes] - [28/11/2016 10:02:45]
C:\AdwCleaner\AdwCleaner[S118].txt - [10196 Bytes] - [28/11/2016 10:04:30]
C:\AdwCleaner\AdwCleaner[S119].txt - [10272 Bytes] - [28/11/2016 10:08:44]
C:\AdwCleaner\AdwCleaner[S11].txt - [2158 Bytes] - [14/11/2016 21:24:02]
C:\AdwCleaner\AdwCleaner[S120].txt - [10348 Bytes] - [28/11/2016 10:11:49]
C:\AdwCleaner\AdwCleaner[S121].txt - [10424 Bytes] - [28/11/2016 11:52:15]
C:\AdwCleaner\AdwCleaner[S122].txt - [10403 Bytes] - [28/11/2016 20:16:59]
C:\AdwCleaner\AdwCleaner[S123].txt - [10479 Bytes] - [28/11/2016 22:21:28]
C:\AdwCleaner\AdwCleaner[S124].txt - [10555 Bytes] - [28/11/2016 22:59:48]
C:\AdwCleaner\AdwCleaner[S125].txt - [10631 Bytes] - [29/11/2016 09:28:54]
C:\AdwCleaner\AdwCleaner[S126].txt - [10707 Bytes] - [29/11/2016 13:47:25]
C:\AdwCleaner\AdwCleaner[S127].txt - [10783 Bytes] - [29/11/2016 17:55:54]
C:\AdwCleaner\AdwCleaner[S128].txt - [10859 Bytes] - [30/11/2016 11:10:48]
C:\AdwCleaner\AdwCleaner[S129].txt - [10935 Bytes] - [30/11/2016 20:48:04]
C:\AdwCleaner\AdwCleaner[S12].txt - [2232 Bytes] - [14/11/2016 21:54:58]
C:\AdwCleaner\AdwCleaner[S130].txt - [11011 Bytes] - [30/11/2016 21:14:16]
C:\AdwCleaner\AdwCleaner[S131].txt - [11087 Bytes] - [01/12/2016 08:47:21]
C:\AdwCleaner\AdwCleaner[S132].txt - [11163 Bytes] - [01/12/2016 10:05:21]
C:\AdwCleaner\AdwCleaner[S133].txt - [11239 Bytes] - [01/12/2016 14:38:51]
C:\AdwCleaner\AdwCleaner[S134].txt - [11315 Bytes] - [01/12/2016 14:48:04]
C:\AdwCleaner\AdwCleaner[S135].txt - [11391 Bytes] - [01/12/2016 15:06:29]
C:\AdwCleaner\AdwCleaner[S136].txt - [11467 Bytes] - [02/12/2016 08:46:03]
C:\AdwCleaner\AdwCleaner[S137].txt - [11543 Bytes] - [02/12/2016 09:20:10]
C:\AdwCleaner\AdwCleaner[S138].txt - [11619 Bytes] - [02/12/2016 13:23:17]
C:\AdwCleaner\AdwCleaner[S139].txt - [11695 Bytes] - [02/12/2016 14:25:33]
C:\AdwCleaner\AdwCleaner[S13].txt - [2306 Bytes] - [14/11/2016 22:18:26]
C:\AdwCleaner\AdwCleaner[S140].txt - [11771 Bytes] - [02/12/2016 14:47:00]
C:\AdwCleaner\AdwCleaner[S141].txt - [11847 Bytes] - [02/12/2016 17:44:35]
C:\AdwCleaner\AdwCleaner[S142].txt - [11923 Bytes] - [02/12/2016 17:45:55]
C:\AdwCleaner\AdwCleaner[S143].txt - [11999 Bytes] - [02/12/2016 20:48:06]
C:\AdwCleaner\AdwCleaner[S144].txt - [12075 Bytes] - [02/12/2016 21:15:46]
C:\AdwCleaner\AdwCleaner[S145].txt - [12151 Bytes] - [02/12/2016 23:44:15]
C:\AdwCleaner\AdwCleaner[S146].txt - [12227 Bytes] - [03/12/2016 22:19:21]
C:\AdwCleaner\AdwCleaner[S147].txt - [12302 Bytes] - [03/12/2016 23:31:13]
C:\AdwCleaner\AdwCleaner[S148].txt - [12378 Bytes] - [03/12/2016 23:33:36]
C:\AdwCleaner\AdwCleaner[S149].txt - [12454 Bytes] - [04/12/2016 10:29:25]
C:\AdwCleaner\AdwCleaner[S14].txt - [2380 Bytes] - [14/11/2016 22:41:52]
C:\AdwCleaner\AdwCleaner[S150].txt - [12530 Bytes] - [04/12/2016 12:02:09]
C:\AdwCleaner\AdwCleaner[S151].txt - [12606 Bytes] - [04/12/2016 13:09:08]
C:\AdwCleaner\AdwCleaner[S152].txt - [12682 Bytes] - [04/12/2016 13:25:52]
C:\AdwCleaner\AdwCleaner[S153].txt - [12759 Bytes] - [04/12/2016 23:09:54]
C:\AdwCleaner\AdwCleaner[S154].txt - [12834 Bytes] - [04/12/2016 23:33:42]
C:\AdwCleaner\AdwCleaner[S155].txt - [12910 Bytes] - [05/12/2016 14:52:20]
C:\AdwCleaner\AdwCleaner[S156].txt - [12986 Bytes] - [05/12/2016 15:18:06]
C:\AdwCleaner\AdwCleaner[S157].txt - [13062 Bytes] - [05/12/2016 15:51:02]
C:\AdwCleaner\AdwCleaner[S158].txt - [13139 Bytes] - [06/12/2016 13:18:40]
C:\AdwCleaner\AdwCleaner[S159].txt - [13214 Bytes] - [06/12/2016 14:14:50]
C:\AdwCleaner\AdwCleaner[S15].txt - [2454 Bytes] - [14/11/2016 23:06:48]
C:\AdwCleaner\AdwCleaner[S160].txt - [13290 Bytes] - [06/12/2016 16:33:41]
C:\AdwCleaner\AdwCleaner[S161].txt - [13366 Bytes] - [06/12/2016 16:46:50]
C:\AdwCleaner\AdwCleaner[S162].txt - [13443 Bytes] - [07/12/2016 13:57:00]
C:\AdwCleaner\AdwCleaner[S163].txt - [13519 Bytes] - [08/12/2016 10:46:10]
C:\AdwCleaner\AdwCleaner[S164].txt - [13594 Bytes] - [08/12/2016 11:31:09]
C:\AdwCleaner\AdwCleaner[S165].txt - [13670 Bytes] - [08/12/2016 14:50:46]
C:\AdwCleaner\AdwCleaner[S166].txt - [13746 Bytes] - [08/12/2016 15:23:17]
C:\AdwCleaner\AdwCleaner[S167].txt - [13822 Bytes] - [08/12/2016 15:28:16]
C:\AdwCleaner\AdwCleaner[S168].txt - [13898 Bytes] - [08/12/2016 18:00:07]
C:\AdwCleaner\AdwCleaner[S169].txt - [13974 Bytes] - [08/12/2016 18:01:42]
C:\AdwCleaner\AdwCleaner[S16].txt - [2528 Bytes] - [14/11/2016 23:20:42]
C:\AdwCleaner\AdwCleaner[S170].txt - [14050 Bytes] - [08/12/2016 20:52:11]
C:\AdwCleaner\AdwCleaner[S171].txt - [14126 Bytes] - [08/12/2016 21:31:48]
C:\AdwCleaner\AdwCleaner[S172].txt - [14202 Bytes] - [08/12/2016 21:52:31]
C:\AdwCleaner\AdwCleaner[S173].txt - [14278 Bytes] - [09/12/2016 00:08:15]
C:\AdwCleaner\AdwCleaner[S174].txt - [14355 Bytes] - [09/12/2016 08:52:05]
C:\AdwCleaner\AdwCleaner[S175].txt - [14430 Bytes] - [09/12/2016 11:28:22]
C:\AdwCleaner\AdwCleaner[S176].txt - [14506 Bytes] - [09/12/2016 11:55:48]
C:\AdwCleaner\AdwCleaner[S177].txt - [14582 Bytes] - [09/12/2016 17:24:39]
C:\AdwCleaner\AdwCleaner[S178].txt - [14658 Bytes] - [09/12/2016 18:53:08]
C:\AdwCleaner\AdwCleaner[S179].txt - [14734 Bytes] - [09/12/2016 19:30:06]
C:\AdwCleaner\AdwCleaner[S17].txt - [2602 Bytes] - [15/11/2016 08:19:42]
C:\AdwCleaner\AdwCleaner[S180].txt - [14811 Bytes] - [10/12/2016 21:35:22]
C:\AdwCleaner\AdwCleaner[S181].txt - [14886 Bytes] - [10/12/2016 22:37:59]
C:\AdwCleaner\AdwCleaner[S182].txt - [14962 Bytes] - [11/12/2016 00:02:51]
C:\AdwCleaner\AdwCleaner[S183].txt - [15039 Bytes] - [11/12/2016 22:34:10]
C:\AdwCleaner\AdwCleaner[S184].txt - [15114 Bytes] - [11/12/2016 23:04:56]
C:\AdwCleaner\AdwCleaner[S185].txt - [15190 Bytes] - [12/12/2016 00:01:53]
C:\AdwCleaner\AdwCleaner[S186].txt - [15266 Bytes] - [12/12/2016 09:45:59]
C:\AdwCleaner\AdwCleaner[S187].txt - [15342 Bytes] - [12/12/2016 10:17:17]
C:\AdwCleaner\AdwCleaner[S188].txt - [15418 Bytes] - [12/12/2016 20:21:56]
C:\AdwCleaner\AdwCleaner[S189].txt - [15494 Bytes] - [12/12/2016 20:57:49]
C:\AdwCleaner\AdwCleaner[S18].txt - [2676 Bytes] - [15/11/2016 09:14:06]
C:\AdwCleaner\AdwCleaner[S190].txt - [15570 Bytes] - [12/12/2016 23:03:19]
C:\AdwCleaner\AdwCleaner[S191].txt - [15646 Bytes] - [12/12/2016 23:31:35]
C:\AdwCleaner\AdwCleaner[S192].txt - [15723 Bytes] - [13/12/2016 10:14:08]
C:\AdwCleaner\AdwCleaner[S193].txt - [15798 Bytes] - [13/12/2016 17:22:13]
C:\AdwCleaner\AdwCleaner[S194].txt - [15874 Bytes] - [13/12/2016 20:52:02]
C:\AdwCleaner\AdwCleaner[S195].txt - [15950 Bytes] - [13/12/2016 21:19:02]
C:\AdwCleaner\AdwCleaner[S196].txt - [16026 Bytes] - [13/12/2016 22:17:13]
C:\AdwCleaner\AdwCleaner[S197].txt - [16102 Bytes] - [13/12/2016 22:37:43]
C:\AdwCleaner\AdwCleaner[S198].txt - [16178 Bytes] - [13/12/2016 22:53:53]
C:\AdwCleaner\AdwCleaner[S199].txt - [16255 Bytes] - [14/12/2016 09:06:46]
C:\AdwCleaner\AdwCleaner[S19].txt - [2750 Bytes] - [15/11/2016 13:00:26]
C:\AdwCleaner\AdwCleaner[S1].txt - [1425 Bytes] - [13/11/2016 23:05:19]
C:\AdwCleaner\AdwCleaner[S200].txt - [16330 Bytes] - [14/12/2016 21:21:41]
C:\AdwCleaner\AdwCleaner[S201].txt - [16406 Bytes] - [14/12/2016 23:27:23]
C:\AdwCleaner\AdwCleaner[S202].txt - [16483 Bytes] - [15/12/2016 11:42:12]
C:\AdwCleaner\AdwCleaner[S203].txt - [16558 Bytes] - [15/12/2016 11:56:12]
C:\AdwCleaner\AdwCleaner[S204].txt - [16634 Bytes] - [15/12/2016 19:58:15]
C:\AdwCleaner\AdwCleaner[S205].txt - [16711 Bytes] - [15/12/2016 23:33:00]
C:\AdwCleaner\AdwCleaner[S206].txt - [16787 Bytes] - [16/12/2016 10:03:11]
C:\AdwCleaner\AdwCleaner[S207].txt - [16863 Bytes] - [16/12/2016 14:24:02]
C:\AdwCleaner\AdwCleaner[S208].txt - [16939 Bytes] - [16/12/2016 17:40:12]
C:\AdwCleaner\AdwCleaner[S209].txt - [17015 Bytes] - [16/12/2016 19:15:54]
C:\AdwCleaner\AdwCleaner[S20].txt - [2824 Bytes] - [15/11/2016 13:45:31]
C:\AdwCleaner\AdwCleaner[S210].txt - [17091 Bytes] - [16/12/2016 23:29:21]
C:\AdwCleaner\AdwCleaner[S211].txt - [17168 Bytes] - [17/12/2016 10:57:06]
C:\AdwCleaner\AdwCleaner[S212].txt - [17244 Bytes] - [17/12/2016 14:17:49]
C:\AdwCleaner\AdwCleaner[S213].txt - [17319 Bytes] - [17/12/2016 23:56:22]
C:\AdwCleaner\AdwCleaner[S214].txt - [17396 Bytes] - [18/12/2016 11:16:01]
C:\AdwCleaner\AdwCleaner[S215].txt - [17471 Bytes] - [18/12/2016 19:54:33]
C:\AdwCleaner\AdwCleaner[S216].txt - [17547 Bytes] - [18/12/2016 21:10:10]
C:\AdwCleaner\AdwCleaner[S217].txt - [17623 Bytes] - [18/12/2016 23:13:11]
C:\AdwCleaner\AdwCleaner[S218].txt - [17699 Bytes] - [19/12/2016 09:50:27]
C:\AdwCleaner\AdwCleaner[S219].txt - [17775 Bytes] - [19/12/2016 14:58:14]
C:\AdwCleaner\AdwCleaner[S21].txt - [2898 Bytes] - [15/11/2016 14:36:35]
C:\AdwCleaner\AdwCleaner[S220].txt - [17851 Bytes] - [19/12/2016 19:21:59]
C:\AdwCleaner\AdwCleaner[S221].txt - [17928 Bytes] - [19/12/2016 21:28:21]
C:\AdwCleaner\AdwCleaner[S222].txt - [18003 Bytes] - [19/12/2016 21:31:05]
C:\AdwCleaner\AdwCleaner[S223].txt - [18079 Bytes] - [19/12/2016 21:42:46]
C:\AdwCleaner\AdwCleaner[S224].txt - [18155 Bytes] - [19/12/2016 22:10:29]
C:\AdwCleaner\AdwCleaner[S225].txt - [18231 Bytes] - [19/12/2016 23:25:02]
C:\AdwCleaner\AdwCleaner[S226].txt - [18307 Bytes] - [19/12/2016 23:35:44]
C:\AdwCleaner\AdwCleaner[S227].txt - [18383 Bytes] - [20/12/2016 00:20:52]
C:\AdwCleaner\AdwCleaner[S228].txt - [18459 Bytes] - [20/12/2016 08:58:19]
C:\AdwCleaner\AdwCleaner[S229].txt - [18535 Bytes] - [20/12/2016 10:48:33]
C:\AdwCleaner\AdwCleaner[S22].txt - [2972 Bytes] - [15/11/2016 14:58:47]
C:\AdwCleaner\AdwCleaner[S230].txt - [18611 Bytes] - [20/12/2016 14:01:41]
C:\AdwCleaner\AdwCleaner[S231].txt - [18687 Bytes] - [20/12/2016 14:09:01]
C:\AdwCleaner\AdwCleaner[S232].txt - [18763 Bytes] - [20/12/2016 14:25:23]
C:\AdwCleaner\AdwCleaner[S233].txt - [18839 Bytes] - [20/12/2016 18:01:59]
C:\AdwCleaner\AdwCleaner[S234].txt - [18915 Bytes] - [20/12/2016 23:48:22]
C:\AdwCleaner\AdwCleaner[S235].txt - [18992 Bytes] - [21/12/2016 10:11:52]
C:\AdwCleaner\AdwCleaner[S236].txt - [19067 Bytes] - [21/12/2016 22:44:41]
C:\AdwCleaner\AdwCleaner[S237].txt - [19143 Bytes] - [21/12/2016 23:10:02]
C:\AdwCleaner\AdwCleaner[S238].txt - [19219 Bytes] - [22/12/2016 00:04:23]
C:\AdwCleaner\AdwCleaner[S239].txt - [19295 Bytes] - [22/12/2016 10:48:00]
C:\AdwCleaner\AdwCleaner[S23].txt - [3046 Bytes] - [15/11/2016 15:10:59]
C:\AdwCleaner\AdwCleaner[S240].txt - [19372 Bytes] - [23/12/2016 11:07:58]
C:\AdwCleaner\AdwCleaner[S241].txt - [19447 Bytes] - [23/12/2016 14:11:38]
C:\AdwCleaner\AdwCleaner[S242].txt - [19523 Bytes] - [23/12/2016 14:16:46]
C:\AdwCleaner\AdwCleaner[S243].txt - [19599 Bytes] - [23/12/2016 17:03:19]
C:\AdwCleaner\AdwCleaner[S244].txt - [19675 Bytes] - [23/12/2016 17:51:27]
C:\AdwCleaner\AdwCleaner[S245].txt - [19751 Bytes] - [23/12/2016 18:14:36]
C:\AdwCleaner\AdwCleaner[S246].txt - [19827 Bytes] - [23/12/2016 20:54:31]
C:\AdwCleaner\AdwCleaner[S247].txt - [19904 Bytes] - [24/12/2016 00:05:47]
C:\AdwCleaner\AdwCleaner[S248].txt - [19979 Bytes] - [24/12/2016 09:54:13]
C:\AdwCleaner\AdwCleaner[S249].txt - [20055 Bytes] - [24/12/2016 11:23:35]
C:\AdwCleaner\AdwCleaner[S24].txt - [3120 Bytes] - [15/11/2016 15:17:56]
C:\AdwCleaner\AdwCleaner[S250].txt - [20131 Bytes] - [24/12/2016 17:10:51]
C:\AdwCleaner\AdwCleaner[S251].txt - [20207 Bytes] - [24/12/2016 19:01:07]
C:\AdwCleaner\AdwCleaner[S252].txt - [20283 Bytes] - [24/12/2016 19:28:40]
C:\AdwCleaner\AdwCleaner[S253].txt - [20359 Bytes] - [24/12/2016 22:56:49]
C:\AdwCleaner\AdwCleaner[S254].txt - [20435 Bytes] - [25/12/2016 10:37:40]
C:\AdwCleaner\AdwCleaner[S255].txt - [20511 Bytes] - [25/12/2016 13:25:00]
C:\AdwCleaner\AdwCleaner[S256].txt - [20587 Bytes] - [25/12/2016 19:18:11]
C:\AdwCleaner\AdwCleaner[S257].txt - [20663 Bytes] - [25/12/2016 23:19:30]
C:\AdwCleaner\AdwCleaner[S258].txt - [20739 Bytes] - [26/12/2016 00:10:00]
C:\AdwCleaner\AdwCleaner[S259].txt - [20816 Bytes] - [26/12/2016 11:32:58]
C:\AdwCleaner\AdwCleaner[S25].txt - [3194 Bytes] - [15/11/2016 15:40:14]
C:\AdwCleaner\AdwCleaner[S260].txt - [20891 Bytes] - [26/12/2016 13:50:31]
C:\AdwCleaner\AdwCleaner[S261].txt - [20968 Bytes] - [26/12/2016 17:06:55]
C:\AdwCleaner\AdwCleaner[S262].txt - [21044 Bytes] - [26/12/2016 20:02:15]
C:\AdwCleaner\AdwCleaner[S263].txt - [21119 Bytes] - [26/12/2016 20:37:34]
C:\AdwCleaner\AdwCleaner[S264].txt - [21195 Bytes] - [26/12/2016 20:47:42]
C:\AdwCleaner\AdwCleaner[S265].txt - [21271 Bytes] - [27/12/2016 08:26:52]
C:\AdwCleaner\AdwCleaner[S266].txt - [21347 Bytes] - [27/12/2016 09:29:05]
C:\AdwCleaner\AdwCleaner[S267].txt - [21423 Bytes] - [27/12/2016 10:43:36]
C:\AdwCleaner\AdwCleaner[S268].txt - [21499 Bytes] - [27/12/2016 10:51:24]
C:\AdwCleaner\AdwCleaner[S269].txt - [21575 Bytes] - [27/12/2016 12:10:49]
C:\AdwCleaner\AdwCleaner[S26].txt - [3268 Bytes] - [15/11/2016 15:51:17]
C:\AdwCleaner\AdwCleaner[S270].txt - [21651 Bytes] - [27/12/2016 14:10:14]
C:\AdwCleaner\AdwCleaner[S271].txt - [21727 Bytes] - [27/12/2016 14:24:28]
C:\AdwCleaner\AdwCleaner[S272].txt - [21803 Bytes] - [27/12/2016 14:25:09]
C:\AdwCleaner\AdwCleaner[S273].txt - [21879 Bytes] - [27/12/2016 15:02:19]
C:\AdwCleaner\AdwCleaner[S274].txt - [21955 Bytes] - [27/12/2016 19:21:55]
C:\AdwCleaner\AdwCleaner[S275].txt - [22031 Bytes] - [27/12/2016 19:59:43]
C:\AdwCleaner\AdwCleaner[S276].txt - [22107 Bytes] - [27/12/2016 21:15:56]
C:\AdwCleaner\AdwCleaner[S277].txt - [22183 Bytes] - [27/12/2016 22:47:22]
C:\AdwCleaner\AdwCleaner[S278].txt - [22259 Bytes] - [27/12/2016 22:54:20]
C:\AdwCleaner\AdwCleaner[S279].txt - [22335 Bytes] - [27/12/2016 23:17:58]
C:\AdwCleaner\AdwCleaner[S27].txt - [3342 Bytes] - [15/11/2016 16:05:47]
C:\AdwCleaner\AdwCleaner[S280].txt - [22411 Bytes] - [28/12/2016 09:54:11]
C:\AdwCleaner\AdwCleaner[S281].txt - [22487 Bytes] - [28/12/2016 11:15:52]
C:\AdwCleaner\AdwCleaner[S282].txt - [22563 Bytes] - [28/12/2016 15:25:20]
C:\AdwCleaner\AdwCleaner[S283].txt - [22639 Bytes] - [28/12/2016 17:05:47]
C:\AdwCleaner\AdwCleaner[S284].txt - [22715 Bytes] - [28/12/2016 17:58:10]
C:\AdwCleaner\AdwCleaner[S285].txt - [22791 Bytes] - [28/12/2016 19:56:26]
C:\AdwCleaner\AdwCleaner[S286].txt - [22867 Bytes] - [28/12/2016 23:23:09]
C:\AdwCleaner\AdwCleaner[S287].txt - [22943 Bytes] - [29/12/2016 11:59:55]
C:\AdwCleaner\AdwCleaner[S288].txt - [23020 Bytes] - [29/12/2016 16:26:53]
C:\AdwCleaner\AdwCleaner[S289].txt - [23095 Bytes] - [29/12/2016 17:08:31]
C:\AdwCleaner\AdwCleaner[S28].txt - [3416 Bytes] - [15/11/2016 16:08:32]
C:\AdwCleaner\AdwCleaner[S290].txt - [23171 Bytes] - [29/12/2016 20:57:31]
C:\AdwCleaner\AdwCleaner[S291].txt - [23247 Bytes] - [29/12/2016 21:06:19]
C:\AdwCleaner\AdwCleaner[S292].txt - [23324 Bytes] - [30/12/2016 09:38:22]
C:\AdwCleaner\AdwCleaner[S293].txt - [23399 Bytes] - [30/12/2016 10:50:22]
C:\AdwCleaner\AdwCleaner[S294].txt - [23475 Bytes] - [30/12/2016 13:08:15]
C:\AdwCleaner\AdwCleaner[S295].txt - [23551 Bytes] - [30/12/2016 14:11:43]
C:\AdwCleaner\AdwCleaner[S296].txt - [23627 Bytes] - [30/12/2016 19:58:45]
C:\AdwCleaner\AdwCleaner[S297].txt - [23703 Bytes] - [30/12/2016 20:01:12]
C:\AdwCleaner\AdwCleaner[S298].txt - [23780 Bytes] - [31/12/2016 12:30:41]
C:\AdwCleaner\AdwCleaner[S299].txt - [23855 Bytes] - [31/12/2016 13:19:55]
C:\AdwCleaner\AdwCleaner[S29].txt - [3490 Bytes] - [15/11/2016 16:10:34]
C:\AdwCleaner\AdwCleaner[S2].txt - [1498 Bytes] - [13/11/2016 23:06:20]
C:\AdwCleaner\AdwCleaner[S300].txt - [23931 Bytes] - [31/12/2016 13:38:20]
C:\AdwCleaner\AdwCleaner[S301].txt - [24007 Bytes] - [31/12/2016 19:46:56]
C:\AdwCleaner\AdwCleaner[S302].txt - [24083 Bytes] - [31/12/2016 20:26:27]
C:\AdwCleaner\AdwCleaner[S303].txt - [24159 Bytes] - [01/01/2017 12:27:12]
C:\AdwCleaner\AdwCleaner[S304].txt - [24235 Bytes] - [01/01/2017 13:34:36]
C:\AdwCleaner\AdwCleaner[S305].txt - [24694 Bytes] - [02/01/2017 09:56:07]
C:\AdwCleaner\AdwCleaner[S306].txt - [24770 Bytes] - [02/01/2017 09:58:27]
C:\AdwCleaner\AdwCleaner[S307].txt - [24537 Bytes] - [02/01/2017 10:00:45]
C:\AdwCleaner\AdwCleaner[S308].txt - [24613 Bytes] - [02/01/2017 10:01:50]
C:\AdwCleaner\AdwCleaner[S309].txt - [24689 Bytes] - [02/01/2017 10:02:55]
C:\AdwCleaner\AdwCleaner[S30].txt - [3564 Bytes] - [15/11/2016 16:15:15]
C:\AdwCleaner\AdwCleaner[S310].txt - [24765 Bytes] - [02/01/2017 10:14:02]
C:\AdwCleaner\AdwCleaner[S311].txt - [24841 Bytes] - [02/01/2017 11:00:03]
C:\AdwCleaner\AdwCleaner[S312].txt - [24917 Bytes] - [02/01/2017 11:05:07]
C:\AdwCleaner\AdwCleaner[S313].txt - [24994 Bytes] - [02/01/2017 19:36:30]
C:\AdwCleaner\AdwCleaner[S314].txt - [25069 Bytes] - [02/01/2017 20:37:26]
C:\AdwCleaner\AdwCleaner[S315].txt - [25145 Bytes] - [02/01/2017 20:42:26]
C:\AdwCleaner\AdwCleaner[S316].txt - [25221 Bytes] - [02/01/2017 20:57:53]
C:\AdwCleaner\AdwCleaner[S317].txt - [25297 Bytes] - [02/01/2017 23:19:06]
C:\AdwCleaner\AdwCleaner[S318].txt - [25373 Bytes] - [03/01/2017 09:14:13]
C:\AdwCleaner\AdwCleaner[S319].txt - [25449 Bytes] - [03/01/2017 09:16:35]
C:\AdwCleaner\AdwCleaner[S31].txt - [3638 Bytes] - [15/11/2016 16:23:05]
C:\AdwCleaner\AdwCleaner[S320].txt - [25526 Bytes] - [03/01/2017 20:32:33]
C:\AdwCleaner\AdwCleaner[S321].txt - [25601 Bytes] - [03/01/2017 22:26:47]
C:\AdwCleaner\AdwCleaner[S322].txt - [25677 Bytes] - [03/01/2017 23:42:29]
C:\AdwCleaner\AdwCleaner[S323].txt - [25753 Bytes] - [04/01/2017 08:05:08]
C:\AdwCleaner\AdwCleaner[S324].txt - [25829 Bytes] - [04/01/2017 09:45:42]
C:\AdwCleaner\AdwCleaner[S325].txt - [25905 Bytes] - [04/01/2017 19:09:37]
C:\AdwCleaner\AdwCleaner[S326].txt - [25981 Bytes] - [04/01/2017 22:44:06]
C:\AdwCleaner\AdwCleaner[S327].txt - [26057 Bytes] - [05/01/2017 10:01:08]
C:\AdwCleaner\AdwCleaner[S328].txt - [26133 Bytes] - [05/01/2017 19:01:51]
C:\AdwCleaner\AdwCleaner[S329].txt - [26209 Bytes] - [05/01/2017 19:14:38]
C:\AdwCleaner\AdwCleaner[S32].txt - [3712 Bytes] - [15/11/2016 16:46:25]
C:\AdwCleaner\AdwCleaner[S330].txt - [26286 Bytes] - [05/01/2017 22:58:06]
C:\AdwCleaner\AdwCleaner[S331].txt - [26361 Bytes] - [05/01/2017 23:40:04]
C:\AdwCleaner\AdwCleaner[S332].txt - [26437 Bytes] - [06/01/2017 15:48:12]
C:\AdwCleaner\AdwCleaner[S333].txt - [26514 Bytes] - [06/01/2017 16:37:57]
C:\AdwCleaner\AdwCleaner[S334].txt - [26589 Bytes] - [06/01/2017 17:07:18]
C:\AdwCleaner\AdwCleaner[S335].txt - [26665 Bytes] - [06/01/2017 22:41:50]
C:\AdwCleaner\AdwCleaner[S336].txt - [26741 Bytes] - [06/01/2017 23:25:25]
C:\AdwCleaner\AdwCleaner[S337].txt - [26817 Bytes] - [06/01/2017 23:33:27]
C:\AdwCleaner\AdwCleaner[S338].txt - [26893 Bytes] - [07/01/2017 20:50:16]
C:\AdwCleaner\AdwCleaner[S339].txt - [26969 Bytes] - [08/01/2017 00:10:39]
C:\AdwCleaner\AdwCleaner[S33].txt - [3786 Bytes] - [15/11/2016 16:50:53]
C:\AdwCleaner\AdwCleaner[S340].txt - [27045 Bytes] - [08/01/2017 19:16:57]
C:\AdwCleaner\AdwCleaner[S341].txt - [27121 Bytes] - [08/01/2017 21:07:40]
C:\AdwCleaner\AdwCleaner[S342].txt - [27197 Bytes] - [08/01/2017 21:13:58]
C:\AdwCleaner\AdwCleaner[S343].txt - [27273 Bytes] - [08/01/2017 22:57:19]
C:\AdwCleaner\AdwCleaner[S344].txt - [27349 Bytes] - [09/01/2017 12:07:36]
C:\AdwCleaner\AdwCleaner[S345].txt - [27425 Bytes] - [09/01/2017 12:17:33]
C:\AdwCleaner\AdwCleaner[S346].txt - [27502 Bytes] - [09/01/2017 13:51:24]
C:\AdwCleaner\AdwCleaner[S347].txt - [27578 Bytes] - [09/01/2017 23:07:21]
C:\AdwCleaner\AdwCleaner[S348].txt - [27653 Bytes] - [09/01/2017 23:37:54]
C:\AdwCleaner\AdwCleaner[S349].txt - [27729 Bytes] - [10/01/2017 11:16:09]
C:\AdwCleaner\AdwCleaner[S34].txt - [3860 Bytes] - [15/11/2016 16:53:47]
C:\AdwCleaner\AdwCleaner[S350].txt - [27805 Bytes] - [10/01/2017 13:54:56]
C:\AdwCleaner\AdwCleaner[S351].txt - [27881 Bytes] - [10/01/2017 21:38:01]
C:\AdwCleaner\AdwCleaner[S352].txt - [27957 Bytes] - [10/01/2017 23:00:30]
C:\AdwCleaner\AdwCleaner[S353].txt - [28033 Bytes] - [11/01/2017 08:38:20]
C:\AdwCleaner\AdwCleaner[S354].txt - [28110 Bytes] - [11/01/2017 23:08:46]
C:\AdwCleaner\AdwCleaner[S355].txt - [28185 Bytes] - [11/01/2017 23:10:10]
C:\AdwCleaner\AdwCleaner[S356].txt - [28261 Bytes] - [11/01/2017 23:56:45]
C:\AdwCleaner\AdwCleaner[S357].txt - [28337 Bytes] - [12/01/2017 10:10:40]
C:\AdwCleaner\AdwCleaner[S358].txt - [28413 Bytes] - [12/01/2017 19:45:00]
C:\AdwCleaner\AdwCleaner[S359].txt - [28489 Bytes] - [12/01/2017 23:00:54]
C:\AdwCleaner\AdwCleaner[S35].txt - [3934 Bytes] - [15/11/2016 17:13:52]
C:\AdwCleaner\AdwCleaner[S360].txt - [28565 Bytes] - [13/01/2017 10:18:00]
C:\AdwCleaner\AdwCleaner[S361].txt - [28641 Bytes] - [13/01/2017 22:56:54]
C:\AdwCleaner\AdwCleaner[S362].txt - [28717 Bytes] - [14/01/2017 19:57:45]
C:\AdwCleaner\AdwCleaner[S363].txt - [28794 Bytes] - [15/01/2017 20:55:13]
C:\AdwCleaner\AdwCleaner[S364].txt - [28869 Bytes] - [15/01/2017 23:31:22]
C:\AdwCleaner\AdwCleaner[S365].txt - [28945 Bytes] - [16/01/2017 08:48:16]
C:\AdwCleaner\AdwCleaner[S366].txt - [29021 Bytes] - [16/01/2017 10:09:16]
C:\AdwCleaner\AdwCleaner[S367].txt - [29097 Bytes] - [16/01/2017 20:22:32]
C:\AdwCleaner\AdwCleaner[S368].txt - [29173 Bytes] - [16/01/2017 23:02:00]
C:\AdwCleaner\AdwCleaner[S369].txt - [29249 Bytes] - [16/01/2017 23:06:01]
C:\AdwCleaner\AdwCleaner[S36].txt - [4008 Bytes] - [15/11/2016 18:12:08]
C:\AdwCleaner\AdwCleaner[S370].txt - [29326 Bytes] - [18/01/2017 00:10:26]
C:\AdwCleaner\AdwCleaner[S371].txt - [29401 Bytes] - [18/01/2017 15:43:30]
C:\AdwCleaner\AdwCleaner[S372].txt - [29477 Bytes] - [18/01/2017 15:50:51]
C:\AdwCleaner\AdwCleaner[S373].txt - [29553 Bytes] - [18/01/2017 20:45:20]
C:\AdwCleaner\AdwCleaner[S374].txt - [29629 Bytes] - [18/01/2017 23:26:39]
C:\AdwCleaner\AdwCleaner[S375].txt - [29706 Bytes] - [19/01/2017 09:33:23]
C:\AdwCleaner\AdwCleaner[S376].txt - [29781 Bytes] - [19/01/2017 17:59:59]
C:\AdwCleaner\AdwCleaner[S377].txt - [29857 Bytes] - [19/01/2017 18:06:16]
C:\AdwCleaner\AdwCleaner[S378].txt - [29933 Bytes] - [19/01/2017 18:21:59]
C:\AdwCleaner\AdwCleaner[S379].txt - [30009 Bytes] - [19/01/2017 20:09:08]
C:\AdwCleaner\AdwCleaner[S37].txt - [4082 Bytes] - [16/11/2016 09:08:16]
C:\AdwCleaner\AdwCleaner[S380].txt - [30085 Bytes] - [20/01/2017 11:59:19]
C:\AdwCleaner\AdwCleaner[S381].txt - [30162 Bytes] - [20/01/2017 18:21:40]
C:\AdwCleaner\AdwCleaner[S382].txt - [30237 Bytes] - [20/01/2017 18:25:23]
C:\AdwCleaner\AdwCleaner[S383].txt - [30314 Bytes] - [20/01/2017 23:55:01]
C:\AdwCleaner\AdwCleaner[S384].txt - [30389 Bytes] - [21/01/2017 11:40:13]
C:\AdwCleaner\AdwCleaner[S385].txt - [30465 Bytes] - [21/01/2017 12:50:15]
C:\AdwCleaner\AdwCleaner[S386].txt - [30542 Bytes] - [21/01/2017 23:51:01]
C:\AdwCleaner\AdwCleaner[S387].txt - [30617 Bytes] - [22/01/2017 00:01:10]
C:\AdwCleaner\AdwCleaner[S388].txt - [30693 Bytes] - [22/01/2017 00:05:22]
C:\AdwCleaner\AdwCleaner[S389].txt - [30770 Bytes] - [22/01/2017 15:58:18]
C:\AdwCleaner\AdwCleaner[S38].txt - [4156 Bytes] - [16/11/2016 09:31:37]
C:\AdwCleaner\AdwCleaner[S390].txt - [30845 Bytes] - [22/01/2017 22:54:38]
C:\AdwCleaner\AdwCleaner[S391].txt - [30922 Bytes] - [23/01/2017 14:54:39]
C:\AdwCleaner\AdwCleaner[S392].txt - [30997 Bytes] - [23/01/2017 16:27:38]
C:\AdwCleaner\AdwCleaner[S393].txt - [31073 Bytes] - [23/01/2017 20:41:14]
C:\AdwCleaner\AdwCleaner[S394].txt - [31149 Bytes] - [23/01/2017 23:09:13]
C:\AdwCleaner\AdwCleaner[S395].txt - [31226 Bytes] - [24/01/2017 12:48:06]
C:\AdwCleaner\AdwCleaner[S396].txt - [31302 Bytes] - [24/01/2017 22:59:36]
C:\AdwCleaner\AdwCleaner[S397].txt - [31377 Bytes] - [24/01/2017 23:01:10]
C:\AdwCleaner\AdwCleaner[S398].txt - [31453 Bytes] - [25/01/2017 10:23:39]
C:\AdwCleaner\AdwCleaner[S399].txt - [31530 Bytes] - [25/01/2017 23:01:56]
C:\AdwCleaner\AdwCleaner[S39].txt - [4230 Bytes] - [16/11/2016 10:00:02]
C:\AdwCleaner\AdwCleaner[S3].txt - [1571 Bytes] - [14/11/2016 00:01:53]
C:\AdwCleaner\AdwCleaner[S400].txt - [31605 Bytes] - [25/01/2017 23:09:58]
C:\AdwCleaner\AdwCleaner[S401].txt - [31681 Bytes] - [25/01/2017 23:11:32]
C:\AdwCleaner\AdwCleaner[S402].txt - [31757 Bytes] - [25/01/2017 23:15:25]
C:\AdwCleaner\AdwCleaner[S403].txt - [31833 Bytes] - [25/01/2017 23:20:46]
C:\AdwCleaner\AdwCleaner[S404].txt - [31909 Bytes] - [25/01/2017 23:23:51]
C:\AdwCleaner\AdwCleaner[S405].txt - [31985 Bytes] - [26/01/2017 09:55:34]
C:\AdwCleaner\AdwCleaner[S406].txt - [32061 Bytes] - [26/01/2017 10:05:46]
C:\AdwCleaner\AdwCleaner[S407].txt - [32138 Bytes] - [26/01/2017 22:21:14]
C:\AdwCleaner\AdwCleaner[S408].txt - [32213 Bytes] - [26/01/2017 23:31:39]
C:\AdwCleaner\AdwCleaner[S409].txt - [32289 Bytes] - [27/01/2017 11:29:59]
C:\AdwCleaner\AdwCleaner[S40].txt - [4304 Bytes] - [16/11/2016 10:43:57]
C:\AdwCleaner\AdwCleaner[S410].txt - [32365 Bytes] - [27/01/2017 12:04:45]
C:\AdwCleaner\AdwCleaner[S411].txt - [32442 Bytes] - [27/01/2017 14:59:53]
C:\AdwCleaner\AdwCleaner[S412].txt - [32517 Bytes] - [27/01/2017 15:06:59]
C:\AdwCleaner\AdwCleaner[S413].txt - [32593 Bytes] - [27/01/2017 22:38:56]
C:\AdwCleaner\AdwCleaner[S414].txt - [32669 Bytes] - [28/01/2017 00:10:06]
C:\AdwCleaner\AdwCleaner[S415].txt - [32746 Bytes] - [29/01/2017 00:56:21]
C:\AdwCleaner\AdwCleaner[S416].txt - [32821 Bytes] - [29/01/2017 17:10:14]
C:\AdwCleaner\AdwCleaner[S417].txt - [32897 Bytes] - [29/01/2017 18:42:52]
C:\AdwCleaner\AdwCleaner[S418].txt - [32973 Bytes] - [29/01/2017 20:37:30]
C:\AdwCleaner\AdwCleaner[S419].txt - [33050 Bytes] - [30/01/2017 19:11:02]
C:\AdwCleaner\AdwCleaner[S41].txt - [4378 Bytes] - [16/11/2016 10:57:34]
C:\AdwCleaner\AdwCleaner[S420].txt - [33126 Bytes] - [30/01/2017 23:10:13]
C:\AdwCleaner\AdwCleaner[S421].txt - [33201 Bytes] - [31/01/2017 10:18:29]
C:\AdwCleaner\AdwCleaner[S422].txt - [33277 Bytes] - [31/01/2017 18:43:42]
C:\AdwCleaner\AdwCleaner[S423].txt - [33353 Bytes] - [31/01/2017 20:24:10]
C:\AdwCleaner\AdwCleaner[S424].txt - [33429 Bytes] - [31/01/2017 23:19:52]
C:\AdwCleaner\AdwCleaner[S425].txt - [33506 Bytes] - [01/02/2017 09:58:38]
C:\AdwCleaner\AdwCleaner[S426].txt - [33581 Bytes] - [01/02/2017 20:35:12]
C:\AdwCleaner\AdwCleaner[S427].txt - [33658 Bytes] - [01/02/2017 23:28:33]
C:\AdwCleaner\AdwCleaner[S428].txt - [33733 Bytes] - [02/02/2017 10:14:14]
C:\AdwCleaner\AdwCleaner[S429].txt - [33809 Bytes] - [02/02/2017 14:09:03]
C:\AdwCleaner\AdwCleaner[S42].txt - [4452 Bytes] - [16/11/2016 11:12:57]
C:\AdwCleaner\AdwCleaner[S430].txt - [33885 Bytes] - [02/02/2017 18:14:18]
C:\AdwCleaner\AdwCleaner[S431].txt - [33962 Bytes] - [02/02/2017 18:56:54]
C:\AdwCleaner\AdwCleaner[S432].txt - [34037 Bytes] - [02/02/2017 22:27:21]
C:\AdwCleaner\AdwCleaner[S433].txt - [34114 Bytes] - [03/02/2017 08:15:05]
C:\AdwCleaner\AdwCleaner[S434].txt - [34190 Bytes] - [03/02/2017 21:11:14]
C:\AdwCleaner\AdwCleaner[S435].txt - [34265 Bytes] - [03/02/2017 23:57:22]
C:\AdwCleaner\AdwCleaner[S436].txt - [34342 Bytes] - [04/02/2017 12:31:38]
C:\AdwCleaner\AdwCleaner[S437].txt - [34417 Bytes] - [04/02/2017 12:35:48]
C:\AdwCleaner\AdwCleaner[S438].txt - [34493 Bytes] - [04/02/2017 23:33:22]
C:\AdwCleaner\AdwCleaner[S439].txt - [34569 Bytes] - [05/02/2017 00:19:13]
C:\AdwCleaner\AdwCleaner[S43].txt - [4526 Bytes] - [16/11/2016 11:33:01]
C:\AdwCleaner\AdwCleaner[S440].txt - [34645 Bytes] - [05/02/2017 00:21:28]
C:\AdwCleaner\AdwCleaner[S441].txt - [34721 Bytes] - [05/02/2017 00:29:04]
C:\AdwCleaner\AdwCleaner[S442].txt - [34797 Bytes] - [05/02/2017 14:24:20]
C:\AdwCleaner\AdwCleaner[S443].txt - [34873 Bytes] - [05/02/2017 16:43:49]
C:\AdwCleaner\AdwCleaner[S444].txt - [34949 Bytes] - [05/02/2017 18:38:15]
C:\AdwCleaner\AdwCleaner[S445].txt - [35025 Bytes] - [05/02/2017 21:08:02]
C:\AdwCleaner\AdwCleaner[S446].txt - [35101 Bytes] - [05/02/2017 23:08:13]
C:\AdwCleaner\AdwCleaner[S447].txt - [35177 Bytes] - [06/02/2017 10:57:03]
C:\AdwCleaner\AdwCleaner[S448].txt - [35253 Bytes] - [06/02/2017 14:46:25]
C:\AdwCleaner\AdwCleaner[S449].txt - [35329 Bytes] - [06/02/2017 18:36:06]
C:\AdwCleaner\AdwCleaner[S44].txt - [4600 Bytes] - [16/11/2016 11:34:41]
C:\AdwCleaner\AdwCleaner[S450].txt - [35405 Bytes] - [06/02/2017 21:34:11]
C:\AdwCleaner\AdwCleaner[S451].txt - [35481 Bytes] - [06/02/2017 21:35:58]
C:\AdwCleaner\AdwCleaner[S452].txt - [35557 Bytes] - [08/02/2017 10:26:59]
C:\AdwCleaner\AdwCleaner[S453].txt - [35633 Bytes] - [08/02/2017 10:47:17]
C:\AdwCleaner\AdwCleaner[S454].txt - [35709 Bytes] - [08/02/2017 13:29:27]
C:\AdwCleaner\AdwCleaner[S455].txt - [35785 Bytes] - [08/02/2017 20:41:00]
C:\AdwCleaner\AdwCleaner[S456].txt - [35862 Bytes] - [09/02/2017 11:42:29]
C:\AdwCleaner\AdwCleaner[S457].txt - [35937 Bytes] - [09/02/2017 13:26:06]
C:\AdwCleaner\AdwCleaner[S458].txt - [36013 Bytes] - [09/02/2017 13:31:40]
C:\AdwCleaner\AdwCleaner[S459].txt - [36089 Bytes] - [09/02/2017 20:16:51]
C:\AdwCleaner\AdwCleaner[S45].txt - [4674 Bytes] - [16/11/2016 22:19:41]
C:\AdwCleaner\AdwCleaner[S460].txt - [36165 Bytes] - [09/02/2017 22:27:05]
C:\AdwCleaner\AdwCleaner[S461].txt - [36241 Bytes] - [09/02/2017 22:37:09]
C:\AdwCleaner\AdwCleaner[S462].txt - [36317 Bytes] - [09/02/2017 22:41:36]
C:\AdwCleaner\AdwCleaner[S463].txt - [36393 Bytes] - [10/02/2017 00:11:07]
C:\AdwCleaner\AdwCleaner[S464].txt - [36469 Bytes] - [11/02/2017 13:57:43]
C:\AdwCleaner\AdwCleaner[S465].txt - [36545 Bytes] - [11/02/2017 22:32:57]
C:\AdwCleaner\AdwCleaner[S466].txt - [36621 Bytes] - [11/02/2017 22:34:33]
C:\AdwCleaner\AdwCleaner[S467].txt - [36697 Bytes] - [11/02/2017 22:47:32]
C:\AdwCleaner\AdwCleaner[S468].txt - [36773 Bytes] - [12/02/2017 00:34:49]
C:\AdwCleaner\AdwCleaner[S469].txt - [36849 Bytes] - [12/02/2017 15:00:11]
C:\AdwCleaner\AdwCleaner[S46].txt - [4748 Bytes] - [16/11/2016 22:32:11]
C:\AdwCleaner\AdwCleaner[S470].txt - [36925 Bytes] - [12/02/2017 20:31:40]
C:\AdwCleaner\AdwCleaner[S471].txt - [37001 Bytes] - [12/02/2017 21:47:52]
C:\AdwCleaner\AdwCleaner[S472].txt - [37078 Bytes] - [12/02/2017 23:35:22]
C:\AdwCleaner\AdwCleaner[S473].txt - [37153 Bytes] - [13/02/2017 11:45:23]
C:\AdwCleaner\AdwCleaner[S474].txt - [37229 Bytes] - [13/02/2017 14:35:53]
C:\AdwCleaner\AdwCleaner[S475].txt - [37305 Bytes] - [13/02/2017 15:18:48]
C:\AdwCleaner\AdwCleaner[S476].txt - [37381 Bytes] - [13/02/2017 17:44:24]
C:\AdwCleaner\AdwCleaner[S477].txt - [37458 Bytes] - [13/02/2017 22:52:34]
C:\AdwCleaner\AdwCleaner[S478].txt - [37533 Bytes] - [14/02/2017 09:16:59]
C:\AdwCleaner\AdwCleaner[S479].txt - [37609 Bytes] - [14/02/2017 16:32:03]
C:\AdwCleaner\AdwCleaner[S47].txt - [4822 Bytes] - [16/11/2016 22:57:00]
C:\AdwCleaner\AdwCleaner[S480].txt - [37685 Bytes] - [14/02/2017 23:50:49]
C:\AdwCleaner\AdwCleaner[S481].txt - [37761 Bytes] - [15/02/2017 11:41:19]
C:\AdwCleaner\AdwCleaner[S482].txt - [37837 Bytes] - [15/02/2017 12:56:10]
C:\AdwCleaner\AdwCleaner[S483].txt - [37914 Bytes] - [16/02/2017 00:22:57]
C:\AdwCleaner\AdwCleaner[S484].txt - [37989 Bytes] - [16/02/2017 00:24:04]
C:\AdwCleaner\AdwCleaner[S485].txt - [38065 Bytes] - [16/02/2017 00:30:59]
C:\AdwCleaner\AdwCleaner[S486].txt - [38141 Bytes] - [16/02/2017 00:33:28]
C:\AdwCleaner\AdwCleaner[S487].txt - [38217 Bytes] - [16/02/2017 09:43:31]
C:\AdwCleaner\AdwCleaner[S488].txt - [38293 Bytes] - [16/02/2017 11:42:14]
C:\AdwCleaner\AdwCleaner[S489].txt - [38369 Bytes] - [16/02/2017 11:50:24]
C:\AdwCleaner\AdwCleaner[S48].txt - [4896 Bytes] - [16/11/2016 23:32:15]
C:\AdwCleaner\AdwCleaner[S490].txt - [38445 Bytes] - [16/02/2017 15:21:05]
C:\AdwCleaner\AdwCleaner[S491].txt - [38521 Bytes] - [16/02/2017 22:15:37]
C:\AdwCleaner\AdwCleaner[S492].txt - [38597 Bytes] - [17/02/2017 10:06:46]
C:\AdwCleaner\AdwCleaner[S493].txt - [38673 Bytes] - [17/02/2017 19:07:20]
C:\AdwCleaner\AdwCleaner[S494].txt - [38749 Bytes] - [17/02/2017 22:17:36]
C:\AdwCleaner\AdwCleaner[S495].txt - [38825 Bytes] - [17/02/2017 22:59:44]
C:\AdwCleaner\AdwCleaner[S496].txt - [38901 Bytes] - [17/02/2017 23:16:37]
C:\AdwCleaner\AdwCleaner[S497].txt - [38977 Bytes] - [18/02/2017 11:13:31]
C:\AdwCleaner\AdwCleaner[S498].txt - [39053 Bytes] - [18/02/2017 14:06:06]
C:\AdwCleaner\AdwCleaner[S499].txt - [39129 Bytes] - [19/02/2017 21:02:01]
C:\AdwCleaner\AdwCleaner[S49].txt - [4970 Bytes] - [17/11/2016 18:10:14]
C:\AdwCleaner\AdwCleaner[S4].txt - [1644 Bytes] - [14/11/2016 00:03:31]
C:\AdwCleaner\AdwCleaner[S500].txt - [39205 Bytes] - [19/02/2017 23:02:41]
C:\AdwCleaner\AdwCleaner[S501].txt - [39281 Bytes] - [19/02/2017 23:10:07]
C:\AdwCleaner\AdwCleaner[S502].txt - [39357 Bytes] - [20/02/2017 20:41:18]
C:\AdwCleaner\AdwCleaner[S503].txt - [39433 Bytes] - [20/02/2017 23:02:34]
C:\AdwCleaner\AdwCleaner[S504].txt - [39510 Bytes] - [21/02/2017 10:49:14]
C:\AdwCleaner\AdwCleaner[S505].txt - [39585 Bytes] - [21/02/2017 13:40:41]
C:\AdwCleaner\AdwCleaner[S506].txt - [39661 Bytes] - [21/02/2017 13:48:10]
C:\AdwCleaner\AdwCleaner[S507].txt - [39737 Bytes] - [21/02/2017 23:45:44]
C:\AdwCleaner\AdwCleaner[S508].txt - [39814 Bytes] - [22/02/2017 20:55:43]
C:\AdwCleaner\AdwCleaner[S509].txt - [39889 Bytes] - [22/02/2017 23:35:51]
C:\AdwCleaner\AdwCleaner[S50].txt - [5044 Bytes] - [17/11/2016 19:30:02]
C:\AdwCleaner\AdwCleaner[S510].txt - [39966 Bytes] - [23/02/2017 10:22:05]
C:\AdwCleaner\AdwCleaner[S511].txt - [40041 Bytes] - [23/02/2017 10:32:19]
C:\AdwCleaner\AdwCleaner[S512].txt - [40117 Bytes] - [23/02/2017 11:51:42]
C:\AdwCleaner\AdwCleaner[S513].txt - [40194 Bytes] - [23/02/2017 13:50:51]
C:\AdwCleaner\AdwCleaner[S514].txt - [40269 Bytes] - [23/02/2017 14:13:20]
C:\AdwCleaner\AdwCleaner[S515].txt - [40346 Bytes] - [24/02/2017 00:05:14]
C:\AdwCleaner\AdwCleaner[S516].txt - [40422 Bytes] - [24/02/2017 21:11:01]
C:\AdwCleaner\AdwCleaner[S517].txt - [40497 Bytes] - [25/02/2017 00:15:39]
C:\AdwCleaner\AdwCleaner[S518].txt - [40573 Bytes] - [25/02/2017 15:04:46]
C:\AdwCleaner\AdwCleaner[S519].txt - [40649 Bytes] - [25/02/2017 21:19:59]
C:\AdwCleaner\AdwCleaner[S51].txt - [5118 Bytes] - [17/11/2016 19:54:05]
C:\AdwCleaner\AdwCleaner[S520].txt - [40725 Bytes] - [26/02/2017 03:07:47]
C:\AdwCleaner\AdwCleaner[S521].txt - [40802 Bytes] - [27/02/2017 10:25:02]
C:\AdwCleaner\AdwCleaner[S522].txt - [40877 Bytes] - [27/02/2017 23:56:36]
C:\AdwCleaner\AdwCleaner[S523].txt - [40954 Bytes] - [28/02/2017 23:21:56]
C:\AdwCleaner\AdwCleaner[S524].txt - [41029 Bytes] - [28/02/2017 23:23:41]
C:\AdwCleaner\AdwCleaner[S525].txt - [41105 Bytes] - [01/03/2017 11:13:32]
C:\AdwCleaner\AdwCleaner[S526].txt - [41181 Bytes] - [01/03/2017 11:19:22]
C:\AdwCleaner\AdwCleaner[S527].txt - [41257 Bytes] - [01/03/2017 22:25:53]
C:\AdwCleaner\AdwCleaner[S528].txt - [41333 Bytes] - [01/03/2017 23:45:26]
C:\AdwCleaner\AdwCleaner[S529].txt - [41410 Bytes] - [02/03/2017 09:55:51]
C:\AdwCleaner\AdwCleaner[S52].txt - [5192 Bytes] - [18/11/2016 11:34:08]
C:\AdwCleaner\AdwCleaner[S530].txt - [41485 Bytes] - [02/03/2017 17:18:39]
C:\AdwCleaner\AdwCleaner[S531].txt - [41562 Bytes] - [02/03/2017 23:52:19]
C:\AdwCleaner\AdwCleaner[S532].txt - [41637 Bytes] - [03/03/2017 11:38:02]
C:\AdwCleaner\AdwCleaner[S533].txt - [41713 Bytes] - [04/03/2017 01:34:29]
C:\AdwCleaner\AdwCleaner[S534].txt - [41789 Bytes] - [04/03/2017 02:27:47]
C:\AdwCleaner\AdwCleaner[S535].txt - [41865 Bytes] - [05/03/2017 00:12:39]
C:\AdwCleaner\AdwCleaner[S536].txt - [41941 Bytes] - [05/03/2017 11:01:17]
C:\AdwCleaner\AdwCleaner[S537].txt - [42017 Bytes] - [05/03/2017 15:56:27]
C:\AdwCleaner\AdwCleaner[S538].txt - [42093 Bytes] - [05/03/2017 18:41:54]
C:\AdwCleaner\AdwCleaner[S539].txt - [42169 Bytes] - [05/03/2017 23:12:44]
C:\AdwCleaner\AdwCleaner[S53].txt - [5266 Bytes] - [18/11/2016 12:58:39]
C:\AdwCleaner\AdwCleaner[S540].txt - [42245 Bytes] - [06/03/2017 23:44:54]
C:\AdwCleaner\AdwCleaner[S541].txt - [42322 Bytes] - [07/03/2017 11:27:10]
C:\AdwCleaner\AdwCleaner[S542].txt - [42397 Bytes] - [07/03/2017 21:19:06]
C:\AdwCleaner\AdwCleaner[S543].txt - [42473 Bytes] - [07/03/2017 23:42:21]
C:\AdwCleaner\AdwCleaner[S544].txt - [42549 Bytes] - [07/03/2017 23:52:08]
C:\AdwCleaner\AdwCleaner[S545].txt - [42625 Bytes] - [08/03/2017 10:58:24]
C:\AdwCleaner\AdwCleaner[S546].txt - [42701 Bytes] - [09/03/2017 00:12:08]
C:\AdwCleaner\AdwCleaner[S547].txt - [42778 Bytes] - [09/03/2017 11:28:54]
C:\AdwCleaner\AdwCleaner[S548].txt - [42853 Bytes] - [09/03/2017 11:37:58]
C:\AdwCleaner\AdwCleaner[S549].txt - [42929 Bytes] - [09/03/2017 12:07:05]
C:\AdwCleaner\AdwCleaner[S54].txt - [5340 Bytes] - [18/11/2016 13:09:06]
C:\AdwCleaner\AdwCleaner[S550].txt - [43005 Bytes] - [09/03/2017 13:12:06]
C:\AdwCleaner\AdwCleaner[S551].txt - [43081 Bytes] - [09/03/2017 17:09:44]
C:\AdwCleaner\AdwCleaner[S552].txt - [43166 Bytes] - [10/03/2017 00:57:34]
C:\AdwCleaner\AdwCleaner[S553].txt - [43241 Bytes] - [10/03/2017 01:01:50]
C:\AdwCleaner\AdwCleaner[S554].txt - [43317 Bytes] - [10/03/2017 01:06:53]
C:\AdwCleaner\AdwCleaner[S555].txt - [43393 Bytes] - [10/03/2017 01:13:04]
C:\AdwCleaner\AdwCleaner[S556].txt - [43469 Bytes] - [10/03/2017 01:25:37]
C:\AdwCleaner\AdwCleaner[S557].txt - [43545 Bytes] - [10/03/2017 01:31:02]
C:\AdwCleaner\AdwCleaner[S558].txt - [43621 Bytes] - [10/03/2017 01:44:15]
C:\AdwCleaner\AdwCleaner[S559].txt - [43697 Bytes] - [10/03/2017 10:51:06]
C:\AdwCleaner\AdwCleaner[S55].txt - [5414 Bytes] - [18/11/2016 13:26:40]
C:\AdwCleaner\AdwCleaner[S560].txt - [43773 Bytes] - [10/03/2017 10:52:14]
C:\AdwCleaner\AdwCleaner[S561].txt - [43849 Bytes] - [10/03/2017 10:56:41]
C:\AdwCleaner\AdwCleaner[S562].txt - [43925 Bytes] - [10/03/2017 10:58:39]
C:\AdwCleaner\AdwCleaner[S563].txt - [44001 Bytes] - [10/03/2017 11:11:32]
C:\AdwCleaner\AdwCleaner[S564].txt - [44077 Bytes] - [10/03/2017 11:16:43]
C:\AdwCleaner\AdwCleaner[S565].txt - [44153 Bytes] - [10/03/2017 11:25:08]
C:\AdwCleaner\AdwCleaner[S566].txt - [44229 Bytes] - [10/03/2017 11:26:24]
C:\AdwCleaner\AdwCleaner[S567].txt - [44305 Bytes] - [10/03/2017 11:34:10]
C:\AdwCleaner\AdwCleaner[S568].txt - [44381 Bytes] - [10/03/2017 11:44:31]
C:\AdwCleaner\AdwCleaner[S569].txt - [44457 Bytes] - [10/03/2017 12:11:57]
C:\AdwCleaner\AdwCleaner[S56].txt - [5488 Bytes] - [18/11/2016 15:00:51]
C:\AdwCleaner\AdwCleaner[S570].txt - [44533 Bytes] - [10/03/2017 13:16:38]
C:\AdwCleaner\AdwCleaner[S571].txt - [44609 Bytes] - [10/03/2017 14:35:42]
C:\AdwCleaner\AdwCleaner[S572].txt - [44666 Bytes] - [10/03/2017 19:48:28]
C:\AdwCleaner\AdwCleaner[S573].txt - [44741 Bytes] - [10/03/2017 20:22:52]
C:\AdwCleaner\AdwCleaner[S574].txt - [44817 Bytes] - [10/03/2017 20:26:42]
C:\AdwCleaner\AdwCleaner[S575].txt - [44893 Bytes] - [10/03/2017 21:30:33]
C:\AdwCleaner\AdwCleaner[S576].txt - [44969 Bytes] - [10/03/2017 21:31:40]
C:\AdwCleaner\AdwCleaner[S577].txt - [45045 Bytes] - [10/03/2017 21:45:26]
C:\AdwCleaner\AdwCleaner[S578].txt - [45121 Bytes] - [10/03/2017 23:19:09]
C:\AdwCleaner\AdwCleaner[S579].txt - [45197 Bytes] - [11/03/2017 00:18:48]
C:\AdwCleaner\AdwCleaner[S57].txt - [5562 Bytes] - [18/11/2016 15:54:30]
C:\AdwCleaner\AdwCleaner[S580].txt - [45273 Bytes] - [11/03/2017 00:28:58]
C:\AdwCleaner\AdwCleaner[S581].txt - [45362 Bytes] - [12/03/2017 11:55:40]
C:\AdwCleaner\AdwCleaner[S582].txt - [45437 Bytes] - [12/03/2017 13:47:40]
C:\AdwCleaner\AdwCleaner[S583].txt - [45513 Bytes] - [12/03/2017 14:32:28]
C:\AdwCleaner\AdwCleaner[S584].txt - [45589 Bytes] - [12/03/2017 14:56:37]
C:\AdwCleaner\AdwCleaner[S585].txt - [45665 Bytes] - [12/03/2017 15:12:15]
C:\AdwCleaner\AdwCleaner[S586].txt - [45741 Bytes] - [12/03/2017 15:23:01]
C:\AdwCleaner\AdwCleaner[S587].txt - [45817 Bytes] - [12/03/2017 20:17:25]
C:\AdwCleaner\AdwCleaner[S588].txt - [45893 Bytes] - [13/03/2017 10:56:13]
C:\AdwCleaner\AdwCleaner[S589].txt - [45969 Bytes] - [13/03/2017 10:59:57]
C:\AdwCleaner\AdwCleaner[S58].txt - [5636 Bytes] - [18/11/2016 16:00:03]
C:\AdwCleaner\AdwCleaner[S590].txt - [46046 Bytes] - [14/03/2017 08:48:15]
C:\AdwCleaner\AdwCleaner[S591].txt - [46121 Bytes] - [14/03/2017 09:42:33]
C:\AdwCleaner\AdwCleaner[S592].txt - [46198 Bytes] - [14/03/2017 18:56:23]
C:\AdwCleaner\AdwCleaner[S593].txt - [46273 Bytes] - [14/03/2017 20:57:24]
C:\AdwCleaner\AdwCleaner[S594].txt - [46350 Bytes] - [15/03/2017 09:02:36]
C:\AdwCleaner\AdwCleaner[S595].txt - [46425 Bytes] - [15/03/2017 17:02:14]
C:\AdwCleaner\AdwCleaner[S596].txt - [46502 Bytes] - [16/03/2017 08:57:59]
C:\AdwCleaner\AdwCleaner[S597].txt - [46577 Bytes] - [16/03/2017 11:07:53]
C:\AdwCleaner\AdwCleaner[S598].txt - [46653 Bytes] - [16/03/2017 23:27:26]
C:\AdwCleaner\AdwCleaner[S599].txt - [46730 Bytes] - [18/03/2017 00:06:28]
C:\AdwCleaner\AdwCleaner[S59].txt - [5710 Bytes] - [18/11/2016 16:07:33]
C:\AdwCleaner\AdwCleaner[S5].txt - [1717 Bytes] - [14/11/2016 09:04:44]
C:\AdwCleaner\AdwCleaner[S600].txt - [46806 Bytes] - [18/03/2017 23:56:55]
C:\AdwCleaner\AdwCleaner[S601].txt - [46881 Bytes] - [19/03/2017 10:47:19]
C:\AdwCleaner\AdwCleaner[S602].txt - [46957 Bytes] - [19/03/2017 19:42:31]
C:\AdwCleaner\AdwCleaner[S603].txt - [47034 Bytes] - [19/03/2017 23:00:23]
C:\AdwCleaner\AdwCleaner[S604].txt - [47109 Bytes] - [20/03/2017 09:01:36]
C:\AdwCleaner\AdwCleaner[S605].txt - [47186 Bytes] - [20/03/2017 20:25:14]
C:\AdwCleaner\AdwCleaner[S606].txt - [47261 Bytes] - [20/03/2017 23:23:19]
C:\AdwCleaner\AdwCleaner[S607].txt - [47337 Bytes] - [21/03/2017 08:55:36]
C:\AdwCleaner\AdwCleaner[S608].txt - [47413 Bytes] - [21/03/2017 23:15:32]
C:\AdwCleaner\AdwCleaner[S609].txt - [47489 Bytes] - [21/03/2017 23:37:18]
C:\AdwCleaner\AdwCleaner[S60].txt - [5784 Bytes] - [18/11/2016 16:18:48]
C:\AdwCleaner\AdwCleaner[S610].txt - [47565 Bytes] - [22/03/2017 09:13:18]
C:\AdwCleaner\AdwCleaner[S611].txt - [47641 Bytes] - [22/03/2017 21:27:29]
C:\AdwCleaner\AdwCleaner[S612].txt - [47717 Bytes] - [22/03/2017 23:13:50]
C:\AdwCleaner\AdwCleaner[S613].txt - [47793 Bytes] - [22/03/2017 23:24:03]
C:\AdwCleaner\AdwCleaner[S614].txt - [47869 Bytes] - [22/03/2017 23:31:57]
C:\AdwCleaner\AdwCleaner[S615].txt - [47946 Bytes] - [24/03/2017 14:37:57]
C:\AdwCleaner\AdwCleaner[S616].txt - [48021 Bytes] - [24/03/2017 23:27:12]
C:\AdwCleaner\AdwCleaner[S617].txt - [48097 Bytes] - [25/03/2017 14:17:43]
C:\AdwCleaner\AdwCleaner[S618].txt - [48173 Bytes] - [25/03/2017 23:07:57]
C:\AdwCleaner\AdwCleaner[S619].txt - [48249 Bytes] - [26/03/2017 12:50:54]
C:\AdwCleaner\AdwCleaner[S61].txt - [5858 Bytes] - [18/11/2016 16:42:36]
C:\AdwCleaner\AdwCleaner[S620].txt - [48325 Bytes] - [26/03/2017 22:26:01]
C:\AdwCleaner\AdwCleaner[S621].txt - [48402 Bytes] - [27/03/2017 10:30:25]
C:\AdwCleaner\AdwCleaner[S622].txt - [48477 Bytes] - [27/03/2017 12:38:46]
C:\AdwCleaner\AdwCleaner[S623].txt - [48553 Bytes] - [27/03/2017 23:06:05]
C:\AdwCleaner\AdwCleaner[S624].txt - [48630 Bytes] - [28/03/2017 11:15:03]
C:\AdwCleaner\AdwCleaner[S625].txt - [48705 Bytes] - [28/03/2017 11:17:45]
C:\AdwCleaner\AdwCleaner[S626].txt - [48781 Bytes] - [28/03/2017 13:20:13]
C:\AdwCleaner\AdwCleaner[S627].txt - [48857 Bytes] - [28/03/2017 15:26:07]
C:\AdwCleaner\AdwCleaner[S628].txt - [48934 Bytes] - [28/03/2017 19:35:44]
C:\AdwCleaner\AdwCleaner[S629].txt - [49009 Bytes] - [28/03/2017 19:36:41]
C:\AdwCleaner\AdwCleaner[S62].txt - [5932 Bytes] - [18/11/2016 17:26:09]
C:\AdwCleaner\AdwCleaner[S630].txt - [49085 Bytes] - [29/03/2017 11:24:25]
C:\AdwCleaner\AdwCleaner[S631].txt - [49161 Bytes] - [29/03/2017 12:07:37]
C:\AdwCleaner\AdwCleaner[S632].txt - [49237 Bytes] - [29/03/2017 15:57:12]
C:\AdwCleaner\AdwCleaner[S633].txt - [49314 Bytes] - [29/03/2017 21:34:51]
C:\AdwCleaner\AdwCleaner[S634].txt - [49389 Bytes] - [30/03/2017 10:12:13]
C:\AdwCleaner\AdwCleaner[S635].txt - [49465 Bytes] - [30/03/2017 14:08:14]
C:\AdwCleaner\AdwCleaner[S636].txt - [49541 Bytes] - [30/03/2017 14:50:14]
C:\AdwCleaner\AdwCleaner[S637].txt - [49618 Bytes] - [30/03/2017 19:23:10]
C:\AdwCleaner\AdwCleaner[S638].txt - [49693 Bytes] - [31/03/2017 09:17:49]
C:\AdwCleaner\AdwCleaner[S639].txt - [49769 Bytes] - [31/03/2017 15:23:48]
C:\AdwCleaner\AdwCleaner[S63].txt - [6006 Bytes] - [19/11/2016 21:44:44]
C:\AdwCleaner\AdwCleaner[S640].txt - [49846 Bytes] - [01/04/2017 11:09:10]
C:\AdwCleaner\AdwCleaner[S641].txt - [49921 Bytes] - [01/04/2017 11:26:32]
C:\AdwCleaner\AdwCleaner[S642].txt - [49997 Bytes] - [01/04/2017 23:03:10]
C:\AdwCleaner\AdwCleaner[S643].txt - [50074 Bytes] - [02/04/2017 09:53:47]
C:\AdwCleaner\AdwCleaner[S644].txt - [50149 Bytes] - [02/04/2017 14:20:18]
C:\AdwCleaner\AdwCleaner[S645].txt - [50225 Bytes] - [02/04/2017 18:19:01]
C:\AdwCleaner\AdwCleaner[S646].txt - [50301 Bytes] - [02/04/2017 19:03:12]
C:\AdwCleaner\AdwCleaner[S647].txt - [50377 Bytes] - [02/04/2017 21:27:17]
C:\AdwCleaner\AdwCleaner[S648].txt - [50453 Bytes] - [02/04/2017 22:45:24]
C:\AdwCleaner\AdwCleaner[S649].txt - [50529 Bytes] - [02/04/2017 23:11:25]
C:\AdwCleaner\AdwCleaner[S64].txt - [6080 Bytes] - [19/11/2016 22:47:28]
C:\AdwCleaner\AdwCleaner[S650].txt - [50606 Bytes] - [03/04/2017 09:04:54]
C:\AdwCleaner\AdwCleaner[S651].txt - [50681 Bytes] - [03/04/2017 22:53:07]
C:\AdwCleaner\AdwCleaner[S652].txt - [50757 Bytes] - [04/04/2017 08:20:01]
C:\AdwCleaner\AdwCleaner[S653].txt - [50833 Bytes] - [04/04/2017 08:30:47]
C:\AdwCleaner\AdwCleaner[S654].txt - [50910 Bytes] - [04/04/2017 23:02:03]
C:\AdwCleaner\AdwCleaner[S655].txt - [50985 Bytes] - [05/04/2017 09:22:22]
C:\AdwCleaner\AdwCleaner[S656].txt - [51061 Bytes] - [05/04/2017 19:42:34]
C:\AdwCleaner\AdwCleaner[S657].txt - [51137 Bytes] - [05/04/2017 20:27:32]
C:\AdwCleaner\AdwCleaner[S658].txt - [51213 Bytes] - [05/04/2017 22:21:45]
C:\AdwCleaner\AdwCleaner[S659].txt - [51289 Bytes] - [06/04/2017 08:25:02]
C:\AdwCleaner\AdwCleaner[S65].txt - [6154 Bytes] - [19/11/2016 23:26:47]
C:\AdwCleaner\AdwCleaner[S660].txt - [51366 Bytes] - [06/04/2017 22:47:52]
C:\AdwCleaner\AdwCleaner[S661].txt - [51441 Bytes] - [07/04/2017 09:30:13]
C:\AdwCleaner\AdwCleaner[S662].txt - [51517 Bytes] - [07/04/2017 23:08:38]
C:\AdwCleaner\AdwCleaner[S663].txt - [51593 Bytes] - [08/04/2017 10:15:59]
C:\AdwCleaner\AdwCleaner[S664].txt - [51669 Bytes] - [08/04/2017 23:31:37]
C:\AdwCleaner\AdwCleaner[S665].txt - [51745 Bytes] - [09/04/2017 15:16:52]
C:\AdwCleaner\AdwCleaner[S666].txt - [51821 Bytes] - [09/04/2017 19:09:02]
C:\AdwCleaner\AdwCleaner[S667].txt - [51897 Bytes] - [09/04/2017 22:03:12]
C:\AdwCleaner\AdwCleaner[S668].txt - [51973 Bytes] - [09/04/2017 22:08:13]
C:\AdwCleaner\AdwCleaner[S669].txt - [52049 Bytes] - [10/04/2017 08:43:03]
C:\AdwCleaner\AdwCleaner[S66].txt - [6228 Bytes] - [20/11/2016 00:25:58]
C:\AdwCleaner\AdwCleaner[S670].txt - [52125 Bytes] - [10/04/2017 15:35:32]
C:\AdwCleaner\AdwCleaner[S671].txt - [52201 Bytes] - [10/04/2017 16:45:03]
C:\AdwCleaner\AdwCleaner[S672].txt - [52278 Bytes] - [10/04/2017 21:46:01]
C:\AdwCleaner\AdwCleaner[S673].txt - [52353 Bytes] - [11/04/2017 16:02:25]
C:\AdwCleaner\AdwCleaner[S674].txt - [52429 Bytes] - [11/04/2017 16:27:46]
C:\AdwCleaner\AdwCleaner[S675].txt - [52506 Bytes] - [11/04/2017 21:59:33]
C:\AdwCleaner\AdwCleaner[S676].txt - [52581 Bytes] - [12/04/2017 00:17:29]
C:\AdwCleaner\AdwCleaner[S677].txt - [52657 Bytes] - [12/04/2017 00:32:27]
C:\AdwCleaner\AdwCleaner[S678].txt - [52733 Bytes] - [12/04/2017 17:33:56]
C:\AdwCleaner\AdwCleaner[S679].txt - [52809 Bytes] - [12/04/2017 23:10:53]
C:\AdwCleaner\AdwCleaner[S67].txt - [6302 Bytes] - [20/11/2016 19:04:03]
C:\AdwCleaner\AdwCleaner[S680].txt - [52886 Bytes] - [13/04/2017 19:59:47]
C:\AdwCleaner\AdwCleaner[S681].txt - [52961 Bytes] - [14/04/2017 10:50:42]
C:\AdwCleaner\AdwCleaner[S682].txt - [53037 Bytes] - [14/04/2017 15:35:26]
C:\AdwCleaner\AdwCleaner[S683].txt - [53114 Bytes] - [15/04/2017 16:00:02]
C:\AdwCleaner\AdwCleaner[S684].txt - [53189 Bytes] - [15/04/2017 21:11:09]
C:\AdwCleaner\AdwCleaner[S685].txt - [53266 Bytes] - [16/04/2017 18:17:12]
C:\AdwCleaner\AdwCleaner[S686].txt - [53341 Bytes] - [16/04/2017 20:56:08]
C:\AdwCleaner\AdwCleaner[S687].txt - [53417 Bytes] - [16/04/2017 21:32:34]
C:\AdwCleaner\AdwCleaner[S688].txt - [53494 Bytes] - [18/04/2017 10:56:09]
C:\AdwCleaner\AdwCleaner[S689].txt - [53569 Bytes] - [18/04/2017 17:41:36]
C:\AdwCleaner\AdwCleaner[S68].txt - [6376 Bytes] - [20/11/2016 19:17:33]
C:\AdwCleaner\AdwCleaner[S690].txt - [53646 Bytes] - [18/04/2017 23:18:21]
C:\AdwCleaner\AdwCleaner[S691].txt - [53721 Bytes] - [18/04/2017 23:33:21]
C:\AdwCleaner\AdwCleaner[S692].txt - [53797 Bytes] - [19/04/2017 09:48:31]
C:\AdwCleaner\AdwCleaner[S693].txt - [53874 Bytes] - [19/04/2017 22:24:13]
C:\AdwCleaner\AdwCleaner[S694].txt - [53949 Bytes] - [20/04/2017 09:58:47]
C:\AdwCleaner\AdwCleaner[S695].txt - [54025 Bytes] - [20/04/2017 10:33:20]
C:\AdwCleaner\AdwCleaner[S696].txt - [54101 Bytes] - [20/04/2017 15:15:20]
C:\AdwCleaner\AdwCleaner[S697].txt - [54177 Bytes] - [20/04/2017 18:21:25]
C:\AdwCleaner\AdwCleaner[S698].txt - [54253 Bytes] - [20/04/2017 23:28:14]
C:\AdwCleaner\AdwCleaner[S699].txt - [54330 Bytes] - [21/04/2017 12:24:10]
C:\AdwCleaner\AdwCleaner[S69].txt - [6450 Bytes] - [20/11/2016 20:11:55]
C:\AdwCleaner\AdwCleaner[S6].txt - [1790 Bytes] - [14/11/2016 10:35:21]
C:\AdwCleaner\AdwCleaner[S700].txt - [54405 Bytes] - [21/04/2017 22:04:27]
C:\AdwCleaner\AdwCleaner[S701].txt - [54482 Bytes] - [22/04/2017 09:40:07]
C:\AdwCleaner\AdwCleaner[S702].txt - [54557 Bytes] - [23/04/2017 10:49:11]
C:\AdwCleaner\AdwCleaner[S703].txt - [54633 Bytes] - [23/04/2017 22:27:33]
C:\AdwCleaner\AdwCleaner[S704].txt - [54709 Bytes] - [23/04/2017 22:40:18]
C:\AdwCleaner\AdwCleaner[S705].txt - [54785 Bytes] - [24/04/2017 11:23:14]
C:\AdwCleaner\AdwCleaner[S706].txt - [54861 Bytes] - [24/04/2017 15:04:22]
C:\AdwCleaner\AdwCleaner[S707].txt - [54937 Bytes] - [24/04/2017 15:24:33]
C:\AdwCleaner\AdwCleaner[S708].txt - [55013 Bytes] - [24/04/2017 15:31:22]
C:\AdwCleaner\AdwCleaner[S709].txt - [55090 Bytes] - [25/04/2017 11:15:33]
C:\AdwCleaner\AdwCleaner[S70].txt - [6524 Bytes] - [20/11/2016 22:24:12]
C:\AdwCleaner\AdwCleaner[S710].txt - [55165 Bytes] - [25/04/2017 12:54:17]
C:\AdwCleaner\AdwCleaner[S711].txt - [55242 Bytes] - [26/04/2017 11:25:45]
C:\AdwCleaner\AdwCleaner[S712].txt - [55317 Bytes] - [26/04/2017 14:53:59]
C:\AdwCleaner\AdwCleaner[S713].txt - [55393 Bytes] - [27/04/2017 10:42:12]
C:\AdwCleaner\AdwCleaner[S714].txt - [55469 Bytes] - [27/04/2017 17:10:11]
C:\AdwCleaner\AdwCleaner[S715].txt - [55545 Bytes] - [28/04/2017 11:00:07]
C:\AdwCleaner\AdwCleaner[S716].txt - [55621 Bytes] - [28/04/2017 14:05:50]
C:\AdwCleaner\AdwCleaner[S717].txt - [55697 Bytes] - [28/04/2017 14:41:42]
C:\AdwCleaner\AdwCleaner[S718].txt - [55773 Bytes] - [28/04/2017 14:43:24]
C:\AdwCleaner\AdwCleaner[S719].txt - [55850 Bytes] - [29/04/2017 10:42:11]
C:\AdwCleaner\AdwCleaner[S71].txt - [6598 Bytes] - [21/11/2016 00:02:42]
C:\AdwCleaner\AdwCleaner[S720].txt - [55925 Bytes] - [29/04/2017 20:24:51]
C:\AdwCleaner\AdwCleaner[S721].txt - [56001 Bytes] - [30/04/2017 15:28:19]
C:\AdwCleaner\AdwCleaner[S722].txt - [56077 Bytes] - [30/04/2017 15:32:18]
C:\AdwCleaner\AdwCleaner[S723].txt - [56153 Bytes] - [30/04/2017 15:49:42]
C:\AdwCleaner\AdwCleaner[S724].txt - [56229 Bytes] - [30/04/2017 16:55:46]
C:\AdwCleaner\AdwCleaner[S725].txt - [56305 Bytes] - [01/05/2017 10:03:35]
C:\AdwCleaner\AdwCleaner[S726].txt - [56381 Bytes] - [01/05/2017 10:21:29]
C:\AdwCleaner\AdwCleaner[S727].txt - [56457 Bytes] - [01/05/2017 13:41:17]
C:\AdwCleaner\AdwCleaner[S728].txt - [56533 Bytes] - [01/05/2017 13:50:22]
C:\AdwCleaner\AdwCleaner[S729].txt - [56610 Bytes] - [01/05/2017 21:09:26]
C:\AdwCleaner\AdwCleaner[S72].txt - [6672 Bytes] - [21/11/2016 08:50:24]
C:\AdwCleaner\AdwCleaner[S730].txt - [56685 Bytes] - [02/05/2017 15:40:32]
C:\AdwCleaner\AdwCleaner[S731].txt - [56761 Bytes] - [02/05/2017 15:50:28]
C:\AdwCleaner\AdwCleaner[S732].txt - [56837 Bytes] - [02/05/2017 16:13:08]
C:\AdwCleaner\AdwCleaner[S733].txt - [56913 Bytes] - [02/05/2017 18:29:35]
C:\AdwCleaner\AdwCleaner[S734].txt - [56990 Bytes] - [02/05/2017 22:29:11]
C:\AdwCleaner\AdwCleaner[S735].txt - [57065 Bytes] - [03/05/2017 10:57:00]
C:\AdwCleaner\AdwCleaner[S736].txt - [57141 Bytes] - [03/05/2017 13:54:08]
C:\AdwCleaner\AdwCleaner[S737].txt - [57217 Bytes] - [03/05/2017 14:06:08]
C:\AdwCleaner\AdwCleaner[S738].txt - [57294 Bytes] - [04/05/2017 09:41:33]
C:\AdwCleaner\AdwCleaner[S739].txt - [57369 Bytes] - [04/05/2017 10:48:34]
C:\AdwCleaner\AdwCleaner[S73].txt - [6746 Bytes] - [21/11/2016 10:25:53]
C:\AdwCleaner\AdwCleaner[S740].txt - [57445 Bytes] - [04/05/2017 14:33:03]
C:\AdwCleaner\AdwCleaner[S741].txt - [57521 Bytes] - [04/05/2017 17:36:29]
C:\AdwCleaner\AdwCleaner[S742].txt - [57598 Bytes] - [05/05/2017 12:55:47]
C:\AdwCleaner\AdwCleaner[S743].txt - [57673 Bytes] - [05/05/2017 19:38:52]
C:\AdwCleaner\AdwCleaner[S744].txt - [57750 Bytes] - [06/05/2017 11:32:03]
C:\AdwCleaner\AdwCleaner[S745].txt - [57825 Bytes] - [06/05/2017 16:39:33]
C:\AdwCleaner\AdwCleaner[S746].txt - [57901 Bytes] - [06/05/2017 16:55:50]
C:\AdwCleaner\AdwCleaner[S747].txt - [57977 Bytes] - [07/05/2017 12:24:47]
C:\AdwCleaner\AdwCleaner[S748].txt - [58053 Bytes] - [07/05/2017 18:11:00]
C:\AdwCleaner\AdwCleaner[S749].txt - [58129 Bytes] - [07/05/2017 19:33:16]
C:\AdwCleaner\AdwCleaner[S74].txt - [6820 Bytes] - [21/11/2016 18:45:08]
C:\AdwCleaner\AdwCleaner[S750].txt - [58205 Bytes] - [08/05/2017 10:42:54]
C:\AdwCleaner\AdwCleaner[S751].txt - [58281 Bytes] - [08/05/2017 12:33:21]
C:\AdwCleaner\AdwCleaner[S752].txt - [58357 Bytes] - [08/05/2017 14:34:48]
C:\AdwCleaner\AdwCleaner[S753].txt - [58434 Bytes] - [09/05/2017 10:47:30]
C:\AdwCleaner\AdwCleaner[S754].txt - [58509 Bytes] - [09/05/2017 10:52:11]
C:\AdwCleaner\AdwCleaner[S755].txt - [58585 Bytes] - [09/05/2017 22:30:29]
C:\AdwCleaner\AdwCleaner[S756].txt - [58662 Bytes] - [10/05/2017 08:52:48]
C:\AdwCleaner\AdwCleaner[S757].txt - [58737 Bytes] - [10/05/2017 14:46:41]
C:\AdwCleaner\AdwCleaner[S758].txt - [58814 Bytes] - [10/05/2017 22:31:58]
C:\AdwCleaner\AdwCleaner[S759].txt - [58889 Bytes] - [11/05/2017 09:14:22]
C:\AdwCleaner\AdwCleaner[S75].txt - [6894 Bytes] - [21/11/2016 19:40:58]
C:\AdwCleaner\AdwCleaner[S760].txt - [58965 Bytes] - [11/05/2017 12:37:11]
C:\AdwCleaner\AdwCleaner[S761].txt - [59041 Bytes] - [11/05/2017 14:26:03]
C:\AdwCleaner\AdwCleaner[S762].txt - [59117 Bytes] - [11/05/2017 16:47:47]
C:\AdwCleaner\AdwCleaner[S763].txt - [59193 Bytes] - [11/05/2017 22:37:03]
C:\AdwCleaner\AdwCleaner[S764].txt - [59269 Bytes] - [12/05/2017 09:10:44]
C:\AdwCleaner\AdwCleaner[S765].txt - [59345 Bytes] - [12/05/2017 09:33:06]
C:\AdwCleaner\AdwCleaner[S766].txt - [59422 Bytes] - [13/05/2017 07:56:46]
C:\AdwCleaner\AdwCleaner[S767].txt - [59498 Bytes] - [13/05/2017 09:26:44]
C:\AdwCleaner\AdwCleaner[S768].txt - [59573 Bytes] - [13/05/2017 16:49:14]
C:\AdwCleaner\AdwCleaner[S769].txt - [59649 Bytes] - [13/05/2017 23:31:48]
C:\AdwCleaner\AdwCleaner[S76].txt - [6967 Bytes] - [21/11/2016 21:17:17]
C:\AdwCleaner\AdwCleaner[S770].txt - [59725 Bytes] - [14/05/2017 13:16:17]
C:\AdwCleaner\AdwCleaner[S771].txt - [59844 Bytes] - [14/05/2017 19:27:48]
C:\AdwCleaner\AdwCleaner[S772].txt - [59919 Bytes] - [14/05/2017 19:44:18]
C:\AdwCleaner\AdwCleaner[S773].txt - [59995 Bytes] - [14/05/2017 19:51:10]
C:\AdwCleaner\AdwCleaner[S774].txt - [60071 Bytes] - [14/05/2017 20:02:56]
C:\AdwCleaner\AdwCleaner[S775].txt - [60147 Bytes] - [14/05/2017 20:17:57]
C:\AdwCleaner\AdwCleaner[S776].txt - [60223 Bytes] - [14/05/2017 20:27:06]
C:\AdwCleaner\AdwCleaner[S777].txt - [60299 Bytes] - [14/05/2017 21:45:03]
C:\AdwCleaner\AdwCleaner[S778].txt - [60334 Bytes] - [15/05/2017 08:39:41]
C:\AdwCleaner\AdwCleaner[S779].txt - [60409 Bytes] - [15/05/2017 08:40:36]
C:\AdwCleaner\AdwCleaner[S77].txt - [7042 Bytes] - [21/11/2016 23:19:00]
C:\AdwCleaner\AdwCleaner[S780].txt - [60485 Bytes] - [15/05/2017 10:35:13]
C:\AdwCleaner\AdwCleaner[S781].txt - [60562 Bytes] - [15/05/2017 21:30:55]
C:\AdwCleaner\AdwCleaner[S782].txt - [60637 Bytes] - [15/05/2017 23:00:17]
C:\AdwCleaner\AdwCleaner[S783].txt - [60714 Bytes] - [16/05/2017 22:43:21]
C:\AdwCleaner\AdwCleaner[S784].txt - [60789 Bytes] - [16/05/2017 22:48:24]
C:\AdwCleaner\AdwCleaner[S785].txt - [60865 Bytes] - [17/05/2017 11:29:20]
C:\AdwCleaner\AdwCleaner[S786].txt - [60942 Bytes] - [17/05/2017 18:12:30]
C:\AdwCleaner\AdwCleaner[S787].txt - [61017 Bytes] - [17/05/2017 18:16:33]
C:\AdwCleaner\AdwCleaner[S788].txt - [61093 Bytes] - [17/05/2017 22:34:37]
C:\AdwCleaner\AdwCleaner[S789].txt - [61169 Bytes] - [18/05/2017 09:11:38]
C:\AdwCleaner\AdwCleaner[S78].txt - [7116 Bytes] - [22/11/2016 09:20:10]
C:\AdwCleaner\AdwCleaner[S790].txt - [61245 Bytes] - [18/05/2017 12:56:05]
C:\AdwCleaner\AdwCleaner[S791].txt - [61321 Bytes] - [18/05/2017 17:40:12]
C:\AdwCleaner\AdwCleaner[S792].txt - [61398 Bytes] - [18/05/2017 22:34:06]
C:\AdwCleaner\AdwCleaner[S793].txt - [61474 Bytes] - [20/05/2017 08:25:16]
C:\AdwCleaner\AdwCleaner[S794].txt - [61549 Bytes] - [20/05/2017 10:42:12]
C:\AdwCleaner\AdwCleaner[S795].txt - [61625 Bytes] - [20/05/2017 20:54:44]
C:\AdwCleaner\AdwCleaner[S796].txt - [61701 Bytes] - [20/05/2017 23:14:58]
C:\AdwCleaner\AdwCleaner[S797].txt - [61777 Bytes] - [21/05/2017 10:10:42]
C:\AdwCleaner\AdwCleaner[S798].txt - [61853 Bytes] - [21/05/2017 12:49:59]
C:\AdwCleaner\AdwCleaner[S799].txt - [61929 Bytes] - [21/05/2017 13:01:31]
C:\AdwCleaner\AdwCleaner[S79].txt - [7190 Bytes] - [22/11/2016 10:27:20]
C:\AdwCleaner\AdwCleaner[S7].txt - [1863 Bytes] - [14/11/2016 10:37:01]
C:\AdwCleaner\AdwCleaner[S800].txt - [62005 Bytes] - [21/05/2017 16:24:17]
C:\AdwCleaner\AdwCleaner[S801].txt - [62081 Bytes] - [21/05/2017 21:59:07]
C:\AdwCleaner\AdwCleaner[S802].txt - [62157 Bytes] - [22/05/2017 07:55:28]
C:\AdwCleaner\AdwCleaner[S803].txt - [62233 Bytes] - [22/05/2017 08:00:44]
C:\AdwCleaner\AdwCleaner[S804].txt - [62310 Bytes] - [23/05/2017 08:29:03]
C:\AdwCleaner\AdwCleaner[S805].txt - [62386 Bytes] - [23/05/2017 22:33:12]
C:\AdwCleaner\AdwCleaner[S806].txt - [62461 Bytes] - [24/05/2017 08:13:45]
C:\AdwCleaner\AdwCleaner[S807].txt - [62537 Bytes] - [24/05/2017 08:53:25]
C:\AdwCleaner\AdwCleaner[S808].txt - [62613 Bytes] - [24/05/2017 08:58:02]
C:\AdwCleaner\AdwCleaner[S809].txt - [62689 Bytes] - [24/05/2017 23:14:09]
C:\AdwCleaner\AdwCleaner[S80].txt - [7264 Bytes] - [22/11/2016 10:55:04]
C:\AdwCleaner\AdwCleaner[S810].txt - [62765 Bytes] - [25/05/2017 10:02:16]
C:\AdwCleaner\AdwCleaner[S811].txt - [62842 Bytes] - [25/05/2017 22:39:58]
C:\AdwCleaner\AdwCleaner[S812].txt - [62918 Bytes] - [26/05/2017 16:22:21]
C:\AdwCleaner\AdwCleaner[S813].txt - [62994 Bytes] - [26/05/2017 20:15:11]
C:\AdwCleaner\AdwCleaner[S814].txt - [63069 Bytes] - [27/05/2017 17:14:47]
C:\AdwCleaner\AdwCleaner[S815].txt - [63145 Bytes] - [27/05/2017 17:47:07]
C:\AdwCleaner\AdwCleaner[S816].txt - [63221 Bytes] - [27/05/2017 18:05:54]
C:\AdwCleaner\AdwCleaner[S817].txt - [63297 Bytes] - [27/05/2017 23:53:33]
C:\AdwCleaner\AdwCleaner[S818].txt - [63373 Bytes] - [28/05/2017 14:33:06]
C:\AdwCleaner\AdwCleaner[S819].txt - [63449 Bytes] - [28/05/2017 23:27:20]
C:\AdwCleaner\AdwCleaner[S81].txt - [7338 Bytes] - [22/11/2016 21:58:19]
C:\AdwCleaner\AdwCleaner[S820].txt - [63525 Bytes] - [29/05/2017 13:56:58]
C:\AdwCleaner\AdwCleaner[S821].txt - [63601 Bytes] - [29/05/2017 22:58:53]
C:\AdwCleaner\AdwCleaner[S822].txt - [63677 Bytes] - [30/05/2017 08:28:52]
C:\AdwCleaner\AdwCleaner[S823].txt - [63753 Bytes] - [30/05/2017 08:36:39]
C:\AdwCleaner\AdwCleaner[S824].txt - [63829 Bytes] - [30/05/2017 09:02:21]
C:\AdwCleaner\AdwCleaner[S825].txt - [63905 Bytes] - [30/05/2017 15:59:04]
C:\AdwCleaner\AdwCleaner[S826].txt - [63982 Bytes] - [31/05/2017 18:56:49]
C:\AdwCleaner\AdwCleaner[S827].txt - [64058 Bytes] - [31/05/2017 22:34:31]
C:\AdwCleaner\AdwCleaner[S828].txt - [64133 Bytes] - [01/06/2017 08:18:13]
C:\AdwCleaner\AdwCleaner[S829].txt - [64209 Bytes] - [01/06/2017 12:06:52]
C:\AdwCleaner\AdwCleaner[S82].txt - [7412 Bytes] - [22/11/2016 22:49:12]
C:\AdwCleaner\AdwCleaner[S830].txt - [64285 Bytes] - [01/06/2017 16:10:33]
C:\AdwCleaner\AdwCleaner[S831].txt - [64361 Bytes] - [01/06/2017 16:17:40]
C:\AdwCleaner\AdwCleaner[S832].txt - [62899 Bytes] - [03/06/2017 19:36:16]
C:\AdwCleaner\AdwCleaner[S83].txt - [7486 Bytes] - [22/11/2016 23:27:12]
C:\AdwCleaner\AdwCleaner[S84].txt - [7560 Bytes] - [23/11/2016 10:14:44]
C:\AdwCleaner\AdwCleaner[S85].txt - [7634 Bytes] - [23/11/2016 20:17:53]
C:\AdwCleaner\AdwCleaner[S86].txt - [7708 Bytes] - [23/11/2016 21:36:59]
C:\AdwCleaner\AdwCleaner[S87].txt - [7782 Bytes] - [23/11/2016 21:44:19]
C:\AdwCleaner\AdwCleaner[S88].txt - [7856 Bytes] - [24/11/2016 12:42:09]
C:\AdwCleaner\AdwCleaner[S89].txt - [7930 Bytes] - [24/11/2016 12:48:41]
C:\AdwCleaner\AdwCleaner[S8].txt - [1936 Bytes] - [14/11/2016 19:22:49]
C:\AdwCleaner\AdwCleaner[S90].txt - [8004 Bytes] - [24/11/2016 14:59:34]
C:\

\AdwCleaner[S91].txt - [8078 Bytes] - [24/11/2016 16:21:27]
C:\AdwCleaner\AdwCleaner[S92].txt - [8152 Bytes] - [24/11/2016 17:09:25]
C:\AdwCleaner\AdwCleaner[S93].txt - [8226 Bytes] - [24/11/2016 17:53:27]
C:\AdwCleaner\AdwCleaner[S94].txt - [8300 Bytes] - [24/11/2016 18:00:34]
C:\AdwCleaner\AdwCleaner[S95].txt - [8374 Bytes] - [24/11/2016 18:37:12]
C:\AdwCleaner\AdwCleaner[S96].txt - [8448 Bytes] - [25/11/2016 08:42:28]
C:\AdwCleaner\AdwCleaner[S97].txt - [8522 Bytes] - [25/11/2016 10:22:17]
C:\AdwCleaner\AdwCleaner[S98].txt - [8596 Bytes] - [25/11/2016 19:20:49]
C:\AdwCleaner\AdwCleaner[S99].txt - [8670 Bytes] - [25/11/2016 22:33:19]
C:\AdwCleaner\AdwCleaner[S9].txt - [2009 Bytes] - [14/11/2016 20:18:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S832].txt - [64379 Bytes] ##########
         
Gruß

Clocks

Geändert von Clocks (08.06.2017 um 22:21 Uhr) Grund: verbessert

Alt 08.06.2017, 23:18   #2
M-K-D-B
/// TB-Ausbilder
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?









Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.



Um die Bereinigung möchlichst effektiv und schnell gestalten zu können, bitte ich um Beachtung der folgenden Hinweise:
  1. Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  2. Lies dir meine Anleitungen immer sorgfältig durch, arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste immer alle Logdateien (auch wenn nichts gefunden wurde). Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  3. Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  4. Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
    Außerdem bitte ich dich, nicht eigenmächtig irgendwelche Sicherheitsprogramme auszuführen und damit deinen Rechner zu überprüfen/bereinigen, da ich so leicht den Überblick verlieren kann.
    Außerdem hättest du dir das Eröffnen eines Themas in diesem Fall auch gleich sparen können, wenn du dann doch wieder alleine rumhantierst.

  5. Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
  6. Alle zu verwendenen Programme sind auf dem Desktop ( C:\users\dein Benutzername\Desktop\ ) abzuspeichern und von dort als Administrator zu starten!
  7. Einige Programme, die wir hier verwenden, können unter Umständen von deinem Antiviren- oder Anti-Malwareprogramm fälschlicherweise als Bedrohung eingestuft werden. Die Sicherheitsprogramme können aufgrund eines bestimmten Programmverhaltens nicht zwischen "gut" oder "böse" unterscheiden und schlagen Alarm. Dabei handelt es sich um Fehlalarme, welche du getrost ignorieren kannst. Gegebenenfalls musst du deine Sicherheitssoftware vor der Ausführung eines Programms deaktivieren, damit unsere Bereinigungsvorgänge nicht beeinträchtigt werden.
  8. Sollten die Logdateien einmal die zulässige Länge (~ 120.000 Zeichen) überschreiten, so teile die Logdateien auf mehrere Posts auf.
    Zur Not kannst du die Logdateien dann auch zippen (in ein .zip Archiv packen) und als Anhang hochladen.

  9. Bitte arbeite so lange mit mir zusammen, bis ich dir sage, dass wir fertig sind und dein Rechner "sauber" ist. Das vorzeitige Verschwinden von Symptomen heißt nicht automatisch, dass dein Rechner bereits vollständig sauber ist.
  10. In der Regel antworte ich dir innerhalb von 24 Stunden, oft sogar wesentlich schneller.
    Jedoch habe auch ich einen normalen Beruf und Familie. Ich bin daher nicht jeden Tag stundenlag hier im Forum unterwegs. Es kann unter Umständen bis zu 2 Tage dauern, bis du eine Antwort von mir erhältst. Sollte diese Zeit überschritten sein, so kannst du mir gerne eine PM als Erinnerung schicken.





Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!






Zitat:
Da in letzter Zeit häufiger Fehlalarme beim AdwCleaner vorkamen (...)
Echt? Kannst du das auch anhand von Beispielen belegen?
Mir sind nämlich keine größeren/nennenswerten "Fehlalarme" bekannt. Wenn doch, dann klär mich bitte auf.







Die GUID "{63C40CBE-DE43-4B56-BCEB-E14B825CF245}" deutet laut McAfee, Malwarebytes und Sophos auf Adware hin. Ich glaube nicht, dass es ein Fehlalarm ist, sondern der Fund seine Berechtigung hat.
Wir sollten einen Blick auf dein System werfen... nicht, dass Malware vorhanden ist.










Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)







Schritt 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.







Bitte poste mit deiner nächsten Antwort
  • die Logdatei von TDSS-Killer,
  • die beiden neuen Logdateien von FRST.
__________________

__________________

Alt 09.06.2017, 08:58   #3
Clocks
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Hallo Matthias,

vielen Dank für Deine schnelle Antwort und das Du mir bei der Bereinigung meines PC's helfen möchtest. Deine Hinweise habe ich gelesen und werde sie befolgen.

Bezüglich Fehlalarme AdwCleaner folgendes: Vor ca. 2 Monaten hat der Adwcleaner nach einem Suchlauf 2 Funde angezeigt. Ich habe dann nach diesen Funden gegoogelt und dabei festgestellt, dass andere User die gleichen Probleme hatten und einen Fehlalarm vermuteten. Am nächsten Tag zeigte der AdwCleaner dann keine Funde mehr an. Ca. im November letzten Jahres hat Cosinus mir bei der Bereinigung meines PC's geholfen und dabei zeigte der AdwCleaner ganz am Ende 2 Funde an, wobei Cosinus einen Fehlalarm vermutete und was dann auch so war.

Ich wollte kurz schildern wie ich beim Herunterladen von Software vorgehe: Jede heruntergeladene Datei lasse ich von virustotal überprüfen. Ich habe z. B. letzte Woche mit einem Online Video Converter MP3 Musikdateien erstellt und jede erstellte Datei habe ich von virustotal überprüfen lassen. Das mache ich so, um möglichst Schädlingsbefall zu vermeiden. Ich hoffe, ich habe mich verständlich ausgedrückt.


Jetzt die von Dir gewünschten FRST Logs:

[
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-06-2017 01
durchgeführt von haufdemb (Administrator) auf DESKTOP-1QKGMBB (09-06-2017 07:53:35)
Gestartet von C:\Users\haufdemb\Desktop
Geladene Profile: haufdemb (Verfügbare Profile: haufdemb)
Platform: Windows 10 Home Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Deutsche Telekom AG) C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Dirk Jansen) C:\Program Files (x86)\MailCheck\MailCheck.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Software\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Software\Floater.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Hewlett-Packard\HP My Display\dthtml.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 17\SteganosHotKeyService.exe
(Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
(Deutsche Telekom AG) C:\Program Files\Deutsche Telekom AG\Online Manager\Online Manager.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 17\passwordmanagercom.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 17\SteganosBrowserMonitor.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 17\Notifier.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 17\fredirstarter.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8801024 2016-04-14] (Realtek Semiconductor)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-06-22] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [202280 2015-09-29] (Haufe-Lexware GmbH & Co. KG)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Software\wpctrl.exe [694824 2009-03-03] ()
HKLM-x32\...\Run: [DT HPC] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [123688 2013-01-10] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [Steganos HotKeys] => C:\Program Files (x86)\Steganos Privacy Suite 17\SteganosHotKeyService.exe [104960 2016-07-28] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS17 Chrome Autofill Relay] => C:\Program Files (x86)\Steganos Privacy Suite 17\passwordmanagercom.exe [1330736 2016-07-28] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS17 Browser Monitor] => C:\Program Files (x86)\Steganos Privacy Suite 17\SteganosBrowserMonitor.exe [1001528 2016-07-28] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS17 Notifier] => C:\Program Files (x86)\Steganos Privacy Suite 17\Notifier.exe [3977736 2016-07-28] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS17 File Redirection Starter] => C:\Program Files (x86)\Steganos Privacy Suite 17\fredirstarter.exe [18432 2016-07-28] (Steganos Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Finanzmanager 2016 Zahlungserinnerung.lnk [2016-05-05]
ShortcutTarget: Finanzmanager 2016 Zahlungserinnerung.lnk -> C:\Windows\Installer\{7429B83A-5AB6-4AEE-A53B-79B9742B9158}\BillMinder.8C5DA79E_7079_4AB3_81F7_712153351D0D.exe (Macrovision Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-01-03]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MailCheck 2.lnk [2017-05-16]
ShortcutTarget: MailCheck 2.lnk -> C:\Program Files (x86)\MailCheck\MailCheck.exe (Dirk Jansen)
Startup: C:\Users\haufdemb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Auto-Master Termin.lnk [2016-02-06]
ShortcutTarget: Auto-Master Termin.lnk -> C:\Program Files (x86)\Auto_Master\AUTOTERM.exe ()
Startup: C:\Users\haufdemb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2016-11-05]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\haufdemb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Online Manager.lnk [2016-10-05]
ShortcutTarget: Online Manager.lnk -> C:\Program Files\Deutsche Telekom AG\Online Manager\Online Manager.exe (Deutsche Telekom AG)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{20c61b50-9b8e-48b0-9b3c-0c5bfd0318ed}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{dcfc8bd8-4c34-4098-bfc0-e10f7363975d}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{dcfc8bd8-4c34-4098-bfc0-e10f7363975d}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-2901048201-2396791686-2562006212-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-2901048201-2396791686-2562006212-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
SearchScopes: HKLM -> {0DEB2757-A545-49FF-95C0-6CA29A1B4DBD} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Password Depot 8 -> {9F79B165-70F7-4C46-B1A5-8828E2FF21F9} -> C:\Program Files (x86)\AceBIT\Password Depot 8\pdIEAddOn64.dll [2014-08-19] (AceBIT)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2017-03-20] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Password Depot 8 -> {9F79B165-70F7-4C46-B1A5-8828E2FF21F9} -> C:\Program Files (x86)\AceBIT\Password Depot 8\pdIEAddOn32.dll [2014-08-19] (AceBIT)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 17\SPMIEToolbar64.dll [2016-07-28] (Steganos Software GmbH)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 17\SPMIEToolbar.dll [2016-07-28] (Steganos Software GmbH)

FireFox:
========
FF ProfilePath: C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547 [2017-06-09]
FF Homepage: Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547 -> www.google.de
FF Extension: (Personas Plus) - C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547\Extensions\personas@christopher.beard.xpi [2017-05-18]
FF Extension: (Clearly) - C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547\Extensions\readable@evernote.com.xpi [2016-01-10]
FF Extension: (Steganos Password Manager) - C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547\Extensions\{00D0643E-B367-4779-B45D-7046EBA37A89}.xpi [2016-07-28]
FF Extension: (Adblock Plus) - C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF Extension: (BetterPrivacy) - C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2016-10-31]
FF Extension: (Follow-on Search Telemetry) - C:\Users\haufdemb\AppData\Roaming\Mozilla\Firefox\Profiles\i386yk9k.default-1452441663547\features\{1adb8757-86cb-4480-9c4c-24c7dbeb7aed}\followonsearch@mozilla.com.xpi [2017-06-06]
FF ProfilePath: C:\Users\haufdemb\AppData\Roaming\Marmiko IT-Solutions GmbH\Browser 7\Profiles\5ygs2f0e.default [2016-01-26]
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 17\spmplugin3 => nicht gefunden
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-06-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-06-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1228198.dll [2017-02-27] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [mcgmdbhgeplifgopfnmafmhfmoekiekn] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122736 2017-05-27] (AOMEI Tech Co., Ltd.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [140072 2013-01-10] (Portrait Displays, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
R2 IRMTService; c:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [181520 2015-07-14] (Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-04] (Intel Corporation)
R2 Lexware_Update_Service; C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe [66088 2016-03-03] (Haufe-Lexware GmbH & Co. KG)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-08-04] ()
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-04-01] (NVIDIA Corporation)
R2 Online Manager Service; C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe [3076096 2016-09-21] (Deutsche Telekom AG) [Datei ist nicht signiert]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-15] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312576 2016-04-14] (Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-08-04] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-23] ()
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-23] ()
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2016-12-23] ()
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [132272 2017-01-17] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106768 2017-01-17] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2017-01-29] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180544 2017-01-17] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [49672 2017-01-17] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77616 2017-01-17] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [96856 2017-01-17] (ESET)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [244744 2017-04-13] (Intel Corporation)
R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [33512 2015-07-14] (Intel Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [252832 2017-06-07] (Malwarebytes)
S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [6731520 2016-01-19] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7932160 2017-01-24] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_2112cfa205ccb4cd\nvlddmkm.sys [14841784 2017-05-08] (NVIDIA Corporation)
S3 pmxdrv; C:\WINDOWS\system32\drivers\pmxdrv.sys [31152 2016-03-31] ()
R1 RrNetCapFilterDriver; C:\WINDOWS\system32\DRIVERS\RrNetCapFilterDriver.sys [24744 2014-11-07] (Audials AG)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [896752 2015-12-31] (Realtek                                            )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [402136 2015-05-28] (Realsil Semiconductor Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
R1 SLEE_19_DRIVER; C:\Windows\Sleen1964.sys [117848 2016-07-28] (Softwareentwicklung Remus - ArchiCrypt - )
S3 TelekomNM6; C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\Driver\TelekomNM6.sys [45664 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-26] ()
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-26] ()
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-26] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-06-09 07:53 - 2017-06-09 07:53 - 00021379 _____ C:\Users\haufdemb\Desktop\FRST.txt
2017-06-09 07:49 - 2017-06-09 07:50 - 02435072 _____ (Farbar) C:\Users\haufdemb\Desktop\FRST64.exe
2017-06-03 20:26 - 2017-06-03 20:26 - 00000000 ____D C:\Users\haufdemb\Desktop\sumo
2017-06-03 20:20 - 2017-06-03 20:20 - 04110280 _____ C:\Users\haufdemb\Desktop\adwcleaner_6.047.exe
2017-06-03 16:54 - 2017-06-03 22:49 - 00000000 ____D C:\Program Files (x86)\AOMEI Backupper
2017-06-03 16:54 - 2017-06-03 16:54 - 00001141 _____ C:\Users\Public\Desktop\AOMEI Backupper Standard.lnk
2017-06-03 16:54 - 2017-06-03 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2017-05-30 14:15 - 2017-05-20 11:13 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-05-30 14:15 - 2017-05-20 11:13 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-30 14:15 - 2017-05-20 10:55 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-30 14:15 - 2017-05-20 10:53 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-30 14:15 - 2017-05-20 10:48 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-30 14:15 - 2017-05-20 10:47 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-05-30 14:15 - 2017-05-20 10:46 - 05821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-05-30 14:15 - 2017-05-20 10:46 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-05-30 14:15 - 2017-05-20 10:46 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-05-30 14:15 - 2017-05-20 10:45 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-05-30 14:15 - 2017-05-20 10:44 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-05-30 14:15 - 2017-05-20 10:44 - 00181664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 06760024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 05802968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 01120864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-05-30 14:15 - 2017-05-20 10:43 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-05-30 14:15 - 2017-05-20 10:42 - 20373920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-30 14:15 - 2017-05-20 10:40 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-30 14:15 - 2017-05-20 10:29 - 13840384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-05-30 14:15 - 2017-05-20 10:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-30 14:15 - 2017-05-20 10:27 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-05-30 14:15 - 2017-05-20 10:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-05-30 14:15 - 2017-05-20 10:26 - 00059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
2017-05-30 14:15 - 2017-05-20 10:26 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-30 14:15 - 2017-05-20 10:25 - 20505088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-30 14:15 - 2017-05-20 10:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2017-05-30 14:15 - 2017-05-20 10:25 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-05-30 14:15 - 2017-05-20 10:24 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-30 14:15 - 2017-05-20 10:23 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-30 14:15 - 2017-05-20 10:22 - 19334656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-30 14:15 - 2017-05-20 10:22 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-30 14:15 - 2017-05-20 10:22 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2017-05-30 14:15 - 2017-05-20 10:22 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-05-30 14:15 - 2017-05-20 10:21 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-05-30 14:15 - 2017-05-20 10:21 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-30 14:15 - 2017-05-20 10:21 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2017-05-30 14:15 - 2017-05-20 10:20 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-30 14:15 - 2017-05-20 10:20 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-30 14:15 - 2017-05-20 10:20 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-30 14:15 - 2017-05-20 10:20 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-05-30 14:15 - 2017-05-20 10:19 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-05-30 14:15 - 2017-05-20 10:19 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-30 14:15 - 2017-05-20 10:18 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-30 14:15 - 2017-05-20 10:18 - 01450496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-05-30 14:15 - 2017-05-20 10:18 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-30 14:15 - 2017-05-20 10:17 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-30 14:15 - 2017-05-20 10:17 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-05-30 14:15 - 2017-05-20 10:17 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-30 14:15 - 2017-05-20 10:17 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-30 14:15 - 2017-05-20 10:17 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-30 14:15 - 2017-05-20 10:16 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-30 14:15 - 2017-05-20 10:16 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-30 14:15 - 2017-05-20 10:16 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-05-30 14:15 - 2017-05-20 10:16 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-30 14:15 - 2017-05-20 10:16 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-05-30 14:15 - 2017-05-20 10:15 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-05-30 14:15 - 2017-05-20 10:15 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-30 14:15 - 2017-05-20 10:14 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-30 14:15 - 2017-05-20 10:14 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-05-30 14:15 - 2017-05-20 10:14 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-05-30 14:15 - 2017-05-20 10:14 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-05-30 14:15 - 2017-05-20 10:14 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-05-30 14:15 - 2017-05-20 10:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-05-30 14:15 - 2017-05-20 10:11 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-05-30 14:15 - 2017-05-20 10:10 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-05-30 14:15 - 2017-05-20 10:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2017-05-30 14:15 - 2017-05-20 10:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-30 14:15 - 2017-05-20 10:08 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-05-30 14:15 - 2017-05-20 09:08 - 01459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-05-30 14:15 - 2017-05-20 09:08 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-30 14:15 - 2017-05-20 09:08 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-30 14:15 - 2017-05-20 09:08 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-30 14:15 - 2017-05-20 09:08 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-30 14:15 - 2017-05-20 09:07 - 00287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-05-30 14:15 - 2017-05-20 09:03 - 08320928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-30 14:15 - 2017-05-20 09:03 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-30 14:15 - 2017-05-20 09:02 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-30 14:15 - 2017-05-20 09:01 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-30 14:15 - 2017-05-20 08:59 - 00112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-05-30 14:15 - 2017-05-20 08:58 - 00188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-05-30 14:15 - 2017-05-20 08:56 - 04847928 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-30 14:15 - 2017-05-20 08:56 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-30 14:15 - 2017-05-20 08:56 - 00712608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-30 14:15 - 2017-05-20 08:56 - 00370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-05-30 14:15 - 2017-05-20 08:55 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-05-30 14:15 - 2017-05-20 08:55 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-30 14:15 - 2017-05-20 08:55 - 01911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-30 14:15 - 2017-05-20 08:55 - 01506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-30 14:15 - 2017-05-20 08:55 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-05-30 14:15 - 2017-05-20 08:55 - 00961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-05-30 14:15 - 2017-05-20 08:55 - 00211872 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-30 14:15 - 2017-05-20 08:54 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-30 14:15 - 2017-05-20 08:54 - 00730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-05-30 14:15 - 2017-05-20 08:54 - 00546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-05-30 14:15 - 2017-05-20 08:54 - 00144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-05-30 14:15 - 2017-05-20 08:53 - 00654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-05-30 14:15 - 2017-05-20 08:53 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-05-30 14:15 - 2017-05-20 08:53 - 00363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-05-30 14:15 - 2017-05-20 08:53 - 00335808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-05-30 14:15 - 2017-05-20 08:53 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-05-30 14:15 - 2017-05-20 08:52 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-30 14:15 - 2017-05-20 08:52 - 04709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-05-30 14:15 - 2017-05-20 08:52 - 01700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-05-30 14:15 - 2017-05-20 08:51 - 21352176 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-30 14:15 - 2017-05-20 08:51 - 06551856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-05-30 14:15 - 2017-05-20 08:51 - 02604256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-30 14:15 - 2017-05-20 08:51 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-05-30 14:15 - 2017-05-20 08:51 - 01219560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-05-30 14:15 - 2017-05-20 08:51 - 00406064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-05-30 14:15 - 2017-05-20 08:48 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-30 14:15 - 2017-05-20 08:22 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-30 14:15 - 2017-05-20 08:10 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-05-30 14:15 - 2017-05-20 08:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-30 14:15 - 2017-05-20 08:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-05-30 14:15 - 2017-05-20 08:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-05-30 14:15 - 2017-05-20 08:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-05-30 14:15 - 2017-05-20 08:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
2017-05-30 14:15 - 2017-05-20 08:09 - 17365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-30 14:15 - 2017-05-20 08:09 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-30 14:15 - 2017-05-20 08:09 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-05-30 14:15 - 2017-05-20 08:08 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-30 14:15 - 2017-05-20 08:08 - 00086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-05-30 14:15 - 2017-05-20 08:08 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-30 14:15 - 2017-05-20 08:08 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-05-30 14:15 - 2017-05-20 08:07 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-05-30 14:15 - 2017-05-20 08:07 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-05-30 14:15 - 2017-05-20 08:07 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-05-30 14:15 - 2017-05-20 08:06 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-05-30 14:15 - 2017-05-20 08:06 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-05-30 14:15 - 2017-05-20 08:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-05-30 14:15 - 2017-05-20 08:05 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-30 14:15 - 2017-05-20 08:05 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-30 14:15 - 2017-05-20 08:05 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-30 14:15 - 2017-05-20 08:04 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-05-30 14:15 - 2017-05-20 08:03 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-05-30 14:15 - 2017-05-20 08:03 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-05-30 14:15 - 2017-05-20 08:02 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-05-30 14:15 - 2017-05-20 08:02 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 02347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-30 14:15 - 2017-05-20 08:01 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
2017-05-30 14:15 - 2017-05-20 08:00 - 01078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-30 14:15 - 2017-05-20 08:00 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-05-30 14:15 - 2017-05-20 08:00 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-30 14:15 - 2017-05-20 08:00 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-05-30 14:15 - 2017-05-20 08:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-30 14:15 - 2017-05-20 08:00 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-30 14:15 - 2017-05-20 07:59 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 00972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-30 14:15 - 2017-05-20 07:59 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 03135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-05-30 14:15 - 2017-05-20 07:58 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-30 14:15 - 2017-05-20 07:57 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-30 14:15 - 2017-05-20 07:57 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-30 14:15 - 2017-05-20 07:57 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-30 14:15 - 2017-05-20 07:56 - 02730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-05-30 14:15 - 2017-05-20 07:56 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-30 14:15 - 2017-05-20 07:56 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-30 14:15 - 2017-05-20 07:56 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-05-30 14:15 - 2017-05-20 07:55 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-30 14:15 - 2017-05-20 07:55 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-05-30 14:15 - 2017-05-20 07:55 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-30 14:15 - 2017-05-20 07:55 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-30 14:15 - 2017-05-20 07:55 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 04537344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 02651136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-05-30 14:15 - 2017-05-20 07:54 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-05-30 14:15 - 2017-05-20 07:52 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-30 14:15 - 2017-05-20 07:52 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-30 14:15 - 2017-05-20 07:52 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-05-30 14:15 - 2017-05-20 07:52 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-05-30 14:15 - 2017-05-20 07:51 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-05-30 14:15 - 2017-05-20 07:51 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-05-30 14:15 - 2017-05-20 07:50 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-30 14:15 - 2017-05-20 07:50 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-05-30 14:15 - 2017-05-20 07:48 - 02438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-30 14:15 - 2017-05-20 07:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-05-30 14:15 - 2017-05-20 07:47 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2017-05-30 14:15 - 2017-05-20 07:47 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-05-30 14:15 - 2017-05-20 07:47 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2017-05-21 16:14 - 2017-05-21 16:14 - 00000000 ____D C:\Users\haufdemb\AppData\Local\CrashRpt

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-06-09 07:53 - 2016-12-28 18:06 - 00000000 ____D C:\FRST
2017-06-09 07:52 - 2016-11-15 13:00 - 00000000 ____D C:\Users\haufdemb\AppData\LocalLow\Mozilla
2017-06-09 07:45 - 2017-04-11 21:46 - 00004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{09AA631B-E0F1-4ECE-AD20-5194BDAB7161}
2017-06-09 07:44 - 2017-04-11 21:42 - 00000000 ____D C:\Users\haufdemb
2017-06-08 23:19 - 2016-11-13 23:01 - 00000000 ____D C:\AdwCleaner
2017-06-08 23:19 - 2016-09-21 10:17 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-08 23:14 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-06-08 23:14 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-08 23:14 - 2015-12-31 17:43 - 00000000 ____D C:\Users\haufdemb\AppData\Local\Adobe
2017-06-08 19:28 - 2017-04-11 21:40 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-08 19:07 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-08 19:07 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-07 22:19 - 2017-04-11 21:46 - 00003280 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForhaufdemb
2017-06-07 22:19 - 2016-02-22 09:44 - 00000376 _____ C:\WINDOWS\Tasks\HPCeeScheduleForhaufdemb.job
2017-06-07 21:16 - 2017-03-28 13:34 - 00252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-07 21:16 - 2017-03-28 13:34 - 00077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-06-04 20:25 - 2016-01-09 18:16 - 00000000 ____D C:\ProgramData\Lexware
2017-06-03 22:49 - 2016-01-28 17:47 - 00001024 ____H C:\SYSTAG.BIN
2017-06-03 22:49 - 2016-01-28 17:47 - 00000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2017-06-03 21:32 - 2016-06-06 23:01 - 00000000 ____D C:\Users\haufdemb\AppData\Roaming\vlc
2017-06-03 19:45 - 2017-04-11 21:42 - 02490790 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-03 19:45 - 2017-03-20 06:35 - 01112266 _____ C:\WINDOWS\system32\perfh007.dat
2017-06-03 19:45 - 2017-03-20 06:35 - 00262498 _____ C:\WINDOWS\system32\perfc007.dat
2017-06-03 19:40 - 2017-04-11 21:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-03 19:40 - 2017-04-11 21:40 - 00276424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-03 19:39 - 2017-03-18 13:40 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-06-01 13:53 - 2016-02-06 21:56 - 00000000 ____D C:\Program Files (x86)\Auto_Master
2017-06-01 10:19 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-30 15:29 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-30 14:19 - 2015-07-16 16:00 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-30 14:18 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-30 14:16 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-24 21:00 - 2016-06-06 23:01 - 00000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-05-24 07:01 - 2017-03-19 09:55 - 00000000 ____D C:\Program Files\Intel Driver Update Utility
2017-05-24 07:01 - 2016-12-20 00:17 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-05-24 07:01 - 2015-10-22 00:27 - 00000000 ____D C:\Program Files\Intel
2017-05-24 07:01 - 2015-07-16 16:01 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-23 22:28 - 2015-10-22 00:27 - 00000000 ____D C:\ProgramData\Intel
2017-05-23 21:38 - 2015-12-30 23:35 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 21:37 - 2015-12-30 23:35 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-21 12:57 - 2015-12-30 19:57 - 00000000 ____D C:\Users\haufdemb\AppData\Local\Packages
2017-05-20 08:26 - 2017-02-05 14:33 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-20 08:26 - 2016-11-20 21:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-05-20 08:26 - 2015-12-31 09:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-17 16:04 - 2016-02-06 21:59 - 00005152 _____ C:\WINDOWS\ouwininit.exe
2017-05-16 20:01 - 2015-12-31 19:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MailCheck
2017-05-16 20:01 - 2015-12-31 19:22 - 00000000 ____D C:\Program Files (x86)\MailCheck
2017-05-11 17:43 - 2016-01-28 17:47 - 00000000 ____D C:\ProgramData\AomeiBR
2017-05-11 09:18 - 2017-03-28 13:34 - 00001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-11 09:18 - 2017-03-28 13:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-01-03 12:49 - 2017-04-11 22:31 - 0003320 _____ () C:\ProgramData\hpzinstall.log
2016-12-20 13:30 - 2016-12-20 16:01 - 0005307 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-20 13:30 - 2016-12-20 14:19 - 0003552 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Einige Dateien in TEMP:
====================
2017-05-24 21:00 - 2017-05-24 21:00 - 32100680 _____ () C:\Users\haufdemb\AppData\Local\Temp\vlc-2.2.6-win64.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-06-08 19:36

==================== Ende von FRST.txt ============================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-06-2017 01
durchgeführt von haufdemb (09-06-2017 07:54:00)
Gestartet von C:\Users\haufdemb\Desktop
Windows 10 Home Version 1703 (X64) (2017-04-11 19:48:49)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2901048201-2396791686-2562006212-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2901048201-2396791686-2562006212-503 - Limited - Disabled)
Gast (S-1-5-21-2901048201-2396791686-2562006212-501 - Limited - Disabled)
haufdemb (S-1-5-21-2901048201-2396791686-2562006212-1001 - Administrator - Enabled) => C:\Users\haufdemb

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security 10.0.390.0 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security 10.0.390.0 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

5.000 Office Vorlagen 2.0 Professional (HKLM-x32\...\{ACF92C33-2867-4C7B-AF07-1A8170CA70AE}_is1) (Version:  - )
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.8.198 - Adobe Systems, Inc.)
Ansel (Version: 381.65 - NVIDIA Corporation) Hidden
AntiBrowserSpy 2017 (HKLM-x32\...\{F78B5B4F-075A-4C81-AA27-E707861EB5B7}_is1) (Version: 183 - Abelssoft)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version:  - AOMEI Technology Co., Ltd.)
Ashampoo Burning Studio 2017 (HKLM-x32\...\{91B33C97-C878-6579-69BA-23E5405C7AAB}_is1) (Version: 18.0.0 - Ashampoo GmbH & Co. KG)
Audials (HKLM-x32\...\{69626CD9-18D4-4DA7-BB50-D452A93B3D68}) (Version: 12.0.54100.0 - Audials AG)
Auto-Master 11.67  (HKLM-x32\...\Auto-Master) (Version: 11.67 - EWS  <>  Eberhard Werner Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6618 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.5.6618 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 7 (HKLM-x32\...\{7984FCA5-1BB6-46e6-91E2-ED5C301AF11A}) (Version: 7.0.7504.0 - CyberLink Corp.)
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.5418 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4.4225 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.4.4225 - CyberLink Corp.) Hidden
D1500 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
DDBAC (HKLM-x32\...\{79B95C3D-7DD0-4D4B-A449-49FF0E5E141C}) (Version: 5.3.46.0 - DataDesign)
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJ_SF_03_D1500_Software_Min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.2 - Dropbox, Inc.)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
ESET Smart Security (HKLM\...\{23D48E5C-50F0-4DC2-8508-08E383403414}) (Version: 10.0.390.0 - ESET, spol. s r.o.)
Evernote v. 6.5.4 (HKLM-x32\...\{D47E7D82-0D98-11E7-A6D6-005056951CAD}) (Version: 6.5.4.4720 - Evernote Corp.)
Finanzmanager 2016 (x32 Version: 23.39.00.0197 - Haufe-Lexware GmbH & Co.KG) Hidden
Finanzmanager Import Export Server 2016 (x32 Version: 23.37.00.0125 - Haufe-Lexware GmbH & Co.KG) Hidden
GClean 2017 (HKLM-x32\...\{4281435C-AD1D-4C8A-B9C0-3961C08EF142}_is1) (Version: 137 - Abelssoft)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet D1500 Printer Driver Software 14.0 Rel. 6 (HKLM\...\{8750F936-3F72-4222-A6DE-86EB8924004C}) (Version: 14.0 - HP)
HP Documentation (HKLM\...\HP_Documentation) (Version:  - HP)
HP ESU for Microsoft Windows 10 (HKLM-x32\...\{2CDA0D13-ED4D-4E66-B920-9AE696F9992E}) (Version: 1.1.1 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP My Display (HKLM-x32\...\{15733AD1-1CEF-459A-9245-0924FC63BDD5}) (Version: 2.01.006 - Portrait Displays, Inc.)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8305.5282 - Hewlett-Packard)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.4.14.41 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{76272057-98E0-4DC4-AAC3-10C546C47195}) (Version: 14.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{A38E954F-9043-42BD-9DE9-246ED183791D}) (Version: 12.6.14.19 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - Hewlett-Packard Company)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1167 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation)
Intel(R) Ready Mode Technology (HKLM\...\{9F82AA39-BB14-4BD3-98EF-D4E9E3526B7D}) (Version: 1.1.70.514 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{71095B37-F2D5-44A9-82D4-7E4E95DB3C43}) (Version: 17.1.1530.1676 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{544ecb18-5d76-44bb-ac33-8d06719e39e7}) (Version: 19.20.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Lexware Finanzmanager 2016 (HKLM-x32\...\{c1e70aab-69d5-45c3-aed1-998a2720748d}) (Version: 23.37.0.128 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (HKLM-x32\...\{1C3F4B46-9004-4830-BD7D-1137A615FBF0}) (Version: 16.00.00.0040 - Haufe-Lexware GmbH & Co.KG)
Lexware Installations Dienst (HKLM-x32\...\{6FF55A3A-4E59-4CF8-9248-2EE747168B3E}) (Version: 5.01.00.0040 - Haufe-Lexware GmbH & Co.KG)
Lexware online banking (x32 Version: 22.02.00.0040 - Haufe-Lexware GmbH & Co.KG) Hidden
MailCheck 2 Version 2.98 (Build 454) (HKLM-x32\...\MailCheck_is1) (Version: 2.98 (Build 454) - Dirk Jansen)
MailStore Home 10.1.2.12457 (HKLM-x32\...\MailStore Home_universal1) (Version: 10.1.2.12457 - MailStore Software GmbH)
Malwarebytes Version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2901048201-2396791686-2562006212-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 53.0.3 (x64 de) (HKLM\...\Mozilla Firefox 53.0.3 (x64 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
Mozilla Thunderbird 52.1.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 52.1.1 (x86 de)) (Version: 52.1.1 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Grafiktreiber 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Online Manager (HKLM-x32\...\Online Manager) (Version: 2.02 - Deutsche Telekom AG)
Online Manager (Version: 2.02 - Deutsche Telekom AG, Marmiko IT-Solutions GmbH) Hidden
Password Depot 8 (HKLM-x32\...\{56EC7B3B-D127-48FC-8EC1-FE93FEA64828}_is1) (Version: 8.2.2 - AceBIT GmbH)
Pivot Software (x32 Version: 9.03.004 - Portrait Displays, Inc.) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7796 - Realtek Semiconductor Corp.)
SanDisk SSD Dashboard (HKLM-x32\...\SanDisk SSD Dashboard) (Version: 1.4.4.4 - Western Digital Corporation or its affiliates)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SDK (x32 Version: 2.33.005 - Portrait Displays, Inc.) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SoftMaker Office Standard 2012 (HKLM-x32\...\{8EBB8452-274B-465D-8324-00B0832FBB02}) (Version: 12.0.3513 - SoftMaker Software GmbH)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steganos Privacy Suite 17 (HKLM-x32\...\{7381E9AB-68A4-418F-8130-88666557C6F4}) (Version: 17.1.3 - Steganos Software GmbH)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {1311E740-BB64-4C3D-92FE-D67B64C71E29} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-08] (Adobe Systems Incorporated)
Task: {1A6CE366-7D24-4FB9-9C54-8ADC2FA7C014} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {26CFD5C4-D110-45C4-946B-A622F3F9B893} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-23] (Microsoft Corporation)
Task: {2FCBEDEF-F936-42B3-A2D3-0FE3B48A152E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {4105D434-9E53-4060-BF1C-0B7DDA681DF5} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {474E2364-C8D4-457A-AA85-F38F04047853} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {4DF75A9E-8C3C-49DD-A561-F83FF0110D69} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {51CFFCD8-4FAE-4F87-B080-8D0A00D74F6E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {525228B4-7BAE-4B78-B4CE-6CD6F2A6024C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {73C73D52-4E78-494D-A373-9BBF98CA53CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-05-25] (HP Inc.)
Task: {78F23E83-1A96-4C92-AD11-4E45F6345036} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {7BE7FB6F-F3CB-459E-A55D-DD5393C9F4AD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {7D271E8F-7D97-4ABB-9FEA-7DAC8D37A5B4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {856D809B-BA49-4C94-A247-1A031C37471E} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-06-19] ()
Task: {944545A2-C8F0-4FF6-BA7B-2FFD63EDFC75} - System32\Tasks\{81E81A63-D362-4BBA-8FDD-9329CE7FC522} => pcalua.exe -a C:\Users\haufdemb\Desktop\sp69034.exe -d C:\Users\haufdemb\Desktop
Task: {A2B4A03B-430D-41E7-B816-401B09E14B01} - System32\Tasks\HPCeeScheduleForhaufdemb => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {AC8F4408-A3DC-45BB-9821-B00A7F8D0467} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {B0E8DD9E-6F20-47CD-81A6-39A175398C87} - System32\Tasks\{0355242E-5D36-4872-9236-A66C7EFB9706} => pcalua.exe -a "C:\Program Files (x86)\OkayFreedom\setuptool.exe" -d "C:\Program Files (x86)\OkayFreedom"
Task: {B78A8168-D453-4C80-841A-0D1CDD54B0F8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {E08862E4-FF73-4FD1-AD31-031B5F189426} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {E9DBBEB4-4968-4829-93FF-159CC3EAB1C9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {F757B966-C841-44E9-8C75-9D812E9A0365} - System32\Tasks\{1EDCB29B-0FC6-466F-BDDF-870BD71A51CB} => pcalua.exe -a C:\Users\haufdemb\Desktop\Antibot-3.7.exe -d C:\Users\haufdemb\Desktop
Task: {FDE1A52C-3E3D-4F36-BD01-89EBF2C7AD52} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleForhaufdemb.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-22 00:37 - 2014-04-15 03:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2010-10-19 09:31 - 2010-10-19 09:31 - 00205312 _____ () C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\driver64\SoftplugLib.DLL
2016-12-20 13:01 - 2013-01-10 16:26 - 00091944 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\msgHook64.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-12-20 13:00 - 2013-01-10 16:26 - 00275752 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dthook.dll
2016-07-28 11:53 - 2016-07-28 11:53 - 00226656 _____ () C:\Program Files (x86)\Steganos Privacy Suite 17\ShellExtension.dll
2017-03-18 22:59 - 2017-03-20 06:36 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-12-20 13:01 - 2009-03-03 12:42 - 00694824 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Software\wpCtrl.exe
2016-12-20 13:01 - 2009-03-03 12:42 - 00694824 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Software\floater.exe
2016-12-20 13:01 - 2013-01-10 16:26 - 00164648 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
2016-12-20 13:01 - 2013-01-10 16:26 - 00198440 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
2017-06-03 16:54 - 2017-05-27 18:15 - 00958320 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00331624 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00257896 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00360304 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00040808 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00495472 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00143216 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00081776 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00114536 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2017-06-03 16:54 - 2015-05-21 14:32 - 02403504 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00298856 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00073576 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00089960 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00978800 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00339824 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2017-06-03 16:54 - 2017-05-27 18:15 - 00728944 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00175976 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2017-06-03 16:54 - 2017-05-27 18:11 - 00130928 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00114536 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00266096 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2017-06-03 16:54 - 2017-05-27 18:12 - 00188264 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2015-09-04 20:34 - 2015-09-04 20:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-12-20 13:01 - 2009-03-03 12:40 - 00245760 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Software\winphook.dll
2016-12-20 13:01 - 2013-01-10 16:26 - 00086824 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\msgHook.dll
2017-03-20 12:57 - 2017-03-20 12:57 - 00321208 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2016-12-20 13:00 - 2013-01-10 16:26 - 00189224 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Shared\PresetsCOM.dll
2016-12-20 13:00 - 2013-01-10 16:25 - 00123688 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\CC\gui.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2901048201-2396791686-2562006212-1001\...\secunia.com -> hxxps://psi3.secunia.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-10 13:04 - 2015-07-10 13:02 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2901048201-2396791686-2562006212-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\haufdemb\Pictures\Saved Pictures\Flusslandschaft(Bayern, Deutschland).jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "HeimdalAgentLoader"
HKLM\...\StartupApproved\Run32: => "LexwareInfoService"
HKU\S-1-5-21-2901048201-2396791686-2562006212-1001\...\StartupApproved\StartupFolder: => "Auto-Master Termin.lnk"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{CACFACBD-ADD1-44BE-A685-86E1E089F477}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{4CC981AF-3E7D-4C06-8F05-117946EDEDDF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{AD0EDB15-2377-44F7-8F6D-6A34E3BCBA9F}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{445897FF-027B-4DAE-B93B-91B6C23FA533}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{743D8228-46AC-4452-8642-331EDBE38B14}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{3D218F8F-60C7-48F7-8EF6-10542497E1C2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{B35F7DED-0086-4134-AD85-DF3199ADD46C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{75136B29-1791-4015-9D32-90E2BD9D52D0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{A71BCF5E-E27E-422F-9980-E777D499CBC7}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{9FFC5F5A-8497-4329-B901-D10705B50F78}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3AD80FCD-77F5-4254-B9AC-395B6169F024}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BE360E22-4FCD-48E0-A79D-AF239E60D994}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{196B9CA5-E42B-4A9A-B945-5ACB967D18E7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8F1453CC-764C-42EF-BD59-FDED48B84CEC}] => (Allow) C:\Users\haufdemb\AppData\Local\Temp\7zS5283\hppiw.exe
FirewallRules: [{3244035C-7252-474F-AEA7-9A1101455392}] => (Allow) C:\Users\haufdemb\AppData\Local\Temp\7zS5283\hppiw.exe
FirewallRules: [{A80E3D75-868F-45EC-91D5-9F9C3F2D764B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{29100DAC-3059-4DF4-B1AB-EB05D8BE33F4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{994E6933-9135-4F42-9BFE-167AD389F930}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{D4CBFE8D-A613-4C43-BB3D-F515F1A4F454}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C35E1D6A-9A43-435B-8F07-41E593389D19}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{EFD2853F-EC40-45C1-8D41-1965DF1FAA8E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{E1C5CA2C-7C69-4309-8B2A-3FF8A1AD7617}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{2F70B2A4-886C-4812-B4C4-612BA0BBC23D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{8D1D7CD3-F1C9-4B99-AE39-494D84A24C6D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{0A4CD070-1749-488A-96E8-545512FB728C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{08C5B75A-C14A-462D-BE3A-233C9825D699}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{1DB7F242-DC7C-431D-B3A2-50BABB743075}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{97F2D2F8-EA0E-45C0-8131-D0DC4C29F55D}] => (Allow) C:\Program Files (x86)\Audials\Audials 12\Audials.exe
FirewallRules: [{C4C41874-A9ED-4B84-8E97-06BD69B41DF7}] => (Allow) LPort=12972
FirewallRules: [{C0E4D822-A0A2-4DB5-BC60-DAFB3ABFECA0}] => (Allow) LPort=14714
FirewallRules: [{B2487D2A-62AF-44D0-9BA4-CACD752EF3AC}] => (Allow) LPort=31931
FirewallRules: [{B3B78D3F-1207-4703-8E91-552D648AA4A9}] => (Allow) E:\fsetup.exe
FirewallRules: [{330B637E-36C6-4A79-B30C-EC574A614D37}] => (Allow) E:\fsetup.exe
FirewallRules: [{27E6926A-6BBA-47C5-A544-AD6B7EAE7B8E}] => (Allow) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{D0E99D12-4655-4185-B842-7AD486F5C931}] => (Allow) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/09/2017 07:48:17 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (06/09/2017 07:46:23 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files\CyberLink\PhotoDirector\Kernel\CES\CES_AudioCacheAgent.exe.Manifest".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (06/09/2017 07:46:23 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files\CyberLink\PhotoDirector\Kernel\CES\CES_CacheAgent.exe.Manifest".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (06/09/2017 07:46:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files\cyberlink\photodirector7\kernel\ces\CES_AudioCacheAgent.exe.Manifest".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (06/09/2017 07:46:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files\cyberlink\photodirector7\kernel\ces\CES_CacheAgent.exe.Manifest".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (06/09/2017 07:46:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.

Error: (06/09/2017 07:44:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-1QKGMBB)
Description: Bei der Aktivierung der App „Weather.TheWeatherChannelforHP_t3yemqpq4kp7p!App“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (06/09/2017 07:44:18 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-1QKGMBB)
Description: Bei der Aktivierung der App „Weather.TheWeatherChannelforHP_t3yemqpq4kp7p!App“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (06/08/2017 11:19:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NVDisplay.Container.exe, Version: 1.2.0.0, Zeitstempel: 0x58df0aaf
Name des fehlerhaften Moduls: nvxdsyncplugin.dll_unloaded, Version: 8.17.13.8165, Zeitstempel: 0x58df02a5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000047f79
ID des fehlerhaften Prozesses: 0x2f00
Startzeit der fehlerhaften Anwendung: 0x01d2e09ce61d8a53
Pfad der fehlerhaften Anwendung: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Pfad des fehlerhaften Moduls: nvxdsyncplugin.dll
Berichtskennung: fe43e4fb-7265-45f4-b205-a6074466fa29
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/08/2017 11:19:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NVDisplay.Container.exe, Version: 1.2.0.0, Zeitstempel: 0x58df0aaf
Name des fehlerhaften Moduls: nvxdsyncplugin.dll_unloaded, Version: 8.17.13.8165, Zeitstempel: 0x58df02a5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000047bc1
ID des fehlerhaften Prozesses: 0x2430
Startzeit der fehlerhaften Anwendung: 0x01d2e09ce5eaf5f0
Pfad der fehlerhaften Anwendung: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Pfad des fehlerhaften Moduls: nvxdsyncplugin.dll
Berichtskennung: 1a7995c5-de53-45a9-bb21-d655a48d56ce
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


Systemfehler:
=============
Error: (06/09/2017 07:44:15 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (06/09/2017 07:44:15 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (06/08/2017 07:34:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1QKGMBB)
Description: Der Server "Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (06/08/2017 07:05:10 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (06/08/2017 07:05:10 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (06/08/2017 07:03:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/07/2017 08:08:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (06/07/2017 08:08:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (06/07/2017 03:13:26 PM) (Source: Netwtw04) (EventID: 5005) (User: )
Description: \Device\NDMP1Intel(R) Dual Band Wireless-AC 3165

Error: (06/07/2017 03:13:26 PM) (Source: Netwtw04) (EventID: 5005) (User: )
Description: \Device\NDMP1Intel(R) Dual Band Wireless-AC 3165


CodeIntegrity:
===================================
  Date: 2017-06-09 07:53:37.243
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:53:37.241
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:49:55.157
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:49:55.155
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:47:03.392
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:47:03.390
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:47:02.587
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:47:02.585
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:47:01.818
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-06-09 07:47:01.816
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz
Prozentuale Nutzung des RAM: 35%
Installierter physikalischer RAM: 8131.87 MB
Verfügbarer physikalischer RAM: 5222.45 MB
Summe virtueller Speicher: 9411.87 MB
Verfügbarer virtueller Speicher: 6353.4 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:117.94 GB) (Free:57.98 GB) NTFS
Drive d: (DATADRIVE1) (Fixed) (Total:931.39 GB) (Free:920.93 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 01F03A86)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 76CBE4C9)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
Gruß

Clocks
__________________

Geändert von Clocks (09.06.2017 um 09:09 Uhr) Grund: verbessert

Alt 09.06.2017, 09:03   #4
Clocks
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Hallo Matthias,

jetzt die Logdatei vom TDSS-Killer:

Code:
ATTFilter
09:03:34.0328 0x2374  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
09:03:34.0328 0x2374  UEFI system
09:03:37.0204 0x2374  ============================================================
09:03:37.0204 0x2374  Current date / time: 2017/06/09 09:03:37.0204
09:03:37.0204 0x2374  SystemInfo:
09:03:37.0204 0x2374  
09:03:37.0204 0x2374  OS Version: 10.0.15063 ServicePack: 0.0
09:03:37.0204 0x2374  Product type: Workstation
09:03:37.0204 0x2374  ComputerName: DESKTOP-1QKGMBB
09:03:37.0204 0x2374  UserName: haufdemb
09:03:37.0204 0x2374  Windows directory: C:\WINDOWS
09:03:37.0204 0x2374  System windows directory: C:\WINDOWS
09:03:37.0204 0x2374  Running under WOW64
09:03:37.0204 0x2374  Processor architecture: Intel x64
09:03:37.0204 0x2374  Number of processors: 4
09:03:37.0204 0x2374  Page size: 0x1000
09:03:37.0204 0x2374  Boot type: Normal boot
09:03:37.0204 0x2374  CodeIntegrityOptions = 0x00000001
09:03:37.0204 0x2374  ============================================================
09:03:37.0282 0x2374  KLMD registered as C:\WINDOWS\system32\drivers\38902620.sys
09:03:37.0282 0x2374  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 15063.0, osProperties = 0x19
09:03:37.0329 0x2374  System UUID: {F8277778-C466-32DE-22C7-B7CDFDE2D458}
09:03:37.0548 0x2374  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:03:37.0548 0x2374  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:03:37.0594 0x2374  ============================================================
09:03:37.0594 0x2374  \Device\Harddisk0\DR0:
09:03:37.0594 0x2374  GPT partitions:
09:03:37.0594 0x2374  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {FB845FCE-5F4C-4883-AC9A-7085746E461C}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xB4000
09:03:37.0594 0x2374  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {AF57730A-5EEC-45DE-B1E5-63F9B46BCD25}, Name: Microsoft reserved partition, StartLBA 0xB4800, BlocksNum 0x40000
09:03:37.0594 0x2374  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {70D930F6-5BE3-4B13-8864-FDEB4D961AF2}, Name: Basic data partition, StartLBA 0xF4800, BlocksNum 0xEBE2800
09:03:37.0594 0x2374  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {07CD3C63-669E-4C3E-8E4B-8058BA26438C}, Name: Basic data partition, StartLBA 0xECD7000, BlocksNum 0x1A5000
09:03:37.0594 0x2374  MBR partitions:
09:03:37.0594 0x2374  \Device\Harddisk1\DR1:
09:03:37.0594 0x2374  GPT partitions:
09:03:37.0594 0x2374  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {C5E11FD5-6E2A-4FA0-952B-6F690CD57B71}, Name: Microsoft reserved partition, StartLBA 0x800, BlocksNum 0x40000
09:03:37.0594 0x2374  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {27B08479-2618-438B-BADA-0D118ECAF068}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0x746C6000
09:03:37.0594 0x2374  MBR partitions:
09:03:37.0594 0x2374  ============================================================
09:03:37.0594 0x2374  C: <-> \Device\Harddisk0\DR0\Partition3
09:03:37.0594 0x2374  D: <-> \Device\Harddisk1\DR1\Partition2
09:03:37.0594 0x2374  ============================================================
09:03:37.0594 0x2374  Initialize success
09:03:37.0594 0x2374  ============================================================
09:03:51.0377 0x1344  ============================================================
09:03:51.0377 0x1344  Scan started
09:03:51.0377 0x1344  Mode: Manual; 
09:03:51.0377 0x1344  ============================================================
09:03:51.0377 0x1344  KSN ping started
09:03:51.0518 0x1344  KSN ping finished: true
09:03:51.0737 0x1344  ================ Scan system memory ========================
09:03:51.0737 0x1344  System memory - ok
09:03:51.0737 0x1344  ================ Scan services =============================
09:03:51.0783 0x1344  1394ohci - ok
09:03:51.0783 0x1344  3ware - ok
09:03:51.0783 0x1344  ACPI - ok
09:03:51.0799 0x1344  AcpiDev - ok
09:03:51.0799 0x1344  acpiex - ok
09:03:51.0799 0x1344  acpipagr - ok
09:03:51.0799 0x1344  AcpiPmi - ok
09:03:51.0799 0x1344  acpitime - ok
09:03:51.0815 0x1344  [ 8D6BA8E7676038A27FD4ECF12CC744B0, F5D59B764DCB4A06A51939533DC7B2391FD68E3979C48939C023A60DCE0D2101 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:03:51.0815 0x1344  AdobeARMservice - ok
09:03:51.0862 0x1344  [ E6A1D864EC90F4397DF5AB2633B34DD4, 05F1B7291EBDD9CA1D74649C0DAFCBE5F2CF93E92C5CA16A8AC10B6DF83101A0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:03:51.0862 0x1344  AdobeFlashPlayerUpdateSvc - ok
09:03:51.0862 0x1344  ADP80XX - ok
09:03:51.0862 0x1344  AFD - ok
09:03:51.0877 0x1344  ahcache - ok
09:03:51.0877 0x1344  AJRouter - ok
09:03:51.0877 0x1344  ALG - ok
09:03:51.0877 0x1344  [ D03124A92936B3B1D38AC31D9B5582F8, F47146DBCBA9CCA89425405CF8CF2894BD4FEE5B9E650BFA9BE1E19B6405188A ] ambakdrv        C:\WINDOWS\system32\ambakdrv.sys
09:03:51.0877 0x1344  ambakdrv - ok
09:03:51.0877 0x1344  AmdK8 - ok
09:03:51.0893 0x1344  AmdPPM - ok
09:03:51.0893 0x1344  amdsata - ok
09:03:51.0893 0x1344  amdsbs - ok
09:03:51.0893 0x1344  amdxata - ok
09:03:51.0908 0x1344  [ 98B78382C46541F2FFBFFB4CB3C709A2, AD9B8BAA2C129154419F780D76D3948E334E7BFBC0A1B521C18DBE57B089B445 ] ammntdrv        C:\WINDOWS\system32\ammntdrv.sys
09:03:51.0908 0x1344  ammntdrv - ok
09:03:51.0908 0x1344  [ 301167E69BDE24CE24FB53376C422B3B, B244D86866DB7E79609A161DC6D3A5C04BF3A806C670D5D3024FE50DFFC0C2CE ] amwrtdrv        C:\WINDOWS\system32\amwrtdrv.sys
09:03:51.0908 0x1344  amwrtdrv - ok
09:03:51.0908 0x1344  AppHostSvc - ok
09:03:51.0908 0x1344  AppID - ok
09:03:51.0924 0x1344  AppIDSvc - ok
09:03:51.0924 0x1344  Appinfo - ok
09:03:51.0924 0x1344  applockerfltr - ok
09:03:51.0924 0x1344  AppReadiness - ok
09:03:51.0924 0x1344  AppXSvc - ok
09:03:51.0924 0x1344  arcsas - ok
09:03:51.0940 0x1344  aspnet_state - ok
09:03:51.0940 0x1344  AsyncMac - ok
09:03:51.0955 0x1344  atapi - ok
09:03:51.0955 0x1344  AudioEndpointBuilder - ok
09:03:51.0955 0x1344  Audiosrv - ok
09:03:51.0955 0x1344  AxInstSV - ok
09:03:51.0955 0x1344  b06bdrv - ok
09:03:51.0971 0x1344  [ 6CF27A572B74DEB1CA8E0AD43C9C0834, 292F0C5C99C20A79E09D653D3D3A1238A674DE30F58237BAD6EFBCABDA6AC615 ] Backupper Service C:\Program Files (x86)\AOMEI Backupper\ABService.exe
09:03:51.0971 0x1344  Backupper Service - ok
09:03:51.0971 0x1344  BasicDisplay - ok
09:03:51.0971 0x1344  BasicRender - ok
09:03:51.0987 0x1344  bcmfn2 - ok
09:03:51.0987 0x1344  BDESVC - ok
09:03:51.0987 0x1344  Beep - ok
09:03:51.0987 0x1344  BFE - ok
09:03:51.0987 0x1344  BITS - ok
09:03:52.0002 0x1344  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:03:52.0002 0x1344  Bonjour Service - ok
09:03:52.0018 0x1344  bowser - ok
09:03:52.0018 0x1344  BrokerInfrastructure - ok
09:03:52.0018 0x1344  Browser - ok
09:03:52.0018 0x1344  BthAvrcpTg - ok
09:03:52.0018 0x1344  BthEnum - ok
09:03:52.0018 0x1344  BthHFEnum - ok
09:03:52.0033 0x1344  bthhfhid - ok
09:03:52.0033 0x1344  BthHFSrv - ok
09:03:52.0033 0x1344  BthLEEnum - ok
09:03:52.0033 0x1344  BTHMODEM - ok
09:03:52.0033 0x1344  BthPan - ok
09:03:52.0049 0x1344  BTHPORT - ok
09:03:52.0049 0x1344  bthserv - ok
09:03:52.0049 0x1344  BTHUSB - ok
09:03:52.0049 0x1344  buttonconverter - ok
09:03:52.0049 0x1344  CAD - ok
09:03:52.0049 0x1344  CapImg - ok
09:03:52.0065 0x1344  cdfs - ok
09:03:52.0065 0x1344  CDPSvc - ok
09:03:52.0065 0x1344  CDPUserSvc - ok
09:03:52.0065 0x1344  cdrom - ok
09:03:52.0080 0x1344  CertPropSvc - ok
09:03:52.0080 0x1344  cht4iscsi - ok
09:03:52.0080 0x1344  cht4vbd - ok
09:03:52.0080 0x1344  circlass - ok
09:03:52.0080 0x1344  CldFlt - ok
09:03:52.0096 0x1344  CLFS - ok
09:03:52.0096 0x1344  ClipSVC - ok
09:03:52.0096 0x1344  clreg - ok
09:03:52.0096 0x1344  CmBatt - ok
09:03:52.0112 0x1344  CNG - ok
09:03:52.0112 0x1344  cnghwassist - ok
09:03:52.0127 0x1344  CompositeBus - ok
09:03:52.0143 0x1344  COMSysApp - ok
09:03:52.0143 0x1344  condrv - ok
09:03:52.0143 0x1344  CoreMessagingRegistrar - ok
09:03:52.0143 0x1344  CryptSvc - ok
09:03:52.0143 0x1344  dam - ok
09:03:52.0158 0x1344  DcomLaunch - ok
09:03:52.0158 0x1344  defragsvc - ok
09:03:52.0158 0x1344  DeviceAssociationService - ok
09:03:52.0158 0x1344  DeviceInstall - ok
09:03:52.0158 0x1344  DevicesFlowUserSvc - ok
09:03:52.0174 0x1344  DevQueryBroker - ok
09:03:52.0174 0x1344  Dfsc - ok
09:03:52.0174 0x1344  Dhcp - ok
09:03:52.0174 0x1344  diagnosticshub.standardcollector.service - ok
09:03:52.0174 0x1344  DiagTrack - ok
09:03:52.0190 0x1344  Disk - ok
09:03:52.0190 0x1344  DmEnrollmentSvc - ok
09:03:52.0190 0x1344  dmvsc - ok
09:03:52.0190 0x1344  dmwappushservice - ok
09:03:52.0190 0x1344  Dnscache - ok
09:03:52.0205 0x1344  dot3svc - ok
09:03:52.0205 0x1344  DPS - ok
09:03:52.0205 0x1344  drmkaud - ok
09:03:52.0205 0x1344  DsmSvc - ok
09:03:52.0221 0x1344  DsSvc - ok
09:03:52.0221 0x1344  [ FC90E80206C4D94909B4586940409944, B26E65A1D29C4E6612E2D7562E0E87011F30DED72D718EA93C1ABED51A2464AC ] DTSRVC          C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe
09:03:52.0221 0x1344  DTSRVC - ok
09:03:52.0221 0x1344  DusmSvc - ok
09:03:52.0221 0x1344  DXGKrnl - ok
09:03:52.0237 0x1344  [ CD67EAD53BC83CBFE16FC844960014BF, DDF38EE9C9F3C2999928BFFDA221AC5A93C25F07FBFC7D98C4B938DD4D769710 ] eamonm          C:\WINDOWS\system32\DRIVERS\eamonm.sys
09:03:52.0237 0x1344  eamonm - ok
09:03:52.0237 0x1344  EapHost - ok
09:03:52.0237 0x1344  ebdrv - ok
09:03:52.0252 0x1344  [ 0AC6A17F109D011B6AEAA74B477E11DA, 8B5CA15EC289398344F2102257FD2803779E9DF4823F84D8B2F0C70AEEC935BB ] edevmon         C:\WINDOWS\system32\DRIVERS\edevmon.sys
09:03:52.0252 0x1344  edevmon - ok
09:03:52.0252 0x1344  [ A6E666A2C13782E7D012202351DE0FFB, 1FC886F68681FC34738A562C2AD0B294DC614AEE5467ECC8AEADA8AE698B1450 ] eelam           C:\WINDOWS\system32\DRIVERS\eelam.sys
09:03:52.0252 0x1344  eelam - ok
09:03:52.0252 0x1344  EFS - ok
09:03:52.0268 0x1344  [ ABF75BCBC247287EA757F95DA53A610C, 2F832097AC5399A344ED071C967BABD09909E023008EC6EE185C6ECBA67E5955 ] ehdrv           C:\WINDOWS\system32\DRIVERS\ehdrv.sys
09:03:52.0268 0x1344  ehdrv - ok
09:03:52.0268 0x1344  EhStorClass - ok
09:03:52.0268 0x1344  EhStorTcgDrv - ok
09:03:52.0268 0x1344  [ 14589BB78A4AE12C68489CFC4359080B, FC50CA90094E2373AFC0CF265108F954C666ED11688F215CA3683AB8BBEC5D7A ] ekbdflt         C:\WINDOWS\system32\DRIVERS\ekbdflt.sys
09:03:52.0268 0x1344  ekbdflt - ok
09:03:52.0330 0x1344  [ 2E9C69F241EEE4544705BF95E030D149, 2570F540E597D9E3FED8EFAC28A6671CEAA8C19F7D657A45076C5C7ABB605ED4 ] ekrn            C:\Program Files\ESET\ESET Smart Security\ekrn.exe
09:03:52.0362 0x1344  ekrn - ok
09:03:52.0377 0x1344  embeddedmode - ok
09:03:52.0377 0x1344  EntAppSvc - ok
09:03:52.0377 0x1344  [ B303EDAC3D4A4ED16920F05D02F70D96, 472DDC66B7F6D3643E975F6BCE71444630DC45891790F56E209AAC89E5D6CC6E ] epfw            C:\WINDOWS\system32\DRIVERS\epfw.sys
09:03:52.0377 0x1344  epfw - ok
09:03:52.0393 0x1344  [ F03FEE94A3F2CCDEA7C3018507AA4464, 66C3ABE8E118036B5F4DBBD7ADE4D9D0E8C39D298F3683748719020CE75C3FDE ] epfwwfp         C:\WINDOWS\system32\DRIVERS\epfwwfp.sys
09:03:52.0393 0x1344  epfwwfp - ok
09:03:52.0393 0x1344  ErrDev - ok
09:03:52.0393 0x1344  EventSystem - ok
09:03:52.0408 0x1344  [ A3037B7A05E7F90373323B7B5B0C2E16, 4AA0ED6A3E30C69224B22B98211BDC51BF36A0BFF55461EF1BA0E33287B88B8F ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
09:03:52.0424 0x1344  EvtEng - ok
09:03:52.0424 0x1344  exfat - ok
09:03:52.0424 0x1344  fastfat - ok
09:03:52.0424 0x1344  Fax - ok
09:03:52.0424 0x1344  fdc - ok
09:03:52.0440 0x1344  fdPHost - ok
09:03:52.0440 0x1344  FDResPub - ok
09:03:52.0440 0x1344  fhsvc - ok
09:03:52.0440 0x1344  FileCrypt - ok
09:03:52.0440 0x1344  FileInfo - ok
09:03:52.0455 0x1344  Filetrace - ok
09:03:52.0455 0x1344  flpydisk - ok
09:03:52.0455 0x1344  FltMgr - ok
09:03:52.0455 0x1344  FontCache - ok
09:03:52.0455 0x1344  FontCache3.0.0.0 - ok
09:03:52.0455 0x1344  FrameServer - ok
09:03:52.0471 0x1344  FsDepends - ok
09:03:52.0471 0x1344  Fs_Rec - ok
09:03:52.0471 0x1344  fvevol - ok
09:03:52.0471 0x1344  gencounter - ok
09:03:52.0471 0x1344  genericusbfn - ok
09:03:52.0471 0x1344  GPIOClx0101 - ok
09:03:52.0487 0x1344  gpsvc - ok
09:03:52.0487 0x1344  GpuEnergyDrv - ok
09:03:52.0487 0x1344  HDAudBus - ok
09:03:52.0487 0x1344  HidBatt - ok
09:03:52.0487 0x1344  HidBth - ok
09:03:52.0502 0x1344  hidi2c - ok
09:03:52.0502 0x1344  hidinterrupt - ok
09:03:52.0502 0x1344  HidIr - ok
09:03:52.0502 0x1344  hidserv - ok
09:03:52.0502 0x1344  HidUsb - ok
09:03:52.0502 0x1344  HomeGroupListener - ok
09:03:52.0518 0x1344  HomeGroupProvider - ok
09:03:52.0518 0x1344  [ 930370725FA0FE272346583A7A7D6BDB, 98195638D548A6E5E574E062FDCF4E5833DDE834399787EC51C340699B6E5E64 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
09:03:52.0534 0x1344  hpqcxs08 - ok
09:03:52.0534 0x1344  [ EE281DD6843F3F697C1AD7933EEB1E9B, 1ECE31C2150B92DDC1DCBBCECFE3E979F2C60B3F106280E3167BEC0269BF7A41 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
09:03:52.0534 0x1344  hpqddsvc - ok
09:03:52.0565 0x1344  [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
09:03:52.0565 0x1344  hpqwmiex - ok
09:03:52.0580 0x1344  HpSAMD - ok
09:03:52.0580 0x1344  [ 91ADA2CF99A0C28A231763E033FD6F98, 80F6ABD22D018EBF5AC3FD5BEE941962B29B1517EACE0C7730C00D7DE17CEFAC ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
09:03:52.0580 0x1344  HPSupportSolutionsFrameworkService - ok
09:03:52.0580 0x1344  HTTP - ok
09:03:52.0580 0x1344  HvHost - ok
09:03:52.0580 0x1344  hvservice - ok
09:03:52.0580 0x1344  hwpolicy - ok
09:03:52.0596 0x1344  hyperkbd - ok
09:03:52.0596 0x1344  i8042prt - ok
09:03:52.0596 0x1344  iagpio - ok
09:03:52.0596 0x1344  iai2c - ok
09:03:52.0596 0x1344  iaLPSS2i_GPIO2 - ok
09:03:52.0612 0x1344  iaLPSS2i_GPIO2_BXT_P - ok
09:03:52.0612 0x1344  iaLPSS2i_I2C - ok
09:03:52.0612 0x1344  iaLPSS2i_I2C_BXT_P - ok
09:03:52.0612 0x1344  iaLPSSi_GPIO - ok
09:03:52.0612 0x1344  iaLPSSi_I2C - ok
09:03:52.0643 0x1344  [ D3C487AE88FE4C417C9D538A1C25057D, 75B35794D03E865BD157058D214E67A1AC1A662341413451065BF80B04EEDEC1 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
09:03:52.0674 0x1344  iaStorA - ok
09:03:52.0674 0x1344  iaStorAV - ok
09:03:52.0674 0x1344  iaStorV - ok
09:03:52.0674 0x1344  ibbus - ok
09:03:52.0674 0x1344  ibtsiva - ok
09:03:52.0690 0x1344  [ 18F7B1E3C5DE1CC8B3D2BBF90F7350EF, 750BB014CD290988D949FC566828B126D9A5B9D04EDF9E124680ECFFBC97D7AF ] ibtusb          C:\WINDOWS\system32\DRIVERS\ibtusb.sys
09:03:52.0690 0x1344  ibtusb - ok
09:03:52.0690 0x1344  icssvc - ok
09:03:52.0690 0x1344  IKEEXT - ok
09:03:52.0705 0x1344  IndirectKmd - ok
09:03:52.0784 0x1344  [ A3416CB47DF9027C31F7474DFA771D3F, 838947219D9E42FDF86E03E3870F3B53961FFE04337D695EDAAA10460878864E ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
09:03:52.0846 0x1344  IntcAzAudAddService - ok
09:03:52.0862 0x1344  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
09:03:52.0877 0x1344  Intel(R) Capability Licensing Service TCP IP Interface - ok
09:03:52.0893 0x1344  [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
09:03:52.0893 0x1344  Intel(R) Security Assist - ok
09:03:52.0893 0x1344  intelide - ok
09:03:52.0909 0x1344  intelpep - ok
09:03:52.0909 0x1344  intelppm - ok
09:03:52.0909 0x1344  [ 64309D45FD682E9BAE9CF2C0C23CAB44, 46E9AB44A135B074A13070C27ACFF8803EFC06FAC98172794472BF77822D083E ] IntelReadyModeDriver C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys
09:03:52.0909 0x1344  IntelReadyModeDriver - ok
09:03:52.0909 0x1344  iorate - ok
09:03:52.0909 0x1344  IpFilterDriver - ok
09:03:52.0924 0x1344  iphlpsvc - ok
09:03:52.0924 0x1344  IPMIDRV - ok
09:03:52.0924 0x1344  IPNAT - ok
09:03:52.0924 0x1344  IpxlatCfgSvc - ok
09:03:52.0924 0x1344  irda - ok
09:03:52.0924 0x1344  IRENUM - ok
09:03:52.0940 0x1344  irmon - ok
09:03:52.0940 0x1344  [ BE31E1E0B4739E700DDB2955EB001162, 658A218343E10A7ABFA5D38A6F5753915F70CF2EE4609BD2D00A782BCE0B4B7E ] IRMTService     c:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe
09:03:52.0940 0x1344  IRMTService - ok
09:03:52.0940 0x1344  [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
09:03:52.0955 0x1344  isaHelperSvc - ok
09:03:52.0955 0x1344  isapnp - ok
09:03:52.0955 0x1344  iScsiPrt - ok
09:03:52.0955 0x1344  [ 5F3583770145A00FA1EDCF8089AD5CCA, AB7AF84EE1B452312F3F7BEB3978355E7F23F4BB2A2F045E718F7346ACDB5CB3 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
09:03:52.0971 0x1344  jhi_service - ok
09:03:52.0971 0x1344  kbdclass - ok
09:03:52.0971 0x1344  kbdhid - ok
09:03:52.0971 0x1344  kdnic - ok
09:03:52.0971 0x1344  KeyIso - ok
09:03:52.0987 0x1344  KSecDD - ok
09:03:52.0987 0x1344  KSecPkg - ok
09:03:52.0987 0x1344  ksthunk - ok
09:03:52.0987 0x1344  KtmRm - ok
09:03:52.0987 0x1344  LanmanServer - ok
09:03:52.0987 0x1344  LanmanWorkstation - ok
09:03:53.0002 0x1344  [ 808AEDFB82408AF854A32EFBF54F7066, CBD0E6F367BD6DEE1A2C9F6754BC3BE18AFD5715D3D69399D3104406127BB32A ] Lexware_Update_Service C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
09:03:53.0002 0x1344  Lexware_Update_Service - ok
09:03:53.0002 0x1344  lfsvc - ok
09:03:53.0002 0x1344  LicenseManager - ok
09:03:53.0002 0x1344  lltdio - ok
09:03:53.0002 0x1344  lltdsvc - ok
09:03:53.0018 0x1344  lmhosts - ok
09:03:53.0018 0x1344  [ 00B4184D8B269387EE48E42373E35181, F64B0C17A6BBC3B532724686123CE175A4CA6932DE5A1A357C823108CE9B81C4 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
09:03:53.0034 0x1344  LMS - ok
09:03:53.0034 0x1344  LSI_SAS - ok
09:03:53.0034 0x1344  LSI_SAS2i - ok
09:03:53.0034 0x1344  LSI_SAS3i - ok
09:03:53.0034 0x1344  LSI_SSS - ok
09:03:53.0049 0x1344  LSM - ok
09:03:53.0049 0x1344  luafv - ok
09:03:53.0049 0x1344  MapsBroker - ok
09:03:53.0049 0x1344  mausbhost - ok
09:03:53.0049 0x1344  mausbip - ok
09:03:53.0143 0x1344  [ D76E56108E6482905D3FAEA0649919E4, E10285889570A01E544B027F4A17BA7242E5E3EF93D20A19B05091DB237C6DD1 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
09:03:53.0190 0x1344  MBAMService - ok
09:03:53.0206 0x1344  [ 913F4230E29E312D1B4B02E2BAC67C87, 5C772DA7F2454CAFEA981E18ABCE717FE0D065EE996FB758817F3EF775B0AC14 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
09:03:53.0206 0x1344  MBAMSwissArmy - ok
09:03:53.0206 0x1344  megasas - ok
09:03:53.0206 0x1344  megasas2i - ok
09:03:53.0221 0x1344  megasr - ok
09:03:53.0221 0x1344  [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
09:03:53.0221 0x1344  MEIx64 - ok
09:03:53.0221 0x1344  MessagingService - ok
09:03:53.0237 0x1344  mlx4_bus - ok
09:03:53.0237 0x1344  MMCSS - ok
09:03:53.0237 0x1344  Modem - ok
09:03:53.0237 0x1344  monitor - ok
09:03:53.0237 0x1344  mouclass - ok
09:03:53.0252 0x1344  mouhid - ok
09:03:53.0252 0x1344  mountmgr - ok
09:03:53.0252 0x1344  [ 8ACBB9A5C1E2846215F93227D4197B00, 0BCC8C0BF1C32F58C4E0A9097354DE6E29ACA16CF3CD4565507DD072A4BC5528 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:03:53.0252 0x1344  MozillaMaintenance - ok
09:03:53.0252 0x1344  mpsdrv - ok
09:03:53.0268 0x1344  MpsSvc - ok
09:03:53.0268 0x1344  MRxDAV - ok
09:03:53.0268 0x1344  mrxsmb - ok
09:03:53.0268 0x1344  mrxsmb10 - ok
09:03:53.0268 0x1344  mrxsmb20 - ok
09:03:53.0268 0x1344  MsBridge - ok
09:03:53.0284 0x1344  MSDTC - ok
09:03:53.0284 0x1344  Msfs - ok
09:03:53.0284 0x1344  msgpiowin32 - ok
09:03:53.0284 0x1344  mshidkmdf - ok
09:03:53.0284 0x1344  mshidumdf - ok
09:03:53.0299 0x1344  msisadrv - ok
09:03:53.0299 0x1344  MSiSCSI - ok
09:03:53.0299 0x1344  msiserver - ok
09:03:53.0299 0x1344  MSKSSRV - ok
09:03:53.0299 0x1344  MsLldp - ok
09:03:53.0315 0x1344  MSPCLOCK - ok
09:03:53.0315 0x1344  MSPQM - ok
09:03:53.0315 0x1344  MsRPC - ok
09:03:53.0315 0x1344  mssmbios - ok
09:03:53.0315 0x1344  MSTEE - ok
09:03:53.0330 0x1344  MTConfig - ok
09:03:53.0330 0x1344  Mup - ok
09:03:53.0330 0x1344  mvumis - ok
09:03:53.0346 0x1344  [ 0358DFD6B383CB917FF9B8061FDC8C5E, 18176FA40E376972A858275303EAABD5B4004CE741B35AAC2BCF89F5BB045FB3 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
09:03:53.0346 0x1344  MyWiFiDHCPDNS - ok
09:03:53.0346 0x1344  NativeWifiP - ok
09:03:53.0346 0x1344  NaturalAuthentication - ok
09:03:53.0346 0x1344  NcaSvc - ok
09:03:53.0346 0x1344  NcbService - ok
09:03:53.0362 0x1344  NcdAutoSetup - ok
09:03:53.0362 0x1344  ndfltr - ok
09:03:53.0362 0x1344  NDIS - ok
09:03:53.0362 0x1344  NdisCap - ok
09:03:53.0362 0x1344  NdisImPlatform - ok
09:03:53.0377 0x1344  NdisTapi - ok
09:03:53.0377 0x1344  Ndisuio - ok
09:03:53.0377 0x1344  NdisVirtualBus - ok
09:03:53.0377 0x1344  NdisWan - ok
09:03:53.0377 0x1344  ndiswanlegacy - ok
09:03:53.0377 0x1344  ndproxy - ok
09:03:53.0377 0x1344  Ndu - ok
09:03:53.0393 0x1344  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
09:03:53.0393 0x1344  Net Driver HPZ12 - ok
09:03:53.0393 0x1344  NetAdapterCx - ok
09:03:53.0393 0x1344  NetBIOS - ok
09:03:53.0409 0x1344  NetBT - ok
09:03:53.0409 0x1344  Netlogon - ok
09:03:53.0409 0x1344  Netman - ok
09:03:53.0409 0x1344  netprofm - ok
09:03:53.0409 0x1344  NetSetupSvc - ok
09:03:53.0424 0x1344  NetTcpPortSharing - ok
09:03:53.0424 0x1344  netvsc - ok
09:03:53.0534 0x1344  [ F9F84522CF84CF4A4EB9DDF19200BA9B, 7C773566A4F38FF2AF9C1BC74AED680DF4F19983564987119C7468B0FAA28579 ] Netwtw02        C:\WINDOWS\System32\drivers\Netwtw02.sys
09:03:53.0612 0x1344  Netwtw02 - ok
09:03:53.0752 0x1344  [ A878A444B442606F3669D78D1E58A4FC, 74F13DDC325A465678E0DE62EF5E32A53F5FF8CA24297E7CAA44F9B58EB7FECC ] Netwtw04        C:\WINDOWS\system32\DRIVERS\Netwtw04.sys
09:03:53.0862 0x1344  Netwtw04 - ok
09:03:53.0862 0x1344  NgcCtnrSvc - ok
09:03:53.0877 0x1344  NgcSvc - ok
09:03:53.0877 0x1344  NlaSvc - ok
09:03:53.0877 0x1344  Npfs - ok
09:03:53.0877 0x1344  npsvctrig - ok
09:03:53.0877 0x1344  nsi - ok
09:03:53.0877 0x1344  nsiproxy - ok
09:03:53.0893 0x1344  NTFS - ok
09:03:53.0893 0x1344  Null - ok
09:03:53.0893 0x1344  nvdimmn - ok
09:03:53.0909 0x1344  [ DA4A55A91446D8A758CB54DB749BA8EF, 8A1840771E31BB7683B840E980E3F81E073444C684E52FB04D3DD5158817E760 ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
09:03:53.0909 0x1344  NVHDA - ok
09:03:54.0221 0x1344  [ A6A1F747359C600C4B4A8AAA7D547272, 9F6D582D9CDF50ADD7FA8DD320E94074A703A742E09E04726EBE4C398CF9ADE4 ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_2112cfa205ccb4cd\nvlddmkm.sys
09:03:54.0409 0x1344  nvlddmkm - ok
09:03:54.0424 0x1344  nvraid - ok
09:03:54.0424 0x1344  nvstor - ok
09:03:54.0424 0x1344  OneSyncSvc - ok
09:03:54.0487 0x1344  [ F746BBF6D30303A3EAE6E8A52C6EACF5, 6D939B889BC53AD966FFC48B1FC00325A853585DDDC9DCA06A3276E2DFD96F21 ] Online Manager Service C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
09:03:54.0518 0x1344  Online Manager Service - ok
09:03:54.0534 0x1344  p2pimsvc - ok
09:03:54.0534 0x1344  p2psvc - ok
09:03:54.0534 0x1344  Parport - ok
09:03:54.0549 0x1344  partmgr - ok
09:03:54.0549 0x1344  PcaSvc - ok
09:03:54.0549 0x1344  pci - ok
09:03:54.0549 0x1344  pciide - ok
09:03:54.0549 0x1344  pcmcia - ok
09:03:54.0549 0x1344  pcw - ok
09:03:54.0565 0x1344  pdc - ok
09:03:54.0565 0x1344  [ 0DEC4CD11A67D05C3D4330B89E66DAA2, 7940903F535DD7AE545E09EF20DA225551358A8FC4E126B706F20F4B0DC9519A ] PdiService      C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
09:03:54.0565 0x1344  PdiService - ok
09:03:54.0565 0x1344  PEAUTH - ok
09:03:54.0581 0x1344  percsas2i - ok
09:03:54.0581 0x1344  percsas3i - ok
09:03:54.0612 0x1344  PerfHost - ok
09:03:54.0612 0x1344  PhoneSvc - ok
09:03:54.0612 0x1344  PimIndexMaintenanceSvc - ok
09:03:54.0612 0x1344  pla - ok
09:03:54.0628 0x1344  PlugPlay - ok
09:03:54.0628 0x1344  pmem - ok
09:03:54.0628 0x1344  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
09:03:54.0628 0x1344  Pml Driver HPZ12 - ok
09:03:54.0643 0x1344  [ 0BEE791C7C7ACE453C134E73633C497D, 82B30461DBF40AC15FCE6A83B9BAD2EBD05B27DEA1B784EAA096422FE8927B7B ] pmxdrv          C:\WINDOWS\system32\drivers\pmxdrv.sys
09:03:54.0643 0x1344  pmxdrv - ok
09:03:54.0643 0x1344  PNRPAutoReg - ok
09:03:54.0643 0x1344  PNRPsvc - ok
09:03:54.0643 0x1344  PolicyAgent - ok
09:03:54.0643 0x1344  Power - ok
09:03:54.0659 0x1344  PptpMiniport - ok
09:03:54.0706 0x1344  [ 5404E7A968A26DF03793B6F68536594D, BE5A85581E87EFE4DB43AD17B8D42D3F7F32364AEEC1416DBB94279C4A203FF2 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
09:03:54.0737 0x1344  PrintNotify - ok
09:03:54.0737 0x1344  Processor - ok
09:03:54.0753 0x1344  ProfSvc - ok
09:03:54.0753 0x1344  Psched - ok
09:03:54.0753 0x1344  QWAVE - ok
09:03:54.0753 0x1344  QWAVEdrv - ok
09:03:54.0753 0x1344  RasAcd - ok
09:03:54.0768 0x1344  RasAgileVpn - ok
09:03:54.0768 0x1344  RasAuto - ok
09:03:54.0768 0x1344  Rasl2tp - ok
09:03:54.0768 0x1344  RasMan - ok
09:03:54.0768 0x1344  RasPppoe - ok
09:03:54.0768 0x1344  RasSstp - ok
09:03:54.0784 0x1344  rdbss - ok
09:03:54.0784 0x1344  rdpbus - ok
09:03:54.0784 0x1344  RDPDR - ok
09:03:54.0784 0x1344  RdpVideoMiniport - ok
09:03:54.0784 0x1344  rdyboost - ok
09:03:54.0799 0x1344  ReFS - ok
09:03:54.0799 0x1344  ReFSv1 - ok
09:03:54.0799 0x1344  [ 89253C7F17EF15F627CDE2DB104E6BF8, 80F3EF26D3EFE2BFD82AC1DAC83439A03133477409D5594683CAB92C8F9CB7E7 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
09:03:54.0815 0x1344  RegSrvc - ok
09:03:54.0815 0x1344  RemoteAccess - ok
09:03:54.0815 0x1344  RemoteRegistry - ok
09:03:54.0815 0x1344  RetailDemo - ok
09:03:54.0815 0x1344  RFCOMM - ok
09:03:54.0831 0x1344  [ 9E18DF158751CF968E7DF83256D70233, 89385DA5ABD283F289E37D7D9E33358B06216E9B3659B2E70F19FD5BA49C7F90 ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
09:03:54.0831 0x1344  RichVideo64 - ok
09:03:54.0831 0x1344  RmSvc - ok
09:03:54.0846 0x1344  RpcEptMapper - ok
09:03:54.0846 0x1344  RpcLocator - ok
09:03:54.0846 0x1344  RpcSs - ok
09:03:54.0846 0x1344  [ 6195EC84C82E7844B5B17803ADDB1CA3, 175DF60973C50B1F1FA84B7DBB694D2B18CD41DA8A29479E388ED76D2C9AAE19 ] RrNetCapFilterDriver C:\WINDOWS\system32\DRIVERS\RrNetCapFilterDriver.sys
09:03:54.0846 0x1344  RrNetCapFilterDriver - ok
09:03:54.0846 0x1344  rspndr - ok
09:03:54.0878 0x1344  [ 9A4CB33560A25CF7ACDE1C1E3C7B1A28, A62B6E555CB1D20328608829BEB90E8B882F4380BB65598C255258159A78801F ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
09:03:54.0878 0x1344  rt640x64 - ok
09:03:54.0893 0x1344  [ 3397D1550C3A638D6BB7C6EE00E8D290, 767E17D9348662FC6AA767703ACC1C766ABB510D7B2F6E464C1A8F6ADBCAB293 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
09:03:54.0893 0x1344  RtkAudioService - ok
09:03:54.0909 0x1344  [ AB959F26FBB851A9D31E2F229DB3FA1A, 35961B761C83B48DBB9960C6DEC89806F3BC9FA0F450E566333ABE3F22E42AA9 ] RTSUER          C:\WINDOWS\system32\Drivers\RtsUer.sys
09:03:54.0909 0x1344  RTSUER - ok
09:03:54.0909 0x1344  s3cap - ok
09:03:54.0924 0x1344  SamSs - ok
09:03:54.0924 0x1344  sbp2port - ok
09:03:54.0924 0x1344  SCardSvr - ok
09:03:54.0924 0x1344  ScDeviceEnum - ok
09:03:54.0924 0x1344  scfilter - ok
09:03:54.0924 0x1344  Schedule - ok
09:03:54.0940 0x1344  scmbus - ok
09:03:54.0940 0x1344  SCPolicySvc - ok
09:03:54.0940 0x1344  sdbus - ok
09:03:54.0940 0x1344  SDFRd - ok
09:03:54.0940 0x1344  SDRSVC - ok
09:03:54.0940 0x1344  sdstor - ok
09:03:54.0956 0x1344  seclogon - ok
09:03:54.0956 0x1344  SecurityHealthService - ok
09:03:54.0956 0x1344  [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64     C:\Windows\system32\drivers\semav6msr64.sys
09:03:54.0956 0x1344  semav6msr64 - ok
09:03:54.0956 0x1344  SEMgrSvc - ok
09:03:54.0971 0x1344  SENS - ok
09:03:54.0971 0x1344  SensorDataService - ok
09:03:54.0971 0x1344  SensorService - ok
09:03:54.0971 0x1344  SensrSvc - ok
09:03:54.0971 0x1344  SerCx - ok
09:03:54.0971 0x1344  SerCx2 - ok
09:03:54.0987 0x1344  Serenum - ok
09:03:54.0987 0x1344  Serial - ok
09:03:54.0987 0x1344  sermouse - ok
09:03:54.0987 0x1344  SessionEnv - ok
09:03:54.0987 0x1344  sfloppy - ok
09:03:55.0003 0x1344  SharedAccess - ok
09:03:55.0003 0x1344  ShellHWDetection - ok
09:03:55.0003 0x1344  shpamsvc - ok
09:03:55.0003 0x1344  SiSRaid2 - ok
09:03:55.0003 0x1344  SiSRaid4 - ok
09:03:55.0018 0x1344  [ 0D0D3F885589CDEA678C3B17ABB70DC7, FA1D628A81CBE9DE287162A1D2B8661548476ED7159C2AEF60E7B954EB8FC133 ] SLEE_19_DRIVER  C:\Windows\Sleen1964.sys
09:03:55.0018 0x1344  SLEE_19_DRIVER - ok
09:03:55.0018 0x1344  smphost - ok
09:03:55.0018 0x1344  SmsRouter - ok
09:03:55.0018 0x1344  SNMPTRAP - ok
09:03:55.0034 0x1344  spaceport - ok
09:03:55.0034 0x1344  SpatialGraphFilter - ok
09:03:55.0034 0x1344  SpbCx - ok
09:03:55.0034 0x1344  spectrum - ok
09:03:55.0034 0x1344  Spooler - ok
09:03:55.0049 0x1344  sppsvc - ok
09:03:55.0049 0x1344  srv - ok
09:03:55.0049 0x1344  srv2 - ok
09:03:55.0049 0x1344  srvnet - ok
09:03:55.0049 0x1344  SSDPSRV - ok
09:03:55.0049 0x1344  SstpSvc - ok
09:03:55.0065 0x1344  StateRepository - ok
09:03:55.0065 0x1344  stexstor - ok
09:03:55.0065 0x1344  stisvc - ok
09:03:55.0065 0x1344  storahci - ok
09:03:55.0065 0x1344  storflt - ok
09:03:55.0081 0x1344  stornvme - ok
09:03:55.0081 0x1344  storqosflt - ok
09:03:55.0081 0x1344  StorSvc - ok
09:03:55.0081 0x1344  storufs - ok
09:03:55.0081 0x1344  storvsc - ok
09:03:55.0081 0x1344  svsvc - ok
09:03:55.0096 0x1344  swenum - ok
09:03:55.0096 0x1344  swprv - ok
09:03:55.0096 0x1344  Synth3dVsc - ok
09:03:55.0096 0x1344  SysMain - ok
09:03:55.0096 0x1344  SystemEventsBroker - ok
09:03:55.0096 0x1344  TabletInputService - ok
09:03:55.0112 0x1344  [ 84CA1EEF6A8A5AE5D5603BBC8ED83FCD, 1C30E026C5ACA703C1EB8164C29CC69FA4D3F3B563C22981F76E872E4CB7CECF ] tap0901         C:\WINDOWS\System32\drivers\tap0901.sys
09:03:55.0112 0x1344  tap0901 - ok
09:03:55.0112 0x1344  TapiSrv - ok
09:03:55.0112 0x1344  [ E91BCBD521606E60C2807813D8EAC579, 9B9329535AF753E5922BD53DEF08E5E99C51927923C7DF87112A0E293DE47FAC ] tbhsd           C:\WINDOWS\system32\drivers\tbhsd.sys
09:03:55.0112 0x1344  tbhsd - ok
09:03:55.0112 0x1344  Tcpip - ok
09:03:55.0128 0x1344  Tcpip6 - ok
09:03:55.0128 0x1344  tcpipreg - ok
09:03:55.0128 0x1344  tdx - ok
09:03:55.0128 0x1344  [ 4283D7125BA4BD0CB50BB0F78B54257A, A9DBFC45CDF7444BA7AD92734E66E3E4F844BF036AC19FD43F915151191F12C5 ] TelekomNM6      C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\Driver\TelekomNM6.sys
09:03:55.0128 0x1344  TelekomNM6 - ok
09:03:55.0143 0x1344  terminpt - ok
09:03:55.0143 0x1344  TermService - ok
09:03:55.0143 0x1344  Themes - ok
09:03:55.0143 0x1344  TieringEngineService - ok
09:03:55.0143 0x1344  tiledatamodelsvc - ok
09:03:55.0159 0x1344  TimeBrokerSvc - ok
09:03:55.0159 0x1344  TokenBroker - ok
09:03:55.0159 0x1344  TPM - ok
09:03:55.0159 0x1344  TrkWks - ok
09:03:55.0159 0x1344  TrustedInstaller - ok
09:03:55.0174 0x1344  TsUsbFlt - ok
09:03:55.0174 0x1344  TsUsbGD - ok
09:03:55.0174 0x1344  tunnel - ok
09:03:55.0174 0x1344  tzautoupdate - ok
09:03:55.0174 0x1344  UASPStor - ok
09:03:55.0174 0x1344  UcmCx0101 - ok
09:03:55.0190 0x1344  UcmTcpciCx0101 - ok
09:03:55.0190 0x1344  UcmUcsi - ok
09:03:55.0190 0x1344  Ucx01000 - ok
09:03:55.0190 0x1344  UdeCx - ok
09:03:55.0190 0x1344  udfs - ok
09:03:55.0190 0x1344  UEFI - ok
09:03:55.0206 0x1344  Ufx01000 - ok
09:03:55.0206 0x1344  UfxChipidea - ok
09:03:55.0206 0x1344  ufxsynopsys - ok
09:03:55.0206 0x1344  UI0Detect - ok
09:03:55.0206 0x1344  [ CA204117E5DD16DBF45D1513E169039E, 39F2CEE77B8E35D89ECE5028CDB555B04418E2593E2EB0E2AA809EEF688193D2 ] UimBus          C:\WINDOWS\System32\drivers\UimBus.sys
09:03:55.0221 0x1344  UimBus - ok
09:03:55.0221 0x1344  [ 8593690D302AE73AAC8BBA9B19757352, 36F29C32A7E0D8D54533441C840E86C7C407815DD3568C6D44C043939E998FAF ] Uim_DEVIM       C:\WINDOWS\System32\drivers\uim_devim.sys
09:03:55.0221 0x1344  Uim_DEVIM - ok
09:03:55.0237 0x1344  [ 889788C1B850D1ED4027B675B9B8E5E2, D8CA795CAFFF803252E1B41D69F9B55C787E2633198BC322E07449408A58B083 ] Uim_IM          C:\WINDOWS\System32\drivers\uim_im.sys
09:03:55.0253 0x1344  Uim_IM - ok
09:03:55.0253 0x1344  umbus - ok
09:03:55.0253 0x1344  UmPass - ok
09:03:55.0268 0x1344  UmRdpService - ok
09:03:55.0268 0x1344  UnistoreSvc - ok
09:03:55.0268 0x1344  upnphost - ok
09:03:55.0268 0x1344  UrsChipidea - ok
09:03:55.0268 0x1344  UrsCx01000 - ok
09:03:55.0284 0x1344  UrsSynopsys - ok
09:03:55.0284 0x1344  usbccgp - ok
09:03:55.0284 0x1344  usbcir - ok
09:03:55.0284 0x1344  usbehci - ok
09:03:55.0284 0x1344  usbhub - ok
09:03:55.0299 0x1344  USBHUB3 - ok
09:03:55.0299 0x1344  usbohci - ok
09:03:55.0299 0x1344  usbprint - ok
09:03:55.0299 0x1344  usbser - ok
09:03:55.0299 0x1344  USBSTOR - ok
09:03:55.0299 0x1344  usbuhci - ok
09:03:55.0315 0x1344  USBXHCI - ok
09:03:55.0315 0x1344  UserDataSvc - ok
09:03:55.0315 0x1344  UserManager - ok
09:03:55.0315 0x1344  UsoSvc - ok
09:03:55.0315 0x1344  VaultSvc - ok
09:03:55.0315 0x1344  vdrvroot - ok
09:03:55.0331 0x1344  vds - ok
09:03:55.0331 0x1344  VerifierExt - ok
09:03:55.0331 0x1344  vhdmp - ok
09:03:55.0331 0x1344  vhf - ok
09:03:55.0331 0x1344  vmbus - ok
09:03:55.0331 0x1344  VMBusHID - ok
09:03:55.0346 0x1344  vmgid - ok
09:03:55.0346 0x1344  vmicguestinterface - ok
09:03:55.0346 0x1344  vmicheartbeat - ok
09:03:55.0346 0x1344  vmickvpexchange - ok
09:03:55.0346 0x1344  vmicrdv - ok
09:03:55.0346 0x1344  vmicshutdown - ok
09:03:55.0362 0x1344  vmictimesync - ok
09:03:55.0362 0x1344  vmicvmsession - ok
09:03:55.0362 0x1344  vmicvss - ok
09:03:55.0362 0x1344  volmgr - ok
09:03:55.0362 0x1344  volmgrx - ok
09:03:55.0362 0x1344  volsnap - ok
09:03:55.0378 0x1344  volume - ok
09:03:55.0378 0x1344  vpci - ok
09:03:55.0378 0x1344  vsmraid - ok
09:03:55.0378 0x1344  VSS - ok
09:03:55.0378 0x1344  VSTXRAID - ok
09:03:55.0378 0x1344  vwifibus - ok
09:03:55.0393 0x1344  vwififlt - ok
09:03:55.0393 0x1344  vwifimp - ok
09:03:55.0393 0x1344  W32Time - ok
09:03:55.0393 0x1344  w3logsvc - ok
09:03:55.0393 0x1344  WacomPen - ok
09:03:55.0409 0x1344  WalletService - ok
09:03:55.0409 0x1344  wanarp - ok
09:03:55.0409 0x1344  wanarpv6 - ok
09:03:55.0409 0x1344  WAS - ok
09:03:55.0409 0x1344  wbengine - ok
09:03:55.0424 0x1344  WbioSrvc - ok
09:03:55.0424 0x1344  wcifs - ok
09:03:55.0424 0x1344  Wcmsvc - ok
09:03:55.0424 0x1344  wcncsvc - ok
09:03:55.0424 0x1344  wcnfs - ok
09:03:55.0424 0x1344  WdBoot - ok
09:03:55.0440 0x1344  Wdf01000 - ok
09:03:55.0440 0x1344  WdFilter - ok
09:03:55.0440 0x1344  WdiServiceHost - ok
09:03:55.0440 0x1344  WdiSystemHost - ok
09:03:55.0440 0x1344  wdiwifi - ok
09:03:55.0440 0x1344  WdNisDrv - ok
09:03:55.0456 0x1344  WdNisSvc - ok
09:03:55.0456 0x1344  WebClient - ok
09:03:55.0456 0x1344  Wecsvc - ok
09:03:55.0456 0x1344  WEPHOSTSVC - ok
09:03:55.0471 0x1344  wercplsupport - ok
09:03:55.0471 0x1344  WerSvc - ok
09:03:55.0471 0x1344  WFDSConMgrSvc - ok
09:03:55.0471 0x1344  WFPLWFS - ok
09:03:55.0471 0x1344  WiaRpc - ok
09:03:55.0471 0x1344  WIMMount - ok
09:03:55.0487 0x1344  WinDefend - ok
09:03:55.0487 0x1344  WindowsTrustedRT - ok
09:03:55.0487 0x1344  WindowsTrustedRTProxy - ok
09:03:55.0487 0x1344  WinHttpAutoProxySvc - ok
09:03:55.0487 0x1344  WinMad - ok
09:03:55.0503 0x1344  Winmgmt - ok
09:03:55.0503 0x1344  WinNat - ok
09:03:55.0503 0x1344  WinRM - ok
09:03:55.0518 0x1344  WINUSB - ok
09:03:55.0518 0x1344  WinVerbs - ok
09:03:55.0518 0x1344  wisvc - ok
09:03:55.0518 0x1344  WlanSvc - ok
09:03:55.0518 0x1344  wlidsvc - ok
09:03:55.0534 0x1344  wlpasvc - ok
09:03:55.0534 0x1344  WmiAcpi - ok
09:03:55.0534 0x1344  wmiApSrv - ok
09:03:55.0534 0x1344  WMPNetworkSvc - ok
09:03:55.0549 0x1344  [ 1AE1076034392218EE89D2744EC2A071, 695C28E2697B12BBD919687176CE082E94887A5D8B6229F163A26F6EDF401C4C ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
09:03:55.0549 0x1344  Wof - ok
09:03:55.0549 0x1344  workfolderssvc - ok
09:03:55.0549 0x1344  WPDBusEnum - ok
09:03:55.0549 0x1344  WpdUpFltr - ok
09:03:55.0565 0x1344  WpnService - ok
09:03:55.0565 0x1344  WpnUserService - ok
09:03:55.0565 0x1344  ws2ifsl - ok
09:03:55.0565 0x1344  wscsvc - ok
09:03:55.0565 0x1344  WSearch - ok
09:03:55.0581 0x1344  wuauserv - ok
09:03:55.0581 0x1344  WudfPf - ok
09:03:55.0581 0x1344  WUDFRd - ok
09:03:55.0581 0x1344  wudfsvc - ok
09:03:55.0581 0x1344  WUDFWpdFs - ok
09:03:55.0581 0x1344  WwanSvc - ok
09:03:55.0596 0x1344  xbgm - ok
09:03:55.0596 0x1344  XblAuthManager - ok
09:03:55.0596 0x1344  XblGameSave - ok
09:03:55.0596 0x1344  xboxgip - ok
09:03:55.0596 0x1344  XboxGipSvc - ok
09:03:55.0612 0x1344  XboxNetApiSvc - ok
09:03:55.0612 0x1344  xinputhid - ok
09:03:55.0674 0x1344  [ F01B10760ED962879BCAA456AD39A898, EF384EB9C8E170C0394BB5C78721DFAA190698CD38C56736D0120754D50047EC ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
09:03:55.0721 0x1344  ZeroConfigService - ok
09:03:55.0721 0x1344  ================ Scan global ===============================
09:03:55.0737 0x1344  [ Global ] - ok
09:03:55.0737 0x1344  ================ Scan MBR ==================================
09:03:55.0737 0x1344  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
09:03:55.0753 0x1344  \Device\Harddisk0\DR0 - ok
09:03:55.0753 0x1344  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
09:03:55.0753 0x1344  \Device\Harddisk1\DR1 - ok
09:03:55.0753 0x1344  ================ Scan VBR ==================================
09:03:55.0753 0x1344  [ 375EAA957C5035B18DEEC7725D126FFB ] \Device\Harddisk0\DR0\Partition1
09:03:55.0753 0x1344  \Device\Harddisk0\DR0\Partition1 - ok
09:03:55.0753 0x1344  [ 533A7969E0C35210B5E90198BC6DB644 ] \Device\Harddisk0\DR0\Partition2
09:03:55.0768 0x1344  \Device\Harddisk0\DR0\Partition2 - ok
09:03:55.0768 0x1344  [ B989DDC037017FEF0D2C21FD7938BB7F ] \Device\Harddisk0\DR0\Partition3
09:03:55.0768 0x1344  \Device\Harddisk0\DR0\Partition3 - ok
09:03:55.0768 0x1344  [ 2ADBE224C6FF909ADB390946181DA619 ] \Device\Harddisk0\DR0\Partition4
09:03:55.0768 0x1344  \Device\Harddisk0\DR0\Partition4 - ok
09:03:55.0768 0x1344  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
09:03:55.0768 0x1344  \Device\Harddisk1\DR1\Partition1 - ok
09:03:55.0768 0x1344  [ 0AB6F4745023320CD45358DF0FF4B864 ] \Device\Harddisk1\DR1\Partition2
09:03:55.0768 0x1344  \Device\Harddisk1\DR1\Partition2 - ok
09:03:55.0768 0x1344  ================ Scan generic autorun ======================
09:03:55.0768 0x1344  SecurityHealth - ok
09:03:55.0924 0x1344  [ 3EDFDB943123BA4DDBDEBAC0DEBE9C4D, 95AAF5B6E5BDC0957F27C609353493C1E0F37CD089EAE6CAB7F00B05301A3076 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
09:03:56.0018 0x1344  RTHDVCPL - ok
09:03:56.0050 0x1344  [ 7A7437B044EB501FF053B2D9508FFB2B, 343B4333B990025F4DA87B19F24A08F3C27C618B715F0C569BA91F49BDE6ADD3 ] C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
09:03:56.0050 0x1344  PowerDVD14Agent - ok
09:03:56.0065 0x1344  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
09:03:56.0065 0x1344  HP Software Update - ok
09:03:56.0065 0x1344  [ 7EE1757A50F7C13C0A1BFE58763A2AD3, 322091A9F2287A6782143D2D5D962E7A7C08467D749F0811DBE8F14856B5B817 ] C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe
09:03:56.0065 0x1344  LexwareInfoService - ok
09:03:56.0081 0x1344  [ ECB68740144E027E14675E21A3096FDB, 73D0B83F8DB9DA1615BB63BB8017856497315F45214F7CD0D809F452595B5141 ] C:\Program Files (x86)\Portrait Displays\Pivot Software\wpctrl.exe
09:03:56.0096 0x1344  PivotSoftware - ok
09:03:56.0096 0x1344  [ 257E91C4D2BAEAD876F0544B28BA4240, 1BBD6FB6713EA4C724E6DAF9D1F383135164609E1686CEC4335DA8C55822500D ] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe
09:03:56.0096 0x1344  DT HPC - ok
09:03:56.0112 0x1344  [ 5361EEAAFA5037E539094BEC9C7F740B, 260796658EC18257CF1C50C715CCDABDF7CB33C2770AC33B82A2C14A9AB47B5F ] C:\Program Files (x86)\Steganos Privacy Suite 17\SteganosHotKeyService.exe
09:03:56.0112 0x1344  Steganos HotKeys - ok
09:03:56.0128 0x1344  [ C6ED48C64D4706635722829F8C071C00, 917A4F985729E37789B6846010967FB48C316D46E733070B3FBD41EC0AE56525 ] C:\Program Files (x86)\Steganos Privacy Suite 17\passwordmanagercom.exe
09:03:56.0143 0x1344  SSS17 Chrome Autofill Relay - ok
09:03:56.0175 0x1344  [ 5B9E99AD21B1C67C1BB25BE3FBFC95FB, B3B74EC7968188532B438798D39FE144A9343C574FA8CF318EF2BE2E9D2D922D ] C:\Program Files (x86)\Steganos Privacy Suite 17\SteganosBrowserMonitor.exe
09:03:56.0190 0x1344  SSS17 Browser Monitor - ok
09:03:56.0253 0x1344  [ AE647836554F815E39149DBB8C265FD4, 64D04FEE2B245B5562931F0D411EACDFF46B8D5E07DEBF6523874E4302E5863B ] C:\Program Files (x86)\Steganos Privacy Suite 17\Notifier.exe
09:03:56.0300 0x1344  SSS17 Notifier - ok
09:03:56.0315 0x1344  [ BFBEA39213287BECA28BD6E056074694, B8BDAE14532317C3B451DEB46AFB3E21AFA2116B806D97240362F20E92F1A152 ] C:\Program Files (x86)\Steganos Privacy Suite 17\fredirstarter.exe
09:03:56.0315 0x1344  SSS17 File Redirection Starter - ok
09:03:56.0346 0x1344  OneDriveSetup - ok
09:03:56.0346 0x1344  OneDriveSetup - ok
09:03:56.0378 0x1344  [ 00F30FDFDE3E276C1A731C2DF951D67E, 018E6933882FCC41EE96E198E6F7ECEFB53EC650B1044A58876B26EDE011158B ] C:\Users\haufdemb\AppData\Local\Microsoft\OneDrive\OneDrive.exe
09:03:56.0393 0x1344  OneDrive - ok
09:03:56.0393 0x1344  Waiting for KSN requests completion. In queue: 48
09:03:57.0425 0x1344  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.11.15063.332 ), 0x60100 ( disabled : updated )
09:03:57.0425 0x1344  AV detected via SS2: ESET Smart Security 10.0.390.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 10.0.386.0 ), 0x41000 ( enabled : updated )
09:03:57.0440 0x1344  FW detected via SS2: ESET Personal Firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 10.0.386.0 ), 0x41010 ( enabled )
09:03:57.0706 0x1344  ============================================================
09:03:57.0706 0x1344  Scan finished
09:03:57.0706 0x1344  ============================================================
09:03:57.0706 0x31e0  Detected object count: 0
09:03:57.0706 0x31e0  Actual detected object count: 0
         
Gruß

Clocks

Geändert von Clocks (09.06.2017 um 09:12 Uhr) Grund: verbessert

Alt 09.06.2017, 16:12   #5
M-K-D-B
/// TB-Ausbilder
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Servus,



deine Logdateien sehen an sich gut aus.


Wir schauen mal kurz wegen dieser GUID:
  • Starte FRST erneut.
  • Kopiere den Inhalt der folgenden Code-Box in die Zeile "Suche":
    Code:
    ATTFilter
    {63C40CBE-DE43-4B56-BCEB-E14B825CF245};
             
  • Drücke auf Registry-Suche.
  • FRST beginnt mit dem Suchlauf. Dies kann einige Zeit dauern.
  • Am Ende erstellt FRST eine Textdatei SearchReg.txt.
  • Poste mir deren Inhalt mit deiner nächsten Antwort.

__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 09.06.2017, 16:33   #6
Clocks
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Hallo Matthias,

hier die SearchReg.txt:

Code:
ATTFilter
Farbar Recovery Scan Tool (x64) Version: 07-06-2017 01
durchgeführt von haufdemb (09-06-2017 16:31:07)
Gestartet von C:\Users\haufdemb\Desktop
Start-Modus: Normal

================== Registry-Suche: "{63C40CBE-DE43-4B56-BCEB-E14B825CF245}" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}]

====== Ende von Suche ======
         
Gruß

Clocks

Alt 09.06.2017, 17:07   #7
M-K-D-B
/// TB-Ausbilder
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Servus,


  • Kopiere den Inhalt der folgenden Code-Box:
    Code:
    ATTFilter
    Start::
    Unlock: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    Unlock: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    End::
             
  • Starte nun FRST und klicke den Entfernen Button.
  • Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich die FRST/FRST64.exe befindet.
  • Gegebenenfalls muss dein Rechner dafür neu gestartet werden.
  • Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 09.06.2017, 18:10   #8
Clocks
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Hallo Matthias,

soll ich den Inhalt der Code-Box in die Zeile Suche bei FRST kopieren?

Gruß

Clocks

Hallo Matthias,

hier jetzt doch die fixlog.txt:

Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-06-2017 01
durchgeführt von haufdemb (09-06-2017 18:07:12) Run:1
Gestartet von C:\Users\haufdemb\Desktop
Geladene Profile: haufdemb (Verfügbare Profile: haufdemb)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************

Unlock: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
Unlock: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}

*****************

"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}" => Schlüssel wurde entsperrt
================== ExportKey: ===================

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}]
""="IColorManager"
[HKLM\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}\ProxyStubClsid32]
""="{00020420-0000-0000-C000-000000000046}"
[HKLM\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}\TypeLib]
""="{79EB16A5-917F-4145-AB5F-D3AEA60612D8}"
"Version"="c.0"

=== Ende von ExportKey ===
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}" => Schlüssel wurde entsperrt
================== ExportKey: ===================

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}]
""="IColorManager"
[HKLM\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}\ProxyStubClsid32]
""="{00020420-0000-0000-C000-000000000046}"
[HKLM\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}\TypeLib]
""="{79EB16A5-917F-4145-AB5F-D3AEA60612D8}"
"Version"="c.0"

=== Ende von ExportKey ===

==== Ende von Fixlog 18:07:12 ====
         
Ich hoffe alles richtig gemacht zu haben.

Gruß

Clocks

Geändert von Clocks (09.06.2017 um 17:47 Uhr) Grund: verbessert

Alt 10.06.2017, 14:13   #9
M-K-D-B
/// TB-Ausbilder
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Servus,


ich würde beide Schlüssel entfernen, da ich keinen konkreten Hinweis auf einen einen Fehlalarm sehe. Zudem nutzt Adware diesen Schlüssel, hier ein paar Beispiele:





Reste entfernen
  • Kopiere den Inhalt der folgenden Code-Box:
    Code:
    ATTFilter
    Start::
    DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    End::
             
  • Starte nun FRST und klicke den Entfernen Button.
  • Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich die FRST/FRST64.exe befindet.
  • Gegebenenfalls muss dein Rechner dafür neu gestartet werden.
  • Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.

Die Fixlog von FRST gleich posten, da diese sonst mit DelFix (siehe weiter unten) automatisch entfernt wird!







Dann wären wir durch!
Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...
Vielleicht möchtest du das Forum mit einer kleinen Spende unterstützen.

Hinweise:
Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.
Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.





Cleanup
Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.
  • Starte deinen Rechner zum Abschluss neu auf.
Hinweis:
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst du diese bedenkenlos löschen.






Virenscanner + Firewall
Vorab sei erwähnt, dass man niemals die Schutzwirkung eines Virenscanners überbewerten darf! Kein Antivirusprogramm erkennt 100% der Schadsoftware.

Sofern du noch unentschieden bist, verwende MAXIMAL EIN EINZIGES der folgenden Antivirusprogramme mit Echtzeitscanner und stets aktueller Signaturendatenbank:
Microsoft Security Essentials (MSE) / Windows Defender (WD) ist ab Windows 8 fest eingebaut, wenn du also Windows 8, 8.1 oder 10 und dich für MSE/WD entschieden hast, brauchst du nicht extra MSE/WD zu installieren. Bei Windows 7 muss es aber manuell installiert oder über die Windows Updates als optionales Update bezogen werden. Selbstverständlich ist ein legales/aktiviertes Windows Voraussetzung dafür.

Verwende immer nur reine Virenscanner (keine Produkte mit "Suite", "Internet Security", "Endpoint" oder "Total Security" in Namen, denn diese bringen kontraproduktive Firewalls mit - die Windows-Firewall ist alles was benötigt wird)

Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware , AdwCleaner und mit dem ESET Online Scanner scannen.
Diese Programme sind alle kostenlos und stören nicht den Betrieb deines Antivirenprogramms.





Absicherungen
Beim Betriebsystem Windows ist es wichtig, die automatischen Updates zu aktivieren.
Auch sicherheitsrelevante Software sollte immer in aktueller Version vorliegen.

Das zeitnahe Einspielen von Updates ist erforderlich, damit Sicherheitslücken geschlossen werden. Sicherheitslücken werden beispielsweise dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.

Besonders aufpassen bzgl. der Aktualität musst du insbesondere bei folgender Software - sofern diese überhaupt benötigt wird:

Optionale Browsererweiterungen
  • Adblock Plus oder uBlock Origin (Firefox - Chrome) - können Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren
  • NoScript - verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. NoScript kann gerade bei technisch nicht allzu versierten Nutzern beim Surfen zum Nervfaktor werden; ob das Tool geeignet ist, muss jeder selbst mal ausprobieren und dann für sich entscheiden.





Grundsätzliches
  • Ändere regelmäßig deine Online-Passwörter und erstelle regelmäßig Backups deiner wichtigen Dateien oder des Systems. Genaueres dazu findest du unten im Lesestoff zu Backups.
  • Lade keine Software von Chip, Softonic, SourceForge oder VLC.de. Die dort angebotene Software wird häufig mit einem sog. "Installer" verteilt, mit dem man sich nur unerwünschte Software oder Adware installiert.
  • Lade Software von einem sauberen Portal wie oder direkt beim jeweiligen Hersteller / Entwickler.
  • Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne die Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
  • Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten bis nicht belegbar. Selbst Microsoft unterstützt sog. Registry-Cleaner nicht.
    Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.





Lesestoff:
Backup-/Image-Tools

Damit man sinnvolle Backups hat, muss man regelmäßig (z. B. wöchentlich) ein Image auf eine separate externe Festplatte erstellen. Diese externe Festplatte wird nur dann angeschlossen, wenn man das Backup erstellen will (oder etwas wiederherstellen muss), ansonsten bleibt sie aus Sicherheitsgründen sicher im Schrank verwahrt - allein schon aus dem Grund, die Backups vor "Verschlüsselungstrojanern" zu schützen.

Du solltest dich für eines der folgenden Programmen entscheiden und damit regelmäßig deine Daten sichern.

Optioin 1 - Drivesnapshot
Drive Snapshot - Disk Image Backup for Windows NT/2000/XP/2003/X64

Download (32-Bit) => http://www.drivesnapshot.de/download/snapshot.exe
Download (64-Bit) => http://www.drivesnapshot.de/download/snapshot64.exe

Screenshots:
http://www.drivesnapshot.de/images/startup.png
http://www.drivesnapshot.de/images/save3.png




Option 2 - Seagate DiscWizard
Seagate DiscWizard - Download - Filepony

Screenshots:
http://filepony.de/screenshot/seagate_discwizard5.jpg
http://filepony.de/screenshot/seagate_discwizard4.png
http://filepony.de/screenshot/seagate_discwizard3.jpg




Option 3 - Acronis TrueImage WD Edition
Acronis True Image WD Edition - Download - Filepony

Screenshots:
http://filepony.de/screenshot/acroni...d_edition1.jpg
http://filepony.de/screenshot/acroni...d_edition2.jpg

__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 10.06.2017, 18:54   #10
Clocks
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Hallo Matthias,

anbei die fixlog.txt. Probleme mit Malware habe ich keine mehr.

Mich würde schonmal interessieren, wie es zu der Infektion kommen könnte. Wie ich bereits geschildert habe, versuche ich möglichst Schädlingsbefall zu vermeiden. Ansonsten habe ich keine Fragen mehr.

Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 10-06-2017
durchgeführt von haufdemb (10-06-2017 18:22:29) Run:2
Gestartet von C:\Users\haufdemb\Desktop
Geladene Profile: haufdemb (Verfügbare Profile: haufdemb)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************

DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}

*****************

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245} => Schlüssel erfolgreich entfernt

==== Ende von Fixlog 18:22:29 ====
         

Vielen Dank für Deine Hilfe.

Gruß

Clocks

Alt 10.06.2017, 21:15   #11
M-K-D-B
/// TB-Ausbilder
 
AdwCleaner meldet 1 Fund - Fehlalarm? - Standard

AdwCleaner meldet 1 Fund - Fehlalarm?



Servus,


leider habe ich keine Idee, wie es zu dem Schlüssel kommen kann... vielleicht hat ESET das Meiste automatisch schon blockiert.



Ich bin froh, dass wir helfen konnten

In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest:
Lob, Kritik und Wünsche
Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank!

Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine Profilnachricht inklusive Link zum Thema.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Antwort

Themen zu AdwCleaner meldet 1 Fund - Fehlalarm?
adwcleaner, fehlalarm, fund, kein fund, melde, meldet



Ähnliche Themen: AdwCleaner meldet 1 Fund - Fehlalarm?


  1. Secure Preferences Chrome - ADWcleaner Fund (startup urls)
    Plagegeister aller Art und deren Bekämpfung - 03.06.2017 (13)
  2. AdwCleaner Fund in Chrome User Data: pilplloabdedfmialnfchjomjmpjcoej
    Log-Analyse und Auswertung - 17.04.2017 (3)
  3. Malewarebytes AdwCleaner meldet Fund: C:\\WINDOWS\SysNative\Tasks\WiseCleaner - hab ich ein Problem ?
    Log-Analyse und Auswertung - 04.04.2017 (21)
  4. Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs
    Log-Analyse und Auswertung - 30.03.2017 (2)
  5. adwCleaner meldet 7 Bedrohungen
    Log-Analyse und Auswertung - 20.12.2016 (12)
  6. Adwcleaner Fund
    Plagegeister aller Art und deren Bekämpfung - 20.01.2016 (1)
  7. AdwCleaner meldet mehrere Befunde - Pokki
    Plagegeister aller Art und deren Bekämpfung - 20.08.2015 (7)
  8. Virenscanner meldet db22.exe und cyycfhtzro64.exe Malware oder Fehlalarm?
    Plagegeister aller Art und deren Bekämpfung - 17.01.2015 (11)
  9. detect meldet njrat. fehlalarm?
    Log-Analyse und Auswertung - 16.01.2015 (13)
  10. Adwcleaner meldet Google Chrome preferences
    Plagegeister aller Art und deren Bekämpfung - 13.08.2014 (3)
  11. ADWcleaner meldet FF-Profile immer wieder
    Log-Analyse und Auswertung - 11.09.2013 (7)
  12. AVG-Fund JS/Dropper - Fehlalarm?
    Log-Analyse und Auswertung - 10.04.2013 (5)
  13. Fehlalarm: Kaspersky-Engine meldet Virus auf heise.de
    Nachrichten - 07.12.2010 (0)
  14. Fehlalarm: Kasperky-Engine meldet Virus auf heise.de
    Nachrichten - 07.12.2010 (0)
  15. Antivir meldet Trojaner TR/PSW.LdPi.anqk.75 - Fehlalarm?
    Log-Analyse und Auswertung - 12.07.2010 (4)
  16. AntiVir meldet BOO/Sinowal.D - Fehlalarm?
    Plagegeister aller Art und deren Bekämpfung - 11.06.2009 (2)
  17. Kaspersky meldet Hoax.Win32.Renos.esa (Fehlalarm?)
    Mülltonne - 11.11.2008 (0)

Zum Thema AdwCleaner meldet 1 Fund - Fehlalarm? - Hallo, ich habe am 03.06.2017 einen Suchlauf mit dem AdwCleaner durchgeführt, wobei 1 Fund angezeigt wurde. Danach habe ich mit dem Junkware Removal Tool einen Suchlauf durchgeführt, wobei kein Fund - AdwCleaner meldet 1 Fund - Fehlalarm?...
Archiv
Du betrachtest: AdwCleaner meldet 1 Fund - Fehlalarm? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.