Trojaner-Board
Seite 3 von 4 12 3 4
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Alles rund um Windows (https://www.trojaner-board.de/alles-rund-um-windows/)
-   -   CinePlus-meine Browser(Firefox, Chrome und Microsoft Edge) öffnen wenn sie geschlossen sind Pop-Up-Fenster (https://www.trojaner-board.de/172855-cineplus-browser-firefox-chrome-microsoft-edge-oeffnen-geschlossen-pop-up-fenster.html)

yanni75 15.11.2015 14:51
Hat immer noch kein LOG geöffnet btw. auf dem Desktop gespeichert.

cosinus 15.11.2015 19:00
Dann mach bitte so weiter:

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

yanni75 15.11.2015 22:20
Hab ich gemacht geht immer noch nicht

Entschuldigung, hab die Antwort nicht gesehen und wieder geschrieben. Seite war nicht geladen

Code:
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2015.11.15.04
  rootkit: v2015.11.14.01

Windows 10 x64 NTFS
Internet Explorer 11.0.10240.16590
Yannick :: YANNICK [administrator]

15.11.2015 20:36:45
mbar-log-2015-11-15 (20-36-45).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 377037
Time elapsed: 53 minute(s), 24 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

cosinus 16.11.2015 09:21
Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

http://www.trojaner-board.de/picture...&pictureid=611

yanni75 16.11.2015 17:49
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
durchgeführt von Yannick (Administrator) auf YANNICK (16-11-2015 17:29:40)
Gestartet von C:\Users\Yannick\Desktop
Geladene Profile: Yannick &  (Verfügbare Profile: Yannick)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.6.1180.0\McCSPServiceHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Spotify Ltd) C:\Users\Yannick\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.226\SSScheduler.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\soffice.exe
(FK2) C:\Windows\SysWOW64\svchospt.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\soffice.bin
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.21.25.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIVE.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296 2015-10-20] (Realtek Semiconductor)
HKLM-x32\...\Run: [svchospt] => C:\WINDOWS\SysWOW64\svchospt.exe [913408 2014-05-03] (FK2)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Spotify Web Helper] => C:\Users\Yannick\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-30] (Spotify Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Spotify] => C:\Users\Yannick\AppData\Roaming\Spotify\Spotify.exe [7736128 2015-10-30] (Spotify Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [TeamSpeak 3 Client] => C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe [11544552 2015-10-26] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\RunOnce: [Uninstall C:\Users\Yannick\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Yannick\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64"
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\Yannick\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-30] (Spotify Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\Yannick\AppData\Roaming\Spotify\Spotify.exe [7736128 2015-10-30] (Spotify Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [TeamSpeak 3 Client] => C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe [11544552 2015-10-26] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\Yannick\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Yannick\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64"
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-11-13]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.226\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LibreOffice 4.4.lnk [2015-11-05]
ShortcutTarget: LibreOffice 4.4.lnk -> C:\Program Files (x86)\LibreOffice 4\program\quickstart.exe ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.123.1 192.168.123.1
Tcpip\..\Interfaces\{7e0bb9d6-1a43-41f9-824a-f02fdf8aa2a2}: [DhcpNameServer] 192.168.123.1 192.168.123.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001 -> {0253AFB1-2C35-49D5-93CC-5C76222F903E} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0253AFB1-2C35-49D5-93CC-5C76222F903E} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-10-28] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-10-28] (Oracle Corporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-11-06] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-11-06] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-11-06] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-11-06] (McAfee, Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-09-28] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-09-28] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default
FF SearchEngineOrder.3: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q=
FF SelectedSearchEngine: Google
FF DefaultSearchEngine: Google
FF Homepage: hxxp://homepage-web.com/?s=acer&m=start
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-22] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-09-28] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-22] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-10-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-10-28] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-09-28] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-08-13] ()
FF Plugin HKU\S-1-5-21-3730779119-3456577941-3398900789-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Yannick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Yannick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\searchplugins\bing-.xml [2015-09-17]
FF SearchPlugin: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\searchplugins\McSiteAdvisor.xml [2015-09-17]
FF Extension: Bing Search - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\Extensions\bingsearch.full@microsoft.com [2015-09-05] [ist nicht signiert]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\Extensions\iobitascsurfingprotection@iobit.com [2015-09-25] [ist nicht signiert]
FF Extension: sidebar - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\Extensions\sidebarff@gmail.com [2015-11-06] [ist nicht signiert]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: Kein Name - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-11-03] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [sidebarff@gmail.com] - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\extensions\sidebarff@gmail.com
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-10-28] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\extensions\defsearchp@gmail.com [nicht gefunden]
FF Extension: Kein Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\extensions\deskCutv2@gmail.com [nicht gefunden]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxps://www.google.de/"
CHR Profile: C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-05]
CHR Extension: (Google Docs) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-05]
CHR Extension: (Google Drive) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (YouTube) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Tabellen) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-05]
CHR Extension: (SiteAdvisor) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-09-05]
CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Shortcuts for All Google™) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf [2015-11-07]
CHR Extension: (kcnhkahnjcbndmmehfkdnkjomaanaooo) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnhkahnjcbndmmehfkdnkjomaanaooo [2015-11-07]
CHR Extension: (Skype Click to Call) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-10-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-05]
CHR Extension: (Google Mail) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-05]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-11-12]
CHR HKLM\...\Chrome\Extension: [jdiejbegdjikmehflknhkbieocmnogcf] - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf.crx [2015-11-06]
CHR HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-11-12]
CHR HKLM-x32\...\Chrome\Extension: [jdiejbegdjikmehflknhkbieocmnogcf] - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf.crx [2015-11-06]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S3 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-08-13] (WildTangent)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328624 2015-10-20] (Intel Corporation)
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S3 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [157928 2015-11-06] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [783120 2015-09-28] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-29] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.226\McCHSvc.exe [289256 2015-10-30] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe [1694152 2015-09-01] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [639456 2015-08-11] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-07-31] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [376264 2015-08-10] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-07-31] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporate)
S3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-10-17] (Acer Incorporate)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4322440 2015-11-06] (Qualcomm Atheros Communications, Inc.)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [80768 2015-08-10] (McAfee, Inc.)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [51128 2015-10-02] (Intel Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-06] (LogMeIn Inc.)
R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-25] (REALiX(tm))
S3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [69632 2014-06-09] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-15] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [413432 2015-08-10] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349096 2015-08-10] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [82072 2015-08-10] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [495856 2015-08-10] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [839376 2015-08-10] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [537408 2015-08-12] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [111256 2015-08-12] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37960 2015-11-06] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [244024 2015-08-10] (McAfee, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [888064 2015-10-02] (Realtek                                            )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-09-25] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-10-20] (Synaptics Incorporated)
S3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [56520 2015-09-09] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-07-23] (TuneUp Software)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-10-02] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-16 17:34 - 2015-11-16 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-11-16 17:31 - 2015-11-16 17:31 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-16 17:31 - 2015-11-16 17:31 - 00000000 _____ C:\WINDOWS\setupact.log
2015-11-16 17:27 - 2015-11-16 17:27 - 00016148 _____ C:\WINDOWS\system32\YANNICK_Yannick_HistoryPrediction.bin
2015-11-15 21:30 - 2015-11-15 21:30 - 00000000 ____D C:\Users\Yannick\Desktop\runtime
2015-11-15 21:13 - 2015-11-15 22:27 - 00000000 ____D C:\Users\Yannick\Desktop\game
2015-11-15 20:46 - 2015-11-15 20:46 - 00332835 _____ C:\Users\Yannick\Desktop\Unbenannt 1.odt
2015-11-15 20:46 - 2015-11-15 20:46 - 00000097 ____H C:\Users\Yannick\Desktop\.~lock.Unbenannt 1.odt#
2015-11-15 20:36 - 2015-11-15 22:20 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-11-15 20:34 - 2015-11-15 22:20 - 00000000 ____D C:\Users\Yannick\Desktop\mbar
2015-11-15 20:33 - 2015-11-15 20:33 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Yannick\Desktop\mbar-1.09.3.1001.exe
2015-11-15 15:08 - 2015-11-15 15:08 - 00002922 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-11-15 14:49 - 2015-11-15 14:49 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\ProductData
2015-11-15 14:49 - 2015-11-15 14:49 - 00000000 ____D C:\ProgramData\ProductData
2015-11-15 04:55 - 2015-11-15 04:55 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-15 00:16 - 2015-10-05 23:26 - 01801288 _____ (Malwarebytes) C:\Users\Yannick\Desktop\JRT.exe
2015-11-15 00:15 - 2015-11-15 00:16 - 01798976 _____ (Malwarebytes) C:\Users\Yannick\Desktop\JRT (1).exe
2015-11-15 00:03 - 2015-11-15 00:04 - 01798976 _____ (Malwarebytes) C:\Users\Yannick\Downloads\JRT.exe
2015-11-13 06:38 - 2015-11-13 06:38 - 00001983 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2015-11-13 06:38 - 2015-11-13 06:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-11-13 06:38 - 2015-11-13 06:38 - 00000000 ____D C:\Program Files\McAfee Security Scan
2015-11-12 16:05 - 2015-11-12 16:06 - 00000000 ____D C:\Users\Yannick\Desktop\data
2015-11-12 16:04 - 2015-11-12 16:04 - 00889478 _____ C:\Users\Yannick\Downloads\Golem.exe.zip
2015-11-10 22:55 - 2015-11-10 22:55 - 00001251 _____ C:\Users\Public\Desktop\Smart Defrag 4.lnk
2015-11-10 22:52 - 2015-11-10 22:53 - 07942416 _____ (IObit ) C:\Users\Yannick\Downloads\smart-defrag-setup (1).exe
2015-11-10 22:33 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-10 22:33 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-10 22:33 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-10 22:33 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-10 22:33 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-10 22:33 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-10 22:33 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-10 22:33 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-10 22:33 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-10 22:33 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-10 22:33 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-10 22:33 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-10 22:33 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-10 22:33 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-10 22:33 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-10 22:33 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-10 22:33 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-10 22:33 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-10 22:33 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-10 22:33 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-10 22:33 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-10 22:33 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-10 22:33 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-10 22:33 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-10 22:33 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-10 22:33 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-10 22:33 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-10 22:33 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-10 22:33 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-10 22:33 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-10 22:33 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-10 22:33 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-10 22:33 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-10 22:33 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-10 22:33 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-10 22:33 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-10 22:33 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-10 22:33 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-10 22:33 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-10 22:33 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-10 22:33 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-10 22:33 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-10 22:33 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-10 22:33 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-10 22:33 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-10 22:33 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-10 22:33 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-10 22:33 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-10 22:33 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-10 22:33 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-10 22:33 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-10 22:33 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-10 22:33 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-10 18:14 - 2015-11-10 18:14 - 00001299 _____ C:\Users\Yannick\Desktop\mbam1.txt
2015-11-09 21:35 - 2015-11-12 16:06 - 00000000 ____D C:\Users\Yannick\Desktop\DO krieg
2015-11-09 21:34 - 2015-11-09 21:34 - 00001762 _____ C:\Users\Yannick\Desktop\Lightshot.lnk
2015-11-08 23:24 - 2015-11-08 23:24 - 00001939 _____ C:\Users\Yannick\Desktop\Battle for Wesnoth.lnk
2015-11-08 23:23 - 2015-11-08 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle for Wesnoth 1.12.4
2015-11-08 23:19 - 2015-11-08 23:22 - 00000000 ____D C:\Program Files (x86)\Battle for Wesnoth 1.12.4
2015-11-08 23:07 - 2015-11-08 23:18 - 357105928 _____ C:\Users\Yannick\Downloads\wesnoth-1.12.4a-win32.exe
2015-11-08 20:43 - 2015-11-08 20:43 - 00042213 _____ C:\Users\Yannick\Desktop\AdwCleaner[C1].txt
2015-11-08 20:27 - 2015-11-08 20:30 - 00000000 ____D C:\AdwCleaner
2015-11-08 20:24 - 2015-11-08 20:25 - 01712128 _____ C:\Users\Yannick\Desktop\adwcleaner_5.019.exe
2015-11-08 20:22 - 2015-11-12 15:54 - 00025232 _____ C:\Users\Yannick\Desktop\mbam.txt
2015-11-08 18:54 - 2015-11-08 18:54 - 00001224 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-11-08 18:49 - 2015-11-15 18:14 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-08 18:27 - 2015-11-15 20:35 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-08 18:27 - 2015-11-08 18:27 - 00001179 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-08 18:27 - 2015-11-08 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-08 18:27 - 2015-11-08 18:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-08 18:27 - 2015-11-08 18:27 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-08 18:27 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-08 18:27 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-08 18:25 - 2015-11-08 18:53 - 42996768 _____ C:\Users\Yannick\Downloads\Firefox Setup 42.0.exe
2015-11-08 18:23 - 2015-11-08 18:27 - 22908888 _____ (Malwarebytes ) C:\Users\Yannick\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-08 18:04 - 2015-11-08 18:05 - 07942416 _____ (IObit ) C:\Users\Yannick\Downloads\smart-defrag-setup.exe
2015-11-08 17:27 - 2015-11-08 17:27 - 00001345 _____ C:\Users\Yannick\Desktop\Revo Uninstaller.lnk
2015-11-08 17:27 - 2015-11-08 17:27 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-11-08 17:24 - 2015-11-08 17:26 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Yannick\Downloads\revosetup95.exe
2015-11-08 10:31 - 2015-11-08 10:34 - 00066494 _____ C:\Users\Yannick\Desktop\Addition.txt
2015-11-08 10:28 - 2015-11-16 17:36 - 00032493 _____ C:\Users\Yannick\Desktop\FRST.txt
2015-11-08 10:27 - 2015-11-16 17:30 - 00000000 ____D C:\FRST
2015-11-08 10:27 - 2015-11-08 10:27 - 02198528 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2015-11-08 10:26 - 2015-11-08 10:26 - 02198528 _____ (Farbar) C:\Users\Yannick\Downloads\FRST64.exe
2015-11-07 23:42 - 2015-11-15 05:24 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-07 22:45 - 2015-11-07 22:45 - 00000000 ____D C:\Program Files (x86)\55688db6-684b-430d-9112-c6e18ce39df6
2015-11-07 22:17 - 2015-11-15 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-07 22:15 - 2015-11-07 22:15 - 00000000 ____D C:\Users\Yannick\AppData\Local\Total Extension
2015-11-07 18:57 - 2015-11-07 18:57 - 01674929 _____ (TeamExtreme) C:\Users\Yannick\Downloads\Minecraft Cracked Launcher (1).jar
2015-11-07 18:08 - 2015-11-07 18:08 - 00772016 _____ (Reimage®) C:\Users\Yannick\Downloads\ReimageRepair (1).exe
2015-11-06 15:57 - 2015-11-06 15:57 - 00003360 _____ C:\WINDOWS\System32\Tasks\{13DCFC6A-D935-423C-90A8-3EE378220E6A}
2015-11-06 15:52 - 2015-11-08 17:48 - 00000000 ____D C:\Users\Yannick\AppData\Local\Mart Download
2015-11-05 23:19 - 2015-11-05 23:19 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\LibreOffice
2015-11-05 23:11 - 2015-11-05 23:11 - 00001219 _____ C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-11-05 23:11 - 2015-11-05 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-11-05 23:09 - 2015-11-05 23:11 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2015-11-05 23:07 - 2015-11-05 23:07 - 00000000 ____D C:\Users\Yannick\Desktop\Schule
2015-11-05 23:00 - 2015-11-05 23:06 - 223985664 _____ C:\Users\Yannick\Downloads\LibreOffice_4.4.6_Win_x86.msi
2015-11-05 22:55 - 2015-11-05 22:55 - 00001040 _____ C:\Users\Yannick\Desktop\Steam (2).lnk
2015-11-05 22:55 - 2015-11-05 22:55 - 00000983 _____ C:\Users\Yannick\Desktop\TeamSpeak 3 Client (2).lnk
2015-11-05 22:55 - 2015-11-05 22:55 - 00000222 _____ C:\Users\Yannick\Desktop\Clicker Heroes (2).url
2015-11-05 22:55 - 2015-11-05 22:55 - 00000220 _____ C:\Users\Yannick\Desktop\Sid Meier's Civilization V (2).url
2015-11-05 22:54 - 2015-11-05 22:54 - 00002262 _____ C:\Users\Yannick\Desktop\Advanced SystemCare 8 (2).lnk
2015-11-05 22:54 - 2015-11-05 22:54 - 00001251 _____ C:\Users\Yannick\Desktop\Smart Defrag 4 (2).lnk
2015-11-05 22:53 - 2015-11-05 22:53 - 00002715 _____ C:\Users\Yannick\Desktop\Skype (2).lnk
2015-11-05 22:51 - 2015-11-15 17:07 - 00000000 ____D C:\Users\Yannick\Desktop\Anderes
2015-11-05 22:50 - 2015-11-05 22:50 - 00000000 ____D C:\Users\Yannick\Desktop\Grafik
2015-11-05 22:49 - 2015-11-05 22:51 - 00000000 ____D C:\Users\Yannick\Desktop\Tools
2015-11-05 22:48 - 2015-11-09 21:37 - 00000000 ____D C:\Users\Yannick\Desktop\Spiele
2015-11-05 21:46 - 2015-11-10 22:45 - 00000000 ____D C:\Program Files (x86)\249692e5-bfb6-4a2e-877d-b3ef73c3cfde
2015-11-05 21:19 - 2015-11-15 21:19 - 00001044 _____ C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job
2015-11-05 21:19 - 2015-11-15 21:19 - 00001032 _____ C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job
2015-11-05 21:19 - 2015-11-05 21:19 - 00004198 _____ C:\WINDOWS\System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu
2015-11-05 21:19 - 2015-11-05 21:19 - 00004174 _____ C:\WINDOWS\System32\Tasks\5ltlqv0lRFHKDehZsd
2015-11-05 21:17 - 2015-11-15 21:17 - 00001038 _____ C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job
2015-11-05 21:17 - 2015-11-05 21:17 - 00004188 _____ C:\WINDOWS\System32\Tasks\INCbgBN7RFrg3fKUBUxKj
2015-11-05 21:16 - 2015-11-10 22:45 - 00000000 ____D C:\Program Files (x86)\a526e2cb-289b-4444-a100-dfa7f9efdd8e
2015-11-05 18:49 - 2015-11-05 21:54 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Opera Software
2015-11-05 18:49 - 2015-11-05 21:54 - 00000000 ____D C:\Users\Yannick\AppData\Local\Opera Software
2015-11-05 18:09 - 2015-08-24 00:01 - 00351149 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-11-02 22:00 - 2015-11-08 10:45 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-11-02 21:01 - 2015-11-10 22:45 - 00000000 ____D C:\Program Files (x86)\cf1aea1f-d520-4c1c-bc41-414bf9b95915
2015-11-02 11:28 - 2015-11-02 11:28 - 00000383 _____ C:\ftconfig.ini
2015-10-31 20:20 - 2015-10-31 20:20 - 00003420 _____ C:\Users\Yannick\AppData\Local\recently-used.xbel
2015-10-31 15:19 - 2015-10-31 15:19 - 00000000 ____D C:\Users\Yannick\AppData\Local\webkit
2015-10-29 13:58 - 2015-10-29 13:58 - 00000000 ____D C:\Users\Yannick\AppData\Local\Sonos,_Inc
2015-10-29 13:11 - 2015-10-29 13:58 - 00000000 ____D C:\Users\Yannick\AppData\Local\Downloaded Installations
2015-10-27 17:35 - 2015-10-27 19:04 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plants vs Zombies
2015-10-27 17:35 - 2015-10-27 19:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plants vs Zombies
2015-10-27 17:32 - 2015-10-27 17:32 - 00001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\More Great Games.lnk
2015-10-27 17:31 - 2015-10-27 17:31 - 00000000 ____D C:\ProgramData\Big Fish
2015-10-27 17:29 - 2015-10-27 17:37 - 00000000 ____D C:\BigFishCache
2015-10-27 17:29 - 2015-10-27 17:32 - 00000000 ____D C:\Users\Yannick\AppData\Local\Big Fish
2015-10-27 17:29 - 2015-10-27 17:29 - 00237568 _____ (Big Fish Games) C:\Users\Yannick\Downloads\plants-vs-zombies_s1_l1_gF5038T1L1_d2525289249.exe
2015-10-27 17:28 - 2015-10-27 17:28 - 00594961 _____ C:\Users\Yannick\Downloads\Plants-vs-Zombies.exe
2015-10-26 16:30 - 2015-10-26 16:30 - 00002858 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-10-26 16:30 - 2015-10-26 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-26 16:30 - 2015-10-26 16:30 - 00000000 ____D C:\Program Files\CCleaner
2015-10-26 16:28 - 2015-10-26 16:29 - 06762072 _____ (Piriform Ltd) C:\Users\Yannick\Downloads\ccsetup511.exe
2015-10-23 23:17 - 2015-10-25 03:59 - 00000000 ____D C:\Users\Yannick\Desktop\Devourer
2015-10-21 22:35 - 2015-10-21 22:35 - 00000000 ____D C:\Users\Yannick\Documents\Lightshot
2015-10-20 11:29 - 2015-10-20 11:29 - 03299832 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 02110600 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 01435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 01121864 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00961848 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00888480 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00873464 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00749000 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00596120 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00467168 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00258504 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00224264 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00221976 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00209544 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00172584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00158704 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00088328 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-10-20 11:29 - 2015-10-20 11:29 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-10-20 11:28 - 2015-10-20 11:29 - 00933640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 72203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-10-20 11:28 - 2015-10-20 11:28 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 13120760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 12986528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 09997848 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 05774640 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 05289952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 03951402 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-10-20 11:28 - 2015-10-20 11:28 - 03271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 03154607 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-10-20 11:28 - 2015-10-20 11:28 - 02997504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 02893568 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-10-20 11:28 - 2015-10-20 11:28 - 02823280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 02605048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 02050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 02028672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01395768 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01352000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01334384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01211840 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01186168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00998032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00923744 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00716112 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00678192 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00677680 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00589072 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-10-20 11:28 - 2015-10-20 11:28 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00448592 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00357528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00340648 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00214840 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00195192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00110992 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-10-20 11:28 - 2015-10-20 11:28 - 00084624 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-10-20 11:27 - 2015-10-20 11:28 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 05338936 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 02437144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 01601952 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00952984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00362056 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00122328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00118600 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-10-20 11:27 - 2015-10-20 11:27 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 22914048 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 17846272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 11905432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 11053048 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 10574992 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 08528896 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 06512128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 04371888 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 04368304 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 04024344 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 03670824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 02506960 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 02035704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 01994240 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 01793024 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 01766912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 01468952 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 01156000 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 01151840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00969128 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00865304 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00678912 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00659480 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00617472 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00616472 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00555432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00554920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00540080 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00467696 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00443304 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00409520 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00409000 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00393640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00392696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00385528 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00378824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00374272 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00357912 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00329216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00328624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00316245 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2015-10-20 01:56 - 2015-10-20 01:56 - 00295416 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00290224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00285184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00264192 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-10-20 01:56 - 2015-10-20 01:56 - 00261120 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00256936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00232952 _____ C:\WINDOWS\system32\igdde64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00229656 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00228864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00223768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00215040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4276.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00204208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00199088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00194560 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00194368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00193536 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00191000 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00188884 _____ C:\WINDOWS\system32\resTHA.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00181524 _____ C:\WINDOWS\system32\resELL.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00177300 _____ C:\WINDOWS\system32\resRUS.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00171008 _____ C:\WINDOWS\system32\igdail64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00169368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00165800 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-10-20 01:56 - 2015-10-20 01:56 - 00163840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00163044 _____ C:\WINDOWS\system32\resARA.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00162500 _____ C:\WINDOWS\system32\resHEB.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00162484 _____ C:\WINDOWS\system32\resJPN.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00157860 _____ C:\WINDOWS\system32\resHUN.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00157844 _____ C:\WINDOWS\system32\resFRA.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00156100 _____ C:\WINDOWS\system32\resKOR.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00156020 _____ C:\WINDOWS\system32\resDEU.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00155988 _____ C:\WINDOWS\system32\resITA.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00155828 _____ C:\WINDOWS\system32\resROM.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00155716 _____ C:\WINDOWS\system32\resESN.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00155268 _____ C:\WINDOWS\system32\resPLK.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00155172 _____ C:\WINDOWS\system32\resSKY.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00154980 _____ C:\WINDOWS\system32\resNLD.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00154372 _____ C:\WINDOWS\system32\resPTB.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00154260 _____ C:\WINDOWS\system32\resTRK.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00154212 _____ C:\WINDOWS\system32\resCSY.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00154084 _____ C:\WINDOWS\system32\resPTG.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00153620 _____ C:\WINDOWS\system32\resFIN.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00153236 _____ C:\WINDOWS\system32\resHRV.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00152772 _____ C:\WINDOWS\system32\resSVE.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00152644 _____ C:\WINDOWS\system32\resSLV.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00152576 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00151668 _____ C:\WINDOWS\system32\resNOR.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00151156 _____ C:\WINDOWS\system32\resDAN.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00149812 _____ C:\WINDOWS\system32\resENU.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00148052 _____ C:\WINDOWS\system32\resCHT.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00147188 _____ C:\WINDOWS\system32\resCHS.cui
2015-10-20 01:56 - 2015-10-20 01:56 - 00141848 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00107544 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00095224 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00078328 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00072696 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00069112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00068096 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00040712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00039424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00019456 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00018936 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00018936 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-10-20 01:56 - 2015-10-20 01:56 - 00002560 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-10-20 01:34 - 2015-10-20 01:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\My Games
2015-10-17 21:57 - 2015-10-17 21:57 - 00000424 _____ C:\Users\Yannick\AppData\Local\UserProducts.xml
2015-10-17 21:57 - 2015-10-17 21:57 - 00000003 _____ C:\Users\Yannick\AppData\Local\updater.log
2015-10-17 21:57 - 2015-10-17 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-10-17 21:57 - 2015-10-17 21:57 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2015-10-17 21:56 - 2015-10-17 21:56 - 02530408 _____ (Skillbrains ) C:\Users\Yannick\Downloads\setup-lightshot.exe
2015-10-17 19:21 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-17 19:21 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-17 19:20 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-17 19:20 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-17 19:20 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-17 19:20 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-17 19:20 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-17 19:20 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-17 19:20 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-17 19:20 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-17 19:20 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-17 19:20 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-17 19:20 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-17 19:20 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-17 19:20 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-17 19:20 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-17 19:20 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-17 19:20 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-17 19:20 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-17 19:20 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-17 19:20 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-17 19:20 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-17 19:20 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-17 19:20 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-17 19:20 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-17 19:20 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-17 19:20 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-17 19:20 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-17 19:20 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-17 19:20 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-17 19:20 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-17 19:20 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-17 19:20 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-17 19:20 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-17 19:20 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-17 19:20 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-17 19:20 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-17 19:20 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-17 19:20 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-17 19:20 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-17 19:20 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-17 19:20 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-17 19:20 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-17 19:20 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-17 19:20 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-17 19:20 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-17 19:20 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-17 19:20 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-17 19:20 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-16 17:34 - 2015-09-05 15:31 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{58127AFD-D2A0-495B-962C-C711DD258B8B}
2015-11-16 17:30 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-15 23:20 - 2015-09-05 15:42 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.minecraft
2015-11-15 22:47 - 2015-09-05 15:33 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-15 20:37 - 2015-09-05 15:29 - 00000000 ____D C:\Users\Yannick\AppData\Local\Spotify
2015-11-15 19:40 - 2015-09-05 15:29 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Spotify
2015-11-15 17:08 - 2015-10-02 20:56 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-15 15:46 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-15 14:50 - 2015-09-05 15:46 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\TS3Client
2015-11-15 05:21 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-15 05:19 - 2015-07-10 10:05 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2015-11-15 05:16 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-15 05:03 - 2015-09-08 23:26 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-15 04:59 - 2015-09-05 16:31 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Skype
2015-11-13 19:30 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-13 07:08 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-13 07:04 - 2015-09-05 20:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-13 06:42 - 2014-08-29 13:48 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-11-10 22:55 - 2015-09-25 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-11-10 22:47 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-10 22:46 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\SKB
2015-11-10 22:45 - 2015-10-06 17:31 - 00000000 ____D C:\Program Files (x86)\Audacity
2015-11-09 17:30 - 2015-09-05 15:16 - 00000000 ____D C:\Users\Yannick\AppData\Local\Packages
2015-11-08 23:24 - 2015-09-16 18:13 - 00000000 ____D C:\Users\Yannick\Documents\My Games
2015-11-08 22:18 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-08 20:53 - 2015-09-25 17:14 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\IObit
2015-11-08 20:53 - 2015-09-25 17:14 - 00000000 ____D C:\ProgramData\IObit
2015-11-08 20:52 - 2015-09-25 17:14 - 00000000 ____D C:\Program Files (x86)\IObit
2015-11-08 20:30 - 2015-09-08 22:37 - 00000000 ___RD C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-08 20:30 - 2015-09-05 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-08 20:10 - 2015-09-05 16:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-08 18:54 - 2015-09-18 20:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 18:54 - 2015-09-05 16:22 - 00001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-06 23:35 - 2015-09-08 22:55 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-06 23:35 - 2015-07-10 17:34 - 00772342 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-06 23:35 - 2015-07-10 17:34 - 00154170 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-06 23:29 - 2015-07-10 13:20 - 00319616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-06 16:17 - 2015-09-08 22:37 - 00000000 ____D C:\Users\Yannick
2015-11-06 16:13 - 2015-09-25 17:51 - 04322440 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2015-11-05 22:52 - 2015-09-10 15:37 - 00000000 ____D C:\Users\Yannick\Desktop\Schriftarten
2015-11-05 22:38 - 2015-10-05 15:46 - 00000000 ____D C:\Users\Yannick\AppData\Local\Sony
2015-11-05 21:18 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-11-05 19:59 - 2014-08-29 13:48 - 00000000 ____D C:\ProgramData\McAfee
2015-11-05 18:47 - 2015-09-05 15:31 - 00000000 __SHD C:\Users\Yannick\AppData\Local\EmieUserList
2015-11-05 18:46 - 2015-09-05 15:31 - 00000000 __SHD C:\Users\Yannick\AppData\Local\EmieSiteList
2015-11-05 17:52 - 2015-09-05 15:13 - 00000000 ____D C:\Users\Yannick\AppData\Local\SweetLabs App Platform
2015-11-03 19:20 - 2015-10-02 18:57 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-10-02 18:57 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-02 16:09 - 2015-09-05 16:30 - 00000000 ____D C:\ProgramData\Skype
2015-10-31 21:33 - 2015-09-10 18:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\vlc
2015-10-31 20:26 - 2015-10-11 10:19 - 00000000 ____D C:\Users\Yannick\.gimp-2.8
2015-10-31 20:20 - 2015-10-11 10:33 - 00000000 ____D C:\Users\Yannick\AppData\Local\gtk-2.0
2015-10-30 22:58 - 2015-09-05 15:21 - 00002508 _____ C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2015-10-30 22:29 - 2015-09-05 16:28 - 00002723 _____ C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dark Orbit.lnk
2015-10-30 22:29 - 2015-09-05 16:26 - 00002653 _____ C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\9gag.lnk
2015-10-30 22:29 - 2015-09-05 15:49 - 00002707 _____ C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dragon City.lnk
2015-10-29 18:27 - 2015-10-10 21:50 - 00000000 ____D C:\tmp
2015-10-28 22:32 - 2015-09-05 17:22 - 00000000 ____D C:\Users\Yannick\.oracle_jre_usage
2015-10-28 22:31 - 2015-09-05 17:21 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-10-28 22:31 - 2015-09-05 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-28 22:30 - 2015-09-05 17:18 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-28 02:17 - 2014-08-29 13:48 - 00000000 ____D C:\Program Files\Common Files\mcafee
2015-10-28 02:15 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-28 02:12 - 2015-09-08 21:42 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2015-10-27 19:16 - 2015-10-02 21:17 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-10-27 19:04 - 2014-08-29 13:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-10-27 18:43 - 2015-09-05 20:15 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-27 17:37 - 2014-08-29 13:41 - 00000000 ____D C:\ProgramData\Temp
2015-10-26 21:04 - 2015-09-05 15:46 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-10-26 16:35 - 2015-09-05 20:50 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashDumps
2015-10-24 00:48 - 2015-09-10 18:10 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\dvdcss
2015-10-23 23:15 - 2015-09-05 16:15 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-22 02:40 - 2015-09-05 16:47 - 00000000 ____D C:\Users\Yannick\AppData\Local\Adobe
2015-10-20 12:19 - 2015-09-25 17:55 - 01151965 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2015-10-20 11:36 - 2015-09-05 16:15 - 00003872 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-10-20 11:35 - 2015-09-25 17:42 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-10-20 11:33 - 2015-09-25 17:47 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-10-20 11:32 - 2015-09-08 22:32 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-10-20 11:28 - 2014-12-05 09:22 - 04613888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-10-20 11:28 - 2014-12-05 09:22 - 03278416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-10-20 11:28 - 2014-12-05 09:22 - 02958904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-10-20 11:28 - 2014-12-05 09:22 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-10-20 11:12 - 2015-09-09 05:07 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-10-20 01:56 - 2015-09-08 22:32 - 00072696 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-10-20 01:56 - 2015-09-08 22:32 - 00069112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-10-20 01:56 - 2015-07-30 21:46 - 12334072 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-10-20 01:56 - 2015-07-30 21:46 - 04637640 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-10-20 01:56 - 2015-07-30 21:45 - 03797424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\Yannick\AppData\Roaming\sVCln1HJy2w0
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\Yannick\AppData\Roaming\vyojoElH0NKPuoRI
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu
2015-10-31 20:20 - 2015-10-31 20:20 - 0003420 _____ () C:\Users\Yannick\AppData\Local\recently-used.xbel
2015-10-17 21:57 - 2015-10-17 21:57 - 0000003 _____ () C:\Users\Yannick\AppData\Local\updater.log
2015-10-17 21:57 - 2015-10-17 21:57 - 0000424 _____ () C:\Users\Yannick\AppData\Local\UserProducts.xml
2015-09-08 22:32 - 2015-09-08 22:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Yannick\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-15 04:55

==================== Ende von FRST.txt ============================

yanni75 16.11.2015 17:50
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:07-11-2015
durchgeführt von Yannick (2015-11-16 17:39:57)
Gestartet von C:\Users\Yannick\Desktop
Windows 10 Home (X64) (2015-09-09 04:06:51)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3730779119-3456577941-3398900789-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3730779119-3456577941-3398900789-503 - Limited - Disabled)
Gast (S-1-5-21-3730779119-3456577941-3398900789-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3730779119-3456577941-3398900789-1003 - Limited - Enabled)
Yannick (S-1-5-21-3730779119-3456577941-3398900789-1001 - Administrator - Enabled) => C:\Users\Yannick

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.08.2003 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2000 - Acer Incorporated)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.00.3009 - Acer Incorporated)
abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.09.2002.1 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.04.2004.0 - Acer Incorporated)
Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3008 - Acer Incorporated)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8115 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.07.2004 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8106.0 - Acer Incorporated)
Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3018 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8108 - Acer Incorporated)
Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.02.3005 - Acer Incorporated)
Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.02.3005 - Acer Incorporated)
Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2011.1 - Acer Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.4.0 - IObit)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2004.0 - Acer Incorporated)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.11.0 - Autodesk)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVS Audio Editor 8.0 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.0.2.501 - Online Media Technologies Ltd.)
Battle for Wesnoth 1.12.4 (HKLM-x32\...\Battle for Wesnoth 1.12.4) (Version: 1.12.4 - )
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - Playsaurus)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.5524 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4220 - CyberLink Corp.)
Driver Booster 3.0 (HKLM-x32\...\Driver Booster_is1) (Version: 3.0 - IObit)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version:  - Trendy Entertainment)
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WF-2530 Series Printer Uninstall (HKLM\...\EPSON WF-2530 Series) (Version:  - SEIKO EPSON Corporation)
Farm to Fork Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{D4DF5498-C95C-4A02-9951-725FB2D7BC0D}) (Version: 6.0.121.624 - Foxit Corporation)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 11.0.0.7 - WildTangent, Inc.)
Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 11.0.0.7 - WildTangent, Inc.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ACHTUNG
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Host App Service (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\SweetLabs_AP) (Version: 0.269.7.800 - Pokki)
Host App Service (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SweetLabs_AP) (Version: 0.269.7.800 - Pokki)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden
LibreOffice 4.4.6.3 (HKLM-x32\...\{1013DB12-EC2E-455E-B5ED-BFD056DC1A99}) (Version: 4.4.6.3 - The Document Foundation)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
LUXOR Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 14.0.5120 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.226.1 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.200 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.101.0 - Overwolf Ltd.)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.59 - WildTangent) Hidden
Pokki Start Menu (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\SweetLabs_Start_Menu) (Version: 0.269.7.800 - Pokki)
Pokki Start Menu (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SweetLabs_Start_Menu) (Version: 0.269.7.800 - Pokki)
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.322 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.33 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21255 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.3 - IObit)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.51 - WildTangent) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Unity Web Player (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.11.13 - WildTangent) Hidden
WinRAR 5.21 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.97 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Wiederherstellungspunkte =========================

10-11-2015 20:13:55 JRT Pre-Junkware Removal
15-11-2015 00:05:11 JRT Pre-Junkware Removal

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2015-11-13 06:38 - 00351149 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1        localhost
127.0.0.1        localhost.localdomain
255.255.255.255        broadcasthost
127.0.0.1        local127.0.0.1 goatse.cx      # More information on sites such as
127.0.0.1 www.goatse.cx  # these can be found in this article
127.0.0.1 oralse.cx      # en.wikipedia.org/wiki/List_of_shock_sites
127.0.0.1 www.oralse.cx
127.0.0.1 goatse.ca
127.0.0.1 www.goatse.ca
127.0.0.1 oralse.ca
127.0.0.1 www.oralse.ca
127.0.0.1 goat.cx
127.0.0.1 www.goat.cx
127.0.0.1 goatse.ru
127.0.0.1 www.goatse.ru127.0.0.1 1girl1pitcher.com
127.0.0.1 1girl1pitcher.org
127.0.0.1 1guy1cock.com
127.0.0.1 1man1jar.org
127.0.0.1 1man2needles.com
127.0.0.1 1priest1nun.com
127.0.0.1 2girls1cup.com
127.0.0.1 2girls1cup-free.com
127.0.0.1 2girls1cup.nl
127.0.0.1 2girls1cup.ws
127.0.0.1 2girls1finger.com
127.0.0.1 2girls1finger.org
127.0.0.1 2guys1stump.org
127.0.0.1 3guys1hammer.ws
127.0.0.1 4girlsfingerpaint.com
127.0.0.1 4girlsfingerpaint.org

Da befinden sich 11325 zusätzliche Einträge.


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0A43A6D8-C8AD-408B-A5E0-7C08AA781AA2} - System32\Tasks\INCbgBN7RFrg3fKUBUxKj => C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj.exe <==== ACHTUNG
Task: {0BFC0D29-2083-4F58-8E36-FE36DF8F0C09} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2014-06-09] (Acer Incorporated)
Task: {0CBD2F98-AACF-4EEA-AEF0-8F7CFAA36DD3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {0E82CBA4-4D83-4385-9864-C45D570A55C7} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-08-13] (Acer)
Task: {1C4858C7-04BD-48A9-BBDC-CE8E5D778D67} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {1E0E705A-139F-4693-9DEB-EE1163D7DC4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {21B45299-90C8-4FD2-929A-A1AC98E815D3} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2015-08-21] (IObit)
Task: {2A9491D8-168F-47E6-B7D3-E8AD6BBDF7D0} - \uhy3013 -> Keine Datei <==== ACHTUNG
Task: {3025552F-5ED5-493E-9B2D-BADA2CB04A78} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {35EE965A-77F2-443B-B798-B48FB2FAD365} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {394E48A7-A5D3-46E3-A950-3C3766EBA39A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-27] (Microsoft Corporation)
Task: {4026A69F-4AF0-4EE5-921C-4C9FCB049717} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2014-12-30] (Acer Incorporate)
Task: {4393812D-6371-463A-ADE5-046128640243} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {44BB214A-B4C1-4C29-8982-B1D9F0421C70} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {5EA8CE5E-A837-4607-9A71-17A195DAF0B3} - System32\Tasks\5ltlqv0lRFHKDehZsd => C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd.exe <==== ACHTUNG
Task: {67699FE6-8D36-4EA3-BAE3-FFFEF9F72720} - System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu => C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu.exe <==== ACHTUNG
Task: {69561C62-4107-42EA-9A10-4C659EE4B7E5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {6C6C3050-2846-418D-B912-083C76DF499A} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-13] (TODO: <Company name>)
Task: {780FB919-C1B4-4E56-9B9C-533BCA857C1C} - System32\Tasks\ASC8_SkipUac_Yannick => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-08-13] (IObit)
Task: {7B921026-8863-42B7-AD48-0CC3E51DAAF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {829AE9FA-A888-4544-89E7-B41A9B65ECDA} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {8BF3A334-C1E6-464D-9EAF-C4B9D576108B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {954BC225-ABB9-46C3-95C1-756FF84EC7A4} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate)
Task: {9C7C5D9F-46BE-4B55-A7E2-B050445C7520} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {A6E10883-F4A2-4825-8369-F262C7A8E81A} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2014-08-29] ()
Task: {A72FA305-1F06-4C39-A9ED-A4E5A27BFEB7} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {B1F6A3A8-3A95-46B7-BF1E-51EE995CC7E4} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-19] (Overwolf LTD)
Task: {B20C22AE-2DD8-4AFD-92BE-0B1D88DB0DB4} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate)
Task: {B9848DE3-6948-4043-92C9-F84379D18EB4} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-08-12] (IObit)
Task: {BCE2BCA7-196F-49A8-85C1-73AB17AB679A} - System32\Tasks\{13DCFC6A-D935-423C-90A8-3EE378220E6A} => pcalua.exe -a "C:\Program Files (x86)\CinePlus-1.44V05.11\Uninstall.exe" -d "C:\Program Files (x86)\CinePlus-1.44V05.11"
Task: {BEBF53A4-B42F-40FD-94CC-775B2F1EC91B} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2014-08-29] ()
Task: {C4B7053C-653F-4192-9CA2-2AFD46D7C439} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {C7AFDC23-3B52-40E5-913D-D76C01074403} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {CA65B110-E98D-4490-9A25-2356FCEEF437} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2014-06-17] (Acer Incorporated)
Task: {D624ED10-1721-435A-A015-1A69105ABC55} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E2BC537A-4CAA-4127-BFF6-884F4007CE25} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {E716763A-5FC4-4D34-B8EC-0AF9B89618F7} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2014-07-22] (Acer Incorporated)
Task: {EE2186B9-546E-494E-8103-570C4B942719} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-23] (Acer Incorporated)
Task: {EE507668-7247-44A8-A460-EC7617D814DE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-22] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job => C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job => C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job => C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu.exe <==== ACHTUNG

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-08 23:20 - 2015-09-08 23:20 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-08 23:20 - 2015-09-08 23:20 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-10-01 13:28 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 13:28 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-10-01 13:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 13:29 - 2015-09-17 06:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 13:28 - 2015-09-17 06:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 13:28 - 2015-09-17 06:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 13:28 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-19 21:00 - 2015-10-19 21:00 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-11-12 16:48 - 2015-11-12 16:49 - 08717824 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.21.25.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-11-12 16:48 - 2015-11-12 16:49 - 02371072 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.21.25.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-10-27 13:30 - 2015-10-27 13:32 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-10-27 13:30 - 2015-10-27 13:32 - 10958848 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-10-27 13:30 - 2015-10-27 13:32 - 00245760 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-09-08 23:20 - 2015-09-08 23:20 - 02641760 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2015-09-08 23:20 - 2015-09-08 23:20 - 02108256 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2015-09-25 17:15 - 2014-10-16 09:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-09-25 17:14 - 2013-01-15 17:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-10-02 21:05 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 02541648 _____ () C:\Program Files (x86)\Steam\video.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-10-02 21:05 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-10-28 02:12 - 2015-10-28 02:12 - 01039976 _____ () C:\Program Files (x86)\LibreOffice 4\program\libxml2.dll
2015-10-28 02:12 - 2015-10-28 02:12 - 00356968 _____ () C:\Program Files (x86)\LibreOffice 4\program\glew32.dll
2015-10-28 02:13 - 2015-10-28 02:13 - 00182376 _____ () C:\Program Files (x86)\LibreOffice 4\program\libxslt.dll
2015-10-28 02:13 - 2015-10-28 02:13 - 00100456 _____ () C:\Program Files (x86)\LibreOffice 4\program\python3.dll
2015-10-27 22:53 - 2015-10-27 22:53 - 00049664 _____ () C:\Program Files (x86)\LibreOffice 4\program\python-core-3.3.3\lib\_socket.pyd
2015-10-02 21:05 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:B1FBBD09

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Yannick\Desktop\Grafik\blender\b3ENDER ÜB4NG\B4rg\Burg.png
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Yannick\Desktop\Grafik\blender\b3ENDER ÜB4NG\B4rg\Burg.png
DNS Servers: 192.168.123.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{45397BBB-3289-4E56-815B-1D5715D45369}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{4D01C070-C492-477C-9187-378B0A91F83D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{E6FFF153-E971-4D39-90F4-6AEE0A726191}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{383CF82A-CCB2-427B-AF3D-A09F7BF7F514}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{855D1FC7-5125-4C87-8AE1-35319249DBA0}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{F9A0F3AA-D5E0-46B1-80A1-3DABBF8DCA61}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{C0D0AF6D-3067-495C-B2B7-4517B7BF53E9}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{D6C6CD86-1858-4CC8-B68F-6C6E3F83BFBB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{7AF12021-5E37-4A9D-8906-0C3584ED210E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{34F8B0A1-9CE1-46AF-BCFA-AFC0ACA24E8F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{60724B45-2A35-42C1-BCCB-D5CB471A113C}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{9158DC09-2517-4EEA-9753-03CEBFDECB2B}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{8326CEAC-5776-458B-8BBA-00AC166E86D1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{5C1F8484-A47B-4BDE-9976-97A9B1B53EF3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{33DC399F-77BE-4F5E-98EF-3CFD3CD87907}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{D9DFFE8D-61A8-412C-8CF4-742871749035}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{C7E622CD-01F7-4F73-8DFC-BAC3952CA199}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{ECEA05F2-D1BA-4355-9C3C-D99136DA12C1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{152EDD0F-5AA8-48D9-B139-C0EA84556B64}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{624A3020-225F-49C6-9AC8-44C1F96740EB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{BF08C778-CFAD-43EB-889F-FCFBACC7F2FF}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{0565A314-E03D-468D-B351-A0B654A68542}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{EE520E0F-D757-4A71-AA27-D17A450159B5}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{D029255C-B265-4906-A68C-B94EB1B744EE}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{1F21258E-9F11-4887-B816-3304C7BE40DA}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{0E61E42E-DB9A-4778-B9EC-9998B45F6775}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{D75D7061-37C1-4A87-9B02-18050FC057B2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{8FFD7BBB-0009-47A2-97CF-748B6035F31B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{7545002E-41DD-4141-9441-FE145C4886B6}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{F63B0517-E2DE-425B-AE55-EE4F78A4809B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{DFE963E3-D114-48A6-84CE-D26E132A9399}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{4703E519-AF36-40D1-8A21-032538E7F0BB}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{6B0982E2-B7CF-4ABB-A6CB-B757A20780E3}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{7567631B-D0C1-43F3-97D7-63267B78BB8B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{EF166C6C-4DF4-408A-99E8-D43862DF7787}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [TCP Query User{61B3DA7E-8F05-4CB5-A66C-3BC9ABAD5551}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{25449A9D-50FD-4AE6-9A02-DE5A0E7C6743}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17D1BF13-55A8-43BD-BB9A-25C034A6127C}C:\users\yannick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yannick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2CBED17B-378F-4146-A824-D54E7EBA6DA2}C:\users\yannick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yannick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C0127D12-46CB-43BA-AB53-AC70E1159416}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8207C15D-176C-45A7-A592-5C0F3B31F7C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8A777026-FF33-426D-BC00-AB94450CA8DE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ECBFB257-CFCC-46B7-A42F-BAF6DE90CED2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3B14CB1A-DE23-4E08-92F3-1B72D13E201C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{5DC3C982-14C3-412F-825C-88EFD161E2B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{C4D78462-F52F-4F34-AB98-4D4B353D061F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{7B5720B9-D3A7-4817-8D23-C32EFC2BF5D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{1D8790F9-A916-4508-A9A1-550A95D3CAA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{A5DCFB34-FF40-4543-8C91-BEBD5A32245B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{770813A0-18FB-427D-99BD-A47C50FF6154}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{13B59418-DBC0-4951-B6BF-DA3149580CEC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AC98A6D5-A821-42FF-B600-457C6BA7CE19}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/16/2015 05:39:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm OneClick.exe, Version 15.0.1001.638 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 3d8

Startzeit: 01d11faf2566b72c

Beendigungszeit: 76

Anwendungspfad: C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe

Berichts-ID: 7bdedea1-8c80-11e5-828b-206a8aa5d416

Vollständiger Name des fehlerhaften Pakets:

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (11/16/2015 05:28:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNICK)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (11/15/2015 05:01:03 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (3244) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/15/2015 05:01:03 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (3244) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/15/2015 05:00:52 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (3244) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/15/2015 05:00:52 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (3244) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/15/2015 05:00:42 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (3244) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/15/2015 05:00:42 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (3244) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/15/2015 05:00:32 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (3244) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/15/2015 05:00:32 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (3244) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.


Systemfehler:
=============
Error: (11/16/2015 05:36:53 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:53 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:53 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:53 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:53 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:53 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:49 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:44 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:35 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/16/2015 05:36:26 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742


CodeIntegrity:
===================================
  Date: 2015-11-05 21:04:17.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:04:16.985
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:04:13.065
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.856
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.780
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.677
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:55:48.690
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:52:32.358
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:50:57.442
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:50:57.375
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Prozentuale Nutzung des RAM: 67%
Installierter physikalischer RAM: 3977.98 MB
Verfügbarer physikalischer RAM: 1280.94 MB
Summe virtueller Speicher: 5449.98 MB
Verfügbarer virtueller Speicher: 2189.98 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:448.57 GB) (Free:357.73 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 283A4261)

Partition: GPT.

==================== Ende von Addition.txt ============================

cosinus 16.11.2015 19:56
Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    Driver Booster 3.0
    Smart Defrag 4
    Surfing Protection
    globalupdate Helper

  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 




Anschließend bitte so weitermachen:



FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
C:\Program Files (x86)\249692e5-bfb6-4a2e-877d-b3ef73c3cfde
C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job
C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job
C:\WINDOWS\System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu
C:\WINDOWS\System32\Tasks\5ltlqv0lRFHKDehZsd
C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job
C:\WINDOWS\System32\Tasks\INCbgBN7RFrg3fKUBUxKj
C:\Program Files (x86)\a526e2cb-289b-4444-a100-dfa7f9efdd8e
C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
C:\Program Files (x86)\cf1aea1f-d520-4c1c-bc41-414bf9b95915
C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd
C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj
C:\Users\Yannick\AppData\Roaming\sVCln1HJy2w0
C:\Users\Yannick\AppData\Roaming\vyojoElH0NKPuoRI
C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu
C:\Users\Yannick\AppData\Roaming\*.exe
cmd: type C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:B1FBBD09
Task: {0A43A6D8-C8AD-408B-A5E0-7C08AA781AA2} - System32\Tasks\INCbgBN7RFrg3fKUBUxKj => C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj.exe <==== ACHTUNG
Task: {2A9491D8-168F-47E6-B7D3-E8AD6BBDF7D0} - \uhy3013 -> Keine Datei <==== ACHTUNG
Task: {5EA8CE5E-A837-4607-9A71-17A195DAF0B3} - System32\Tasks\5ltlqv0lRFHKDehZsd => C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd.exe <==== ACHTUNG
Task: {67699FE6-8D36-4EA3-BAE3-FFFEF9F72720} - System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu => C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job => C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job => C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job => C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu.exe <==== ACHTUNG
EmptyTemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


yanni75 16.11.2015 21:45
Driver Booster 3.0 und globalupdate Helper sind nicht da.

cosinus 16.11.2015 23:44
Mach bitte mit dem Fix dann weiter

yanni75 17.11.2015 16:42
Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-11-2015
durchgeführt von Yannick (2015-11-17 16:28:50) Run:2
Gestartet von C:\Users\Yannick\Desktop
Geladene Profile: Yannick &  (Verfügbare Profile: Yannick)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
C:\Program Files (x86)\249692e5-bfb6-4a2e-877d-b3ef73c3cfde
C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job
C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job
C:\WINDOWS\System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu
C:\WINDOWS\System32\Tasks\5ltlqv0lRFHKDehZsd
C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job
C:\WINDOWS\System32\Tasks\INCbgBN7RFrg3fKUBUxKj
C:\Program Files (x86)\a526e2cb-289b-4444-a100-dfa7f9efdd8e
C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
C:\Program Files (x86)\cf1aea1f-d520-4c1c-bc41-414bf9b95915
C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd
C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj
C:\Users\Yannick\AppData\Roaming\sVCln1HJy2w0
C:\Users\Yannick\AppData\Roaming\vyojoElH0NKPuoRI
C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu
C:\Users\Yannick\AppData\Roaming\*.exe
cmd: type C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:B1FBBD09
Task: {0A43A6D8-C8AD-408B-A5E0-7C08AA781AA2} - System32\Tasks\INCbgBN7RFrg3fKUBUxKj => C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj.exe <==== ACHTUNG
Task: {2A9491D8-168F-47E6-B7D3-E8AD6BBDF7D0} - \uhy3013 -> Keine Datei <==== ACHTUNG
Task: {5EA8CE5E-A837-4607-9A71-17A195DAF0B3} - System32\Tasks\5ltlqv0lRFHKDehZsd => C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd.exe <==== ACHTUNG
Task: {67699FE6-8D36-4EA3-BAE3-FFFEF9F72720} - System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu => C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job => C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job => C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job => C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu.exe <==== ACHTUNG
EmptyTemp:
       
*****************

"C:\Program Files (x86)\249692e5-bfb6-4a2e-877d-b3ef73c3cfde" => nicht gefunden.
"C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job" => nicht gefunden.
"C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job" => nicht gefunden.
"C:\WINDOWS\System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu" => nicht gefunden.
"C:\WINDOWS\System32\Tasks\5ltlqv0lRFHKDehZsd" => nicht gefunden.
"C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job" => nicht gefunden.
"C:\WINDOWS\System32\Tasks\INCbgBN7RFrg3fKUBUxKj" => nicht gefunden.
"C:\Program Files (x86)\a526e2cb-289b-4444-a100-dfa7f9efdd8e" => nicht gefunden.
"C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7" => nicht gefunden.
"C:\Program Files (x86)\cf1aea1f-d520-4c1c-bc41-414bf9b95915" => nicht gefunden.
"C:\Users\Yannick\AppData\Roaming\5ltlqv0lRFHKDehZsd" => nicht gefunden.
"C:\Users\Yannick\AppData\Roaming\INCbgBN7RFrg3fKUBUxKj" => nicht gefunden.
"C:\Users\Yannick\AppData\Roaming\sVCln1HJy2w0" => nicht gefunden.
"C:\Users\Yannick\AppData\Roaming\vyojoElH0NKPuoRI" => nicht gefunden.
"C:\Users\Yannick\AppData\Roaming\ZTVjZQIMEoojpx2ogA9hI2gu" => nicht gefunden.

=========== "C:\Users\Yannick\AppData\Roaming\*.exe" ==========

nicht gefunden

========= Ende -> "C:\Users\Yannick\AppData\Roaming\*.exe" ========


=========  type C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat =========

@echo off
regsvr32 /s igfxDH.dll
regsvr32 /s igfxDI.dll
regsvr32 /s igfxLHM.dll
regsvr32 /s igfxCPL.cpl
regsvr32 /s igfxOSP.dll
regsvr32 /s igfxDTCM.dll
regsvr32 /s igfxexps.dll
igfxext.exe /regserver
igfxTray.exe /regserver
igfxHK.exe /regserver
start igfxEM.exe /RegServerPerUser
GfxUIEx.exe /regserver
attrib +R +H +S +A *.cui
start igfxEM.exe
start igfxTray.exe
start igfxHK.exe
del /Q {F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

========= Ende von CMD: =========

"C:\ProgramData\Temp" => ":2CB9631F" ADS nicht gefunden.
"C:\ProgramData\Temp" => ":B1FBBD09" ADS nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A43A6D8-C8AD-408B-A5E0-7C08AA781AA2} => Schlüssel nicht gefunden.
C:\WINDOWS\System32\Tasks\INCbgBN7RFrg3fKUBUxKj => nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\INCbgBN7RFrg3fKUBUxKj" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2A9491D8-168F-47E6-B7D3-E8AD6BBDF7D0}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A9491D8-168F-47E6-B7D3-E8AD6BBDF7D0}" => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\uhy3013 => Schlüssel nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5EA8CE5E-A837-4607-9A71-17A195DAF0B3}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5EA8CE5E-A837-4607-9A71-17A195DAF0B3}" => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\5ltlqv0lRFHKDehZsd => nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5ltlqv0lRFHKDehZsd" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{67699FE6-8D36-4EA3-BAE3-FFFEF9F72720}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67699FE6-8D36-4EA3-BAE3-FFFEF9F72720}" => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu => nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ZTVjZQIMEoojpx2ogA9hI2gu" => Schlüssel erfolgreich entfernt
C:\WINDOWS\Tasks\5ltlqv0lRFHKDehZsd.job => nicht gefunden.
C:\WINDOWS\Tasks\INCbgBN7RFrg3fKUBUxKj.job => nicht gefunden.
C:\WINDOWS\Tasks\ZTVjZQIMEoojpx2ogA9hI2gu.job => nicht gefunden.
EmptyTemp: => 360.9 MB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 16:29:54 ====

cosinus 17.11.2015 20:18
Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

http://www.trojaner-board.de/picture...&pictureid=611

yanni75 17.11.2015 22:32
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-11-2015
durchgeführt von Yannick (2015-11-17 22:25:59)
Gestartet von C:\Users\Yannick\Desktop
Windows 10 Home (X64) (2015-09-09 04:06:51)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3730779119-3456577941-3398900789-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3730779119-3456577941-3398900789-503 - Limited - Disabled)
Gast (S-1-5-21-3730779119-3456577941-3398900789-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3730779119-3456577941-3398900789-1003 - Limited - Enabled)
Yannick (S-1-5-21-3730779119-3456577941-3398900789-1001 - Administrator - Enabled) => C:\Users\Yannick

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.08.2003 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2000 - Acer Incorporated)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.00.3009 - Acer Incorporated)
abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.09.2002.1 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.04.2004.0 - Acer Incorporated)
Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3008 - Acer Incorporated)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8115 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.07.2004 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8106.0 - Acer Incorporated)
Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3018 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8108 - Acer Incorporated)
Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.02.3005 - Acer Incorporated)
Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.02.3005 - Acer Incorporated)
Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2011.1 - Acer Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.4.0 - IObit)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2004.0 - Acer Incorporated)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.11.0 - Autodesk)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVS Audio Editor 8.0 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.0.2.501 - Online Media Technologies Ltd.)
Battle for Wesnoth 1.12.4 (HKLM-x32\...\Battle for Wesnoth 1.12.4) (Version: 1.12.4 - )
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - Playsaurus)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.5524 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4220 - CyberLink Corp.)
Driver Booster 3.0 (HKLM-x32\...\Driver Booster_is1) (Version: 3.0 - IObit)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version:  - Trendy Entertainment)
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WF-2530 Series Printer Uninstall (HKLM\...\EPSON WF-2530 Series) (Version:  - SEIKO EPSON Corporation)
Farm to Fork Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{D4DF5498-C95C-4A02-9951-725FB2D7BC0D}) (Version: 6.0.121.624 - Foxit Corporation)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 11.0.0.7 - WildTangent, Inc.)
Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 11.0.0.7 - WildTangent, Inc.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ACHTUNG
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Host App Service (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\SweetLabs_AP) (Version: 0.269.7.800 - Pokki)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden
LibreOffice 4.4.6.3 (HKLM-x32\...\{1013DB12-EC2E-455E-B5ED-BFD056DC1A99}) (Version: 4.4.6.3 - The Document Foundation)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
LUXOR Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 14.0.5120 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.226.1 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.200 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.101.0 - Overwolf Ltd.)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.59 - WildTangent) Hidden
Pokki Start Menu (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\SweetLabs_Start_Menu) (Version: 0.269.7.800 - Pokki)
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.322 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.33 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21255 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.51 - WildTangent) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Unity Web Player (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.11.13 - WildTangent) Hidden
WinRAR 5.21 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.97 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Wiederherstellungspunkte =========================

10-11-2015 20:13:55 JRT Pre-Junkware Removal
15-11-2015 00:05:11 JRT Pre-Junkware Removal
16-11-2015 21:37:39 Revo Uninstaller's restore point - Smart Defrag 4

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2015-11-13 06:38 - 00351149 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1        localhost
127.0.0.1        localhost.localdomain
255.255.255.255        broadcasthost
127.0.0.1        local127.0.0.1 goatse.cx      # More information on sites such as
127.0.0.1 www.goatse.cx  # these can be found in this article
127.0.0.1 oralse.cx      # en.wikipedia.org/wiki/List_of_shock_sites
127.0.0.1 www.oralse.cx
127.0.0.1 goatse.ca
127.0.0.1 www.goatse.ca
127.0.0.1 oralse.ca
127.0.0.1 www.oralse.ca
127.0.0.1 goat.cx
127.0.0.1 www.goat.cx
127.0.0.1 goatse.ru
127.0.0.1 www.goatse.ru127.0.0.1 1girl1pitcher.com
127.0.0.1 1girl1pitcher.org
127.0.0.1 1guy1cock.com
127.0.0.1 1man1jar.org
127.0.0.1 1man2needles.com
127.0.0.1 1priest1nun.com
127.0.0.1 2girls1cup.com
127.0.0.1 2girls1cup-free.com
127.0.0.1 2girls1cup.nl
127.0.0.1 2girls1cup.ws
127.0.0.1 2girls1finger.com
127.0.0.1 2girls1finger.org
127.0.0.1 2guys1stump.org
127.0.0.1 3guys1hammer.ws
127.0.0.1 4girlsfingerpaint.com
127.0.0.1 4girlsfingerpaint.org

Da befinden sich 11325 zusätzliche Einträge.


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0BFC0D29-2083-4F58-8E36-FE36DF8F0C09} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2014-06-09] (Acer Incorporated)
Task: {0CBD2F98-AACF-4EEA-AEF0-8F7CFAA36DD3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {0E82CBA4-4D83-4385-9864-C45D570A55C7} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-08-13] (Acer)
Task: {1C4858C7-04BD-48A9-BBDC-CE8E5D778D67} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {1E0E705A-139F-4693-9DEB-EE1163D7DC4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {3025552F-5ED5-493E-9B2D-BADA2CB04A78} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {35EE965A-77F2-443B-B798-B48FB2FAD365} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {394E48A7-A5D3-46E3-A950-3C3766EBA39A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-27] (Microsoft Corporation)
Task: {4026A69F-4AF0-4EE5-921C-4C9FCB049717} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2014-12-30] (Acer Incorporate)
Task: {4393812D-6371-463A-ADE5-046128640243} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {44BB214A-B4C1-4C29-8982-B1D9F0421C70} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {69561C62-4107-42EA-9A10-4C659EE4B7E5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {6C6C3050-2846-418D-B912-083C76DF499A} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-13] (TODO: <Company name>)
Task: {780FB919-C1B4-4E56-9B9C-533BCA857C1C} - System32\Tasks\ASC8_SkipUac_Yannick => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-08-13] (IObit)
Task: {7B921026-8863-42B7-AD48-0CC3E51DAAF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {829AE9FA-A888-4544-89E7-B41A9B65ECDA} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {8BF3A334-C1E6-464D-9EAF-C4B9D576108B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {954BC225-ABB9-46C3-95C1-756FF84EC7A4} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate)
Task: {9C7C5D9F-46BE-4B55-A7E2-B050445C7520} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {A6E10883-F4A2-4825-8369-F262C7A8E81A} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2014-08-29] ()
Task: {A72FA305-1F06-4C39-A9ED-A4E5A27BFEB7} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {B1F6A3A8-3A95-46B7-BF1E-51EE995CC7E4} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-19] (Overwolf LTD)
Task: {B20C22AE-2DD8-4AFD-92BE-0B1D88DB0DB4} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate)
Task: {B9848DE3-6948-4043-92C9-F84379D18EB4} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-08-12] (IObit)
Task: {BCE2BCA7-196F-49A8-85C1-73AB17AB679A} - System32\Tasks\{13DCFC6A-D935-423C-90A8-3EE378220E6A} => pcalua.exe -a "C:\Program Files (x86)\CinePlus-1.44V05.11\Uninstall.exe" -d "C:\Program Files (x86)\CinePlus-1.44V05.11"
Task: {BEBF53A4-B42F-40FD-94CC-775B2F1EC91B} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2014-08-29] ()
Task: {C4B7053C-653F-4192-9CA2-2AFD46D7C439} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {C7AFDC23-3B52-40E5-913D-D76C01074403} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {CA65B110-E98D-4490-9A25-2356FCEEF437} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2014-06-17] (Acer Incorporated)
Task: {D624ED10-1721-435A-A015-1A69105ABC55} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E2BC537A-4CAA-4127-BFF6-884F4007CE25} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {E716763A-5FC4-4D34-B8EC-0AF9B89618F7} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2014-07-22] (Acer Incorporated)
Task: {EE2186B9-546E-494E-8103-570C4B942719} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-23] (Acer Incorporated)
Task: {EE507668-7247-44A8-A460-EC7617D814DE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-22] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-08 23:20 - 2015-09-08 23:20 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-08 23:20 - 2015-09-08 23:20 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-10-01 13:28 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 13:28 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-10-01 13:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 13:29 - 2015-09-17 06:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 13:28 - 2015-09-17 06:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 13:28 - 2015-09-17 06:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 13:28 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-19 21:00 - 2015-10-19 21:00 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-09-25 17:15 - 2014-10-16 09:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-09-25 17:14 - 2013-01-15 17:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-10-02 21:05 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 02541648 _____ () C:\Program Files (x86)\Steam\video.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-10-02 21:05 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-10-28 02:12 - 2015-10-28 02:12 - 01039976 _____ () C:\Program Files (x86)\LibreOffice 4\program\libxml2.dll
2015-10-28 02:12 - 2015-10-28 02:12 - 00356968 _____ () C:\Program Files (x86)\LibreOffice 4\program\glew32.dll
2015-10-02 21:05 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-06-26 08:33 - 2015-06-26 08:33 - 23069987 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\wesnoth.exe
2014-05-11 15:32 - 2014-05-11 15:32 - 01483944 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\SDL.dll
2014-05-11 15:37 - 2014-05-11 15:37 - 00235297 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\SDL_image.dll
2014-05-11 16:18 - 2014-05-11 16:18 - 00477339 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\SDL_mixer.dll
2014-05-11 16:23 - 2014-05-11 16:23 - 00079507 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\SDL_net.dll
2014-11-16 13:31 - 2014-11-16 13:31 - 00112790 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\SDL_ttf.dll
2013-09-21 14:46 - 2013-09-21 14:46 - 00930610 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libcairo-2.dll
2013-09-21 14:40 - 2013-09-21 14:40 - 00084480 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\zlib1.dll
2010-12-29 01:21 - 2010-12-29 01:21 - 00047104 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libgomp-1.dll
2010-12-29 01:21 - 2010-12-29 01:21 - 00089088 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libgcc_s_sjlj-1.dll
2013-09-21 14:47 - 2013-09-21 14:47 - 00299184 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libjpeg-9.dll
2013-09-21 14:43 - 2013-09-21 14:43 - 00261562 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libpng15-15.dll
2013-09-21 14:48 - 2013-09-21 14:48 - 00561418 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libtiff-5.dll
2014-05-11 15:55 - 2014-05-11 15:55 - 00075165 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libvorbisfile-3.dll
2013-09-21 14:41 - 2013-09-21 14:41 - 00066424 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libffi-6.dll
2013-09-21 14:44 - 2013-09-21 14:44 - 00344118 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libfontconfig-1.dll
2013-09-21 14:44 - 2013-09-21 14:44 - 00710479 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libfreetype-6.dll
2013-09-21 14:45 - 2013-09-21 14:45 - 02765668 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libpixman-1-0.dll
2014-05-11 15:55 - 2014-05-11 15:55 - 00219361 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libvorbis-0.dll
2014-05-11 15:53 - 2014-05-11 15:53 - 00082976 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libogg-0.dll
2013-09-21 14:41 - 2013-09-21 14:41 - 01619281 _____ () C:\Program Files (x86)\Battle for Wesnoth 1.12.4\libxml2-2.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Yannick\Desktop\Grafik\blender\b3ENDER ÜB4NG\B4rg\Burg.png
DNS Servers: 192.168.123.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{45397BBB-3289-4E56-815B-1D5715D45369}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{4D01C070-C492-477C-9187-378B0A91F83D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{E6FFF153-E971-4D39-90F4-6AEE0A726191}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{383CF82A-CCB2-427B-AF3D-A09F7BF7F514}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{855D1FC7-5125-4C87-8AE1-35319249DBA0}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{F9A0F3AA-D5E0-46B1-80A1-3DABBF8DCA61}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{C0D0AF6D-3067-495C-B2B7-4517B7BF53E9}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{D6C6CD86-1858-4CC8-B68F-6C6E3F83BFBB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{7AF12021-5E37-4A9D-8906-0C3584ED210E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{34F8B0A1-9CE1-46AF-BCFA-AFC0ACA24E8F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{60724B45-2A35-42C1-BCCB-D5CB471A113C}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{9158DC09-2517-4EEA-9753-03CEBFDECB2B}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{8326CEAC-5776-458B-8BBA-00AC166E86D1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{5C1F8484-A47B-4BDE-9976-97A9B1B53EF3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{33DC399F-77BE-4F5E-98EF-3CFD3CD87907}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{D9DFFE8D-61A8-412C-8CF4-742871749035}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{C7E622CD-01F7-4F73-8DFC-BAC3952CA199}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{ECEA05F2-D1BA-4355-9C3C-D99136DA12C1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{152EDD0F-5AA8-48D9-B139-C0EA84556B64}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{624A3020-225F-49C6-9AC8-44C1F96740EB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{BF08C778-CFAD-43EB-889F-FCFBACC7F2FF}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{0565A314-E03D-468D-B351-A0B654A68542}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{EE520E0F-D757-4A71-AA27-D17A450159B5}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{D029255C-B265-4906-A68C-B94EB1B744EE}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{1F21258E-9F11-4887-B816-3304C7BE40DA}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{0E61E42E-DB9A-4778-B9EC-9998B45F6775}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{D75D7061-37C1-4A87-9B02-18050FC057B2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{8FFD7BBB-0009-47A2-97CF-748B6035F31B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{7545002E-41DD-4141-9441-FE145C4886B6}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{F63B0517-E2DE-425B-AE55-EE4F78A4809B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{DFE963E3-D114-48A6-84CE-D26E132A9399}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{4703E519-AF36-40D1-8A21-032538E7F0BB}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{6B0982E2-B7CF-4ABB-A6CB-B757A20780E3}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{7567631B-D0C1-43F3-97D7-63267B78BB8B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{EF166C6C-4DF4-408A-99E8-D43862DF7787}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [TCP Query User{61B3DA7E-8F05-4CB5-A66C-3BC9ABAD5551}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{25449A9D-50FD-4AE6-9A02-DE5A0E7C6743}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17D1BF13-55A8-43BD-BB9A-25C034A6127C}C:\users\yannick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yannick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2CBED17B-378F-4146-A824-D54E7EBA6DA2}C:\users\yannick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yannick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C0127D12-46CB-43BA-AB53-AC70E1159416}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8207C15D-176C-45A7-A592-5C0F3B31F7C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8A777026-FF33-426D-BC00-AB94450CA8DE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ECBFB257-CFCC-46B7-A42F-BAF6DE90CED2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3B14CB1A-DE23-4E08-92F3-1B72D13E201C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{5DC3C982-14C3-412F-825C-88EFD161E2B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{C4D78462-F52F-4F34-AB98-4D4B353D061F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{7B5720B9-D3A7-4817-8D23-C32EFC2BF5D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{1D8790F9-A916-4508-A9A1-550A95D3CAA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{A5DCFB34-FF40-4543-8C91-BEBD5A32245B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{770813A0-18FB-427D-99BD-A47C50FF6154}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{13B59418-DBC0-4951-B6BF-DA3149580CEC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AC98A6D5-A821-42FF-B600-457C6BA7CE19}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/17/2015 04:45:34 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (8132) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/17/2015 04:45:34 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (8132) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/17/2015 04:45:24 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (8132) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/17/2015 04:45:24 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (8132) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/17/2015 04:45:13 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (8132) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/17/2015 04:45:13 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (8132) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/17/2015 04:45:03 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (8132) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/17/2015 04:45:03 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (8132) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (11/17/2015 04:44:52 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (8132) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (11/17/2015 04:44:52 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (8132) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.


Systemfehler:
=============
Error: (11/17/2015 04:56:16 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/17/2015 04:56:16 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/17/2015 04:56:16 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/17/2015 04:56:16 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/17/2015 04:56:15 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/17/2015 04:56:15 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (11/17/2015 04:35:33 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (11/17/2015 04:34:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (11/17/2015 04:34:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (11/17/2015 04:34:05 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


CodeIntegrity:
===================================
  Date: 2015-11-05 21:04:17.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:04:16.985
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:04:13.065
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.856
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.780
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.677
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:55:48.690
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:52:32.358
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:50:57.442
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:50:57.375
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 3977.98 MB
Verfügbarer physikalischer RAM: 1808.45 MB
Summe virtueller Speicher: 5449.98 MB
Verfügbarer virtueller Speicher: 2917.48 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:448.57 GB) (Free:357.84 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 283A4261)

Partition: GPT.

==================== Ende von Addition.txt ============================

yanni75 24.11.2015 16:33
was soll ich jetzt machen?

cosinus 24.11.2015 21:13
Ich hatte auf das andere Log gewartet. Du hast nur die addition.txt gepostet.
nach über einer Woche musst du neue Logs erstellen.

yanni75 05.12.2015 01:02
neu:
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:01-12-2015
durchgeführt von Yannick (2015-12-05 00:51:05)
Gestartet von C:\Users\Yannick\Desktop
Windows 10 Home (X64) (2015-09-09 04:06:51)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3730779119-3456577941-3398900789-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3730779119-3456577941-3398900789-503 - Limited - Disabled)
Gast (S-1-5-21-3730779119-3456577941-3398900789-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3730779119-3456577941-3398900789-1003 - Limited - Enabled)
Yannick (S-1-5-21-3730779119-3456577941-3398900789-1001 - Administrator - Enabled) => C:\Users\Yannick

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.08.2003 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2000 - Acer Incorporated)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.00.3009 - Acer Incorporated)
abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.09.2002.1 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.04.2004.0 - Acer Incorporated)
Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3008 - Acer Incorporated)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8115 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.07.2004 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8106.0 - Acer Incorporated)
Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3018 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8108 - Acer Incorporated)
Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.02.3005 - Acer Incorporated)
Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.02.3005 - Acer Incorporated)
Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2011.1 - Acer Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.4.0 - IObit)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2004.0 - Acer Incorporated)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.11.0 - Autodesk)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVS Audio Editor 8.0 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.0.2.501 - Online Media Technologies Ltd.)
Battle for Wesnoth 1.12.4 (HKLM-x32\...\Battle for Wesnoth 1.12.4) (Version: 1.12.4 - )
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - Playsaurus)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.5524 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4220 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver Booster 3.0 (HKLM-x32\...\Driver Booster_is1) (Version: 3.0 - IObit)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version:  - Trendy Entertainment)
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.3.0 - SEIKO EPSON CORPORATION)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WF-2530 Series Printer Uninstall (HKLM\...\EPSON WF-2530 Series) (Version:  - SEIKO EPSON Corporation)
Farm to Fork Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PhantomPDF (HKLM-x32\...\{D4DF5498-C95C-4A02-9951-725FB2D7BC0D}) (Version: 6.0.121.624 - Foxit Corporation)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Free Mouse and Keyboard Recorder 3.1.3.2 (HKLM-x32\...\{9A6EBB57-EA22-4086-81A0-8FD9843D0CA1}_is1) (Version:  - Robot-Soft.com, Inc.)
Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 11.0.0.7 - WildTangent, Inc.)
Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 11.0.0.7 - WildTangent, Inc.)
GhostMouse (HKLM-x32\...\GhostMouse_is1) (Version: Free V3.2.3 - ghost-mouse.com)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ACHTUNG
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Host App Service (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\SweetLabs_AP) (Version: 0.269.7.800 - Pokki)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden
LibreOffice 4.4.6.3 (HKLM-x32\...\{1013DB12-EC2E-455E-B5ED-BFD056DC1A99}) (Version: 4.4.6.3 - The Document Foundation)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
LUXOR Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 14.0.5120 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.226.1 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.207 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
MouseRecorder v1.0.42 (HKLM-x32\...\MouseRecorder_is1) (Version: 1.0.42 - Bartels Media GmbH)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.101.0 - Overwolf Ltd.)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.59 - WildTangent) Hidden
Pokki Start Menu (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\SweetLabs_Start_Menu) (Version: 0.269.7.800 - Pokki)
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.322 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.33 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21255 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
ReMouse Standard (HKLM-x32\...\ReMouse Standard_is1) (Version: Standard V3.5.3 - AutomaticSolution Software)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION) <==== ACHTUNG
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.51 - WildTangent) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Unity Web Player (HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.11.13 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.97 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Wiederherstellungspunkte =========================

15-11-2015 00:05:11 JRT Pre-Junkware Removal
16-11-2015 21:37:39 Revo Uninstaller's restore point - Smart Defrag 4
20-11-2015 19:54:18 Installed Software Updater
29-11-2015 21:30:48 Microsoft Visual C++ 2005 Redistributable wird installiert
02-12-2015 21:00:43 Windows Live Essentials
02-12-2015 21:05:10 DirectX wurde installiert
02-12-2015 21:11:21 WLSetup

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2015-11-13 06:38 - 00351149 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1        localhost
127.0.0.1        localhost.localdomain
255.255.255.255        broadcasthost
127.0.0.1        local127.0.0.1 goatse.cx      # More information on sites such as
127.0.0.1 www.goatse.cx  # these can be found in this article
127.0.0.1 oralse.cx      # en.wikipedia.org/wiki/List_of_shock_sites
127.0.0.1 www.oralse.cx
127.0.0.1 goatse.ca
127.0.0.1 www.goatse.ca
127.0.0.1 oralse.ca
127.0.0.1 www.oralse.ca
127.0.0.1 goat.cx
127.0.0.1 www.goat.cx
127.0.0.1 goatse.ru
127.0.0.1 www.goatse.ru127.0.0.1 1girl1pitcher.com
127.0.0.1 1girl1pitcher.org
127.0.0.1 1guy1cock.com
127.0.0.1 1man1jar.org
127.0.0.1 1man2needles.com
127.0.0.1 1priest1nun.com
127.0.0.1 2girls1cup.com
127.0.0.1 2girls1cup-free.com
127.0.0.1 2girls1cup.nl
127.0.0.1 2girls1cup.ws
127.0.0.1 2girls1finger.com
127.0.0.1 2girls1finger.org
127.0.0.1 2guys1stump.org
127.0.0.1 3guys1hammer.ws
127.0.0.1 4girlsfingerpaint.com
127.0.0.1 4girlsfingerpaint.org

Da befinden sich 11325 zusätzliche Einträge.


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0BFC0D29-2083-4F58-8E36-FE36DF8F0C09} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2014-06-09] (Acer Incorporated)
Task: {0CBD2F98-AACF-4EEA-AEF0-8F7CFAA36DD3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {0E82CBA4-4D83-4385-9864-C45D570A55C7} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-08-13] (Acer)
Task: {1C4858C7-04BD-48A9-BBDC-CE8E5D778D67} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {1E0E705A-139F-4693-9DEB-EE1163D7DC4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {20675C82-ECC1-4A25-8A00-A52728E32E8C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-27] (Microsoft Corporation)
Task: {3025552F-5ED5-493E-9B2D-BADA2CB04A78} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {35EE965A-77F2-443B-B798-B48FB2FAD365} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {4026A69F-4AF0-4EE5-921C-4C9FCB049717} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2014-12-30] (Acer Incorporate)
Task: {4393812D-6371-463A-ADE5-046128640243} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {44BB214A-B4C1-4C29-8982-B1D9F0421C70} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {69561C62-4107-42EA-9A10-4C659EE4B7E5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {6C6C3050-2846-418D-B912-083C76DF499A} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-13] (TODO: <Company name>)
Task: {780FB919-C1B4-4E56-9B9C-533BCA857C1C} - System32\Tasks\ASC8_SkipUac_Yannick => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-08-13] (IObit)
Task: {7B921026-8863-42B7-AD48-0CC3E51DAAF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {829AE9FA-A888-4544-89E7-B41A9B65ECDA} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {8BF3A334-C1E6-464D-9EAF-C4B9D576108B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {954BC225-ABB9-46C3-95C1-756FF84EC7A4} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate)
Task: {9C7C5D9F-46BE-4B55-A7E2-B050445C7520} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {A6E10883-F4A2-4825-8369-F262C7A8E81A} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2014-08-29] ()
Task: {A72FA305-1F06-4C39-A9ED-A4E5A27BFEB7} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {B1F6A3A8-3A95-46B7-BF1E-51EE995CC7E4} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-19] (Overwolf LTD)
Task: {B20C22AE-2DD8-4AFD-92BE-0B1D88DB0DB4} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate)
Task: {B9848DE3-6948-4043-92C9-F84379D18EB4} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-08-12] (IObit)
Task: {BCE2BCA7-196F-49A8-85C1-73AB17AB679A} - System32\Tasks\{13DCFC6A-D935-423C-90A8-3EE378220E6A} => pcalua.exe -a "C:\Program Files (x86)\CinePlus-1.44V05.11\Uninstall.exe" -d "C:\Program Files (x86)\CinePlus-1.44V05.11"
Task: {BEBF53A4-B42F-40FD-94CC-775B2F1EC91B} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2014-08-29] ()
Task: {C4B7053C-653F-4192-9CA2-2AFD46D7C439} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {C7AFDC23-3B52-40E5-913D-D76C01074403} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {CA65B110-E98D-4490-9A25-2356FCEEF437} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2014-06-17] (Acer Incorporated)
Task: {D624ED10-1721-435A-A015-1A69105ABC55} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E2BC537A-4CAA-4127-BFF6-884F4007CE25} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {E716763A-5FC4-4D34-B8EC-0AF9B89618F7} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2014-07-22] (Acer Incorporated)
Task: {EE2186B9-546E-494E-8103-570C4B942719} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-23] (Acer Incorporated)
Task: {EE507668-7247-44A8-A460-EC7617D814DE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-22] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Yannick\Desktop\Anderes\Booking.com.lnk -> C:\Program Files\Booking.COM\StartURL.exe () -> hxxp://www.booking.com/index.html?aid=379334 <==== ACHTUNG
ShortcutWithArgument: C:\Users\Yannick\Desktop\Anderes\Dropbox.lnk -> C:\Program Files\Dropbox\StartURL.exe () -> hxxps://www.dropbox.com/partners/acer2014/download <==== ACHTUNG
ShortcutWithArgument: C:\Users\Yannick\Desktop\Anderes\Online kaufen.lnk -> C:\Program Files\Accessory Store\StartURL.exe () -> hxxp://go.acer.com/?id=13400&model=Aspire ES1-311 <==== ACHTUNG

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-08 23:20 - 2015-09-08 23:20 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-08 23:20 - 2015-09-08 23:20 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-10-01 13:28 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 13:28 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-08-29 13:47 - 2014-07-01 22:13 - 00111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2015-10-01 13:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-10-01 13:29 - 2015-09-17 06:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 13:28 - 2015-09-17 06:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 13:28 - 2015-09-17 06:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 13:28 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-10-19 21:00 - 2015-10-19 21:00 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-10-02 21:18 - 2015-12-01 20:34 - 00142336 _____ () C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
2015-10-20 11:28 - 2015-10-20 11:28 - 00134208 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2015-09-25 17:15 - 2014-10-16 09:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-09-25 17:14 - 2013-01-15 17:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-10-02 21:05 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 02541648 _____ () C:\Program Files (x86)\Steam\video.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-10-02 21:05 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-10-02 21:05 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-10-02 21:05 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-10-28 02:12 - 2015-10-28 02:12 - 01039976 _____ () C:\Program Files (x86)\LibreOffice 4\program\libxml2.dll
2015-10-28 02:12 - 2015-10-28 02:12 - 00356968 _____ () C:\Program Files (x86)\LibreOffice 4\program\glew32.dll
2015-10-02 21:05 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-10-02 21:05 - 2015-11-10 03:44 - 00373840 _____ () C:\Program Files (x86)\Steam\steam.dll
2015-10-02 21:05 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Yannick\Desktop\Grafik\blender\b3ENDER ÜB4NG\B4rg\Burg.png
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{45397BBB-3289-4E56-815B-1D5715D45369}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{4D01C070-C492-477C-9187-378B0A91F83D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{E6FFF153-E971-4D39-90F4-6AEE0A726191}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{383CF82A-CCB2-427B-AF3D-A09F7BF7F514}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{855D1FC7-5125-4C87-8AE1-35319249DBA0}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{F9A0F3AA-D5E0-46B1-80A1-3DABBF8DCA61}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{C0D0AF6D-3067-495C-B2B7-4517B7BF53E9}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{D6C6CD86-1858-4CC8-B68F-6C6E3F83BFBB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{7AF12021-5E37-4A9D-8906-0C3584ED210E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{34F8B0A1-9CE1-46AF-BCFA-AFC0ACA24E8F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{60724B45-2A35-42C1-BCCB-D5CB471A113C}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{9158DC09-2517-4EEA-9753-03CEBFDECB2B}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{8326CEAC-5776-458B-8BBA-00AC166E86D1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{5C1F8484-A47B-4BDE-9976-97A9B1B53EF3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{33DC399F-77BE-4F5E-98EF-3CFD3CD87907}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{D9DFFE8D-61A8-412C-8CF4-742871749035}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{C7E622CD-01F7-4F73-8DFC-BAC3952CA199}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{ECEA05F2-D1BA-4355-9C3C-D99136DA12C1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{152EDD0F-5AA8-48D9-B139-C0EA84556B64}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{624A3020-225F-49C6-9AC8-44C1F96740EB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{BF08C778-CFAD-43EB-889F-FCFBACC7F2FF}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{0565A314-E03D-468D-B351-A0B654A68542}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{EE520E0F-D757-4A71-AA27-D17A450159B5}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{D029255C-B265-4906-A68C-B94EB1B744EE}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{1F21258E-9F11-4887-B816-3304C7BE40DA}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{0E61E42E-DB9A-4778-B9EC-9998B45F6775}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{D75D7061-37C1-4A87-9B02-18050FC057B2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{8FFD7BBB-0009-47A2-97CF-748B6035F31B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{7545002E-41DD-4141-9441-FE145C4886B6}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{F63B0517-E2DE-425B-AE55-EE4F78A4809B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{DFE963E3-D114-48A6-84CE-D26E132A9399}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{4703E519-AF36-40D1-8A21-032538E7F0BB}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{6B0982E2-B7CF-4ABB-A6CB-B757A20780E3}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{7567631B-D0C1-43F3-97D7-63267B78BB8B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{EF166C6C-4DF4-408A-99E8-D43862DF7787}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [TCP Query User{61B3DA7E-8F05-4CB5-A66C-3BC9ABAD5551}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{25449A9D-50FD-4AE6-9A02-DE5A0E7C6743}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17D1BF13-55A8-43BD-BB9A-25C034A6127C}C:\users\yannick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yannick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2CBED17B-378F-4146-A824-D54E7EBA6DA2}C:\users\yannick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yannick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C0127D12-46CB-43BA-AB53-AC70E1159416}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8207C15D-176C-45A7-A592-5C0F3B31F7C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8A777026-FF33-426D-BC00-AB94450CA8DE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ECBFB257-CFCC-46B7-A42F-BAF6DE90CED2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3B14CB1A-DE23-4E08-92F3-1B72D13E201C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{5DC3C982-14C3-412F-825C-88EFD161E2B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{C4D78462-F52F-4F34-AB98-4D4B353D061F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{7B5720B9-D3A7-4817-8D23-C32EFC2BF5D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{1D8790F9-A916-4508-A9A1-550A95D3CAA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{A5DCFB34-FF40-4543-8C91-BEBD5A32245B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{770813A0-18FB-427D-99BD-A47C50FF6154}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{13B59418-DBC0-4951-B6BF-DA3149580CEC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{473948C9-41A7-4175-8A03-11ADA8D3161E}] => (Allow) C:\Program Files (x86)\MouseRecorder\MouseRecorder.exe
FirewallRules: [{71C73958-9A07-4075-9FB2-E35328D0F84F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DB983AC9-FC7A-42FD-A365-C405B9A3E874}] => (Allow) LPort=2869
FirewallRules: [{C8389060-5224-427F-A973-C9BFC81C77ED}] => (Allow) LPort=1900
FirewallRules: [{E22C1066-2F2E-41CF-86F8-09751AF441DD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/04/2015 11:23:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNICK)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/04/2015 11:03:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Game.exe, Version: 1.0.0.1, Zeitstempel: 0x40d19497
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16430, Zeitstempel: 0x55c599e1
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00045a07
ID des fehlerhaften Prozesses: 0x130c4
Startzeit der fehlerhaften Anwendung: 0xGame.exe0
Pfad der fehlerhaften Anwendung: Game.exe1
Pfad des fehlerhaften Moduls: Game.exe2
Berichtskennung: Game.exe3
Vollständiger Name des fehlerhaften Pakets: Game.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Game.exe5

Error: (12/04/2015 11:01:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNICK)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/04/2015 11:00:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNICK)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/03/2015 10:50:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MicrosoftEdge.exe, Version: 11.0.10240.16590, Zeitstempel: 0x563ad824
Name des fehlerhaften Moduls: msvcrt.dll, Version: 7.0.10240.16384, Zeitstempel: 0x559f3b84
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000000c239
ID des fehlerhaften Prozesses: 0x100e4
Startzeit der fehlerhaften Anwendung: 0xMicrosoftEdge.exe0
Pfad der fehlerhaften Anwendung: MicrosoftEdge.exe1
Pfad des fehlerhaften Moduls: MicrosoftEdge.exe2
Berichtskennung: MicrosoftEdge.exe3
Vollständiger Name des fehlerhaften Pakets: MicrosoftEdge.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge.exe5

Error: (12/03/2015 09:27:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ts3client_win64.exe, Version: 3.0.18.2, Zeitstempel: 0x5628c691
Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000000074a30
ID des fehlerhaften Prozesses: 0xbe88
Startzeit der fehlerhaften Anwendung: 0xts3client_win64.exe0
Pfad der fehlerhaften Anwendung: ts3client_win64.exe1
Pfad des fehlerhaften Moduls: ts3client_win64.exe2
Berichtskennung: ts3client_win64.exe3
Vollständiger Name des fehlerhaften Pakets: ts3client_win64.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ts3client_win64.exe5

Error: (12/02/2015 09:33:11 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (49488) Der Versuch, die Datei "C:\Users\Yannick\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (12/02/2015 09:20:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: sihost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f39ab
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16430, Zeitstempel: 0x55c59f92
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x000000000002f0d2
ID des fehlerhaften Prozesses: 0x36c4
Startzeit der fehlerhaften Anwendung: 0xsihost.exe0
Pfad der fehlerhaften Anwendung: sihost.exe1
Pfad des fehlerhaften Moduls: sihost.exe2
Berichtskennung: sihost.exe3
Vollständiger Name des fehlerhaften Pakets: sihost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: sihost.exe5

Error: (12/02/2015 09:11:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (12/02/2015 09:05:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.


Systemfehler:
=============
Error: (12/04/2015 11:23:02 PM) (Source: DCOM) (EventID: 10010) (User: YANNICK)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca

Error: (12/04/2015 11:00:59 PM) (Source: DCOM) (EventID: 10001) (User: YANNICK)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXwmnqm0nvq2b90pwvr42qmtdjp7cj3w82.mca31App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mcaNicht verfügbarNicht verfügbar

Error: (12/04/2015 11:00:46 PM) (Source: DCOM) (EventID: 10001) (User: YANNICK)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXwmnqm0nvq2b90pwvr42qmtdjp7cj3w82.mca31App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mcaNicht verfügbarNicht verfügbar

Error: (12/04/2015 09:06:41 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (12/04/2015 09:06:41 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (12/04/2015 09:04:15 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (12/04/2015 09:04:14 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (12/04/2015 09:04:14 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (12/04/2015 09:04:14 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (12/04/2015 09:04:14 PM) (Source: DCOM) (EventID: 10016) (User: YANNICK)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}YannickYannickS-1-5-21-3730779119-3456577941-3398900789-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742


CodeIntegrity:
===================================
  Date: 2015-11-05 21:04:17.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:04:16.985
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:04:13.065
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.856
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.780
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 21:03:43.677
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:55:48.690
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:52:32.358
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:50:57.442
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-05 20:50:57.375
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Prozentuale Nutzung des RAM: 71%
Installierter physikalischer RAM: 3977.98 MB
Verfügbarer physikalischer RAM: 1136.27 MB
Summe virtueller Speicher: 7951.19 MB
Verfügbarer virtueller Speicher: 4312.59 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:448.57 GB) (Free:353.73 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 283A4261)

Partition: GPT.

==================== Ende von Addition.txt ============================
neu:
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:01-12-2015
durchgeführt von Yannick (Administrator) auf YANNICK (05-12-2015 00:45:22)
Gestartet von C:\Users\Yannick\Desktop
Geladene Profile: Yannick (Verfügbare Profile: Yannick)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.6.1180.0\McCSPServiceHost.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(McAfee, Inc.) C:\Program Files\mcafee\virusscan\mcods.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Spotify Ltd) C:\Users\Yannick\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIVE.EXE
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.226\SSScheduler.exe
(FK2) C:\Windows\SysWOW64\svchospt.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\soffice.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\soffice.bin
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Pokki) C:\Users\Yannick\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
() C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Alexander Roshal) C:\Program Files (x86)\WinRAR\WinRAR.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296 2015-10-20] (Realtek Semiconductor)
HKLM-x32\...\Run: [svchospt] => C:\WINDOWS\SysWOW64\svchospt.exe [913408 2014-05-03] (FK2)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Spotify Web Helper] => C:\Users\Yannick\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2344768 2015-11-23] (Spotify Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Spotify] => C:\Users\Yannick\AppData\Roaming\Spotify\Spotify.exe [8281920 2015-11-23] (Spotify Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\...\RunOnce: [Uninstall C:\Users\Yannick\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Yannick\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64"
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-11-13]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.226\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LibreOffice 4.4.lnk [2015-11-05]
ShortcutTarget: LibreOffice 4.4.lnk -> C:\Program Files (x86)\LibreOffice 4\program\quickstart.exe ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{7e0bb9d6-1a43-41f9-824a-f02fdf8aa2a2}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001 -> {0253AFB1-2C35-49D5-93CC-5C76222F903E} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-3730779119-3456577941-3398900789-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-10-28] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-10-28] (Oracle Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-11-13] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-11-13] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-11-13] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-11-13] (McAfee, Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-09-28] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-09-28] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default
FF SearchEngineOrder.3: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q=
FF SelectedSearchEngine: Google
FF DefaultSearchEngine: Google
FF Homepage: hxxp://homepage-web.com/?s=acer&m=start
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-22] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-09-28] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-22] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-10-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-10-28] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-09-28] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-08-13] ()
FF Plugin HKU\S-1-5-21-3730779119-3456577941-3398900789-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Yannick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\searchplugins\bing-.xml [2015-09-17]
FF SearchPlugin: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\searchplugins\McSiteAdvisor.xml [2015-09-17]
FF Extension: Kein Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\extensions\defsearchp@gmail.com [nicht gefunden]
FF Extension: Kein Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\extensions\deskCutv2@gmail.com [nicht gefunden]
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-12-01]
FF Extension: Bing Search - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\Extensions\bingsearch.full@microsoft.com [2015-09-05] [ist nicht signiert]
FF Extension: sidebar - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\Extensions\sidebarff@gmail.com [2015-11-06] [ist nicht signiert]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [sidebarff@gmail.com] - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\xgh6m75j.default\extensions\sidebarff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-11-20] [ist nicht signiert]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-10-28] [ist nicht signiert]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxps://www.google.de/"
CHR Profile: C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-05]
CHR Extension: (Google Docs) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-05]
CHR Extension: (Google Drive) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (YouTube) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Tabellen) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-05]
CHR Extension: (SiteAdvisor) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-09-05]
CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Shortcuts for All Google™) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf [2015-11-07]
CHR Extension: (kcnhkahnjcbndmmehfkdnkjomaanaooo) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnhkahnjcbndmmehfkdnkjomaanaooo [2015-11-07]
CHR Extension: (Skype Click to Call) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-10-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-05]
CHR Extension: (Google Mail) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-05]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-11-19]
CHR HKLM\...\Chrome\Extension: [jdiejbegdjikmehflknhkbieocmnogcf] - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf.crx [2015-11-06]
CHR HKU\S-1-5-21-3730779119-3456577941-3398900789-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-11-19]
CHR HKLM-x32\...\Chrome\Extension: [jdiejbegdjikmehflknhkbieocmnogcf] - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf.crx [2015-11-06]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 0188301449097894mcinstcleanup; C:\WINDOWS\TEMP\018830~1.EXE [883024 2015-05-04] (McAfee, Inc.)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S3 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-08-13] (WildTangent)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328624 2015-10-20] (Intel Corporation)
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S3 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [157928 2015-11-13] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [783120 2015-09-28] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-29] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.226\McCHSvc.exe [289256 2015-10-30] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe [1694152 2015-09-01] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [639456 2015-08-11] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-07-31] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [376264 2015-08-10] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-07-31] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368584 2015-09-01] (McAfee, Inc.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporate)
S3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-10-17] (Acer Incorporate)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4322440 2015-11-06] (Qualcomm Atheros Communications, Inc.)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [80768 2015-08-10] (McAfee, Inc.)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [51128 2015-10-02] (Intel Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-06] (LogMeIn Inc.)
R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-25] (REALiX(tm))
S3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [69632 2014-06-09] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-22] (Malwarebytes)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [413432 2015-08-10] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349096 2015-08-10] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [82072 2015-08-10] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [495856 2015-08-10] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [839376 2015-08-10] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [537408 2015-08-12] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [111256 2015-08-12] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37960 2015-11-13] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [244024 2015-08-10] (McAfee, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [888064 2015-10-02] (Realtek                                            )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-09-25] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-10-20] (Synaptics Incorporated)
S3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [56520 2015-09-09] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-07-23] (TuneUp Software)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-10-02] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-04 23:06 - 2015-12-04 23:06 - 00000000 ____D C:\Users\Yannick\Desktop\Pokemon Omicron 1.4 (Win)
2015-12-04 23:00 - 2015-12-04 23:00 - 00016148 _____ C:\WINDOWS\system32\YANNICK_Yannick_HistoryPrediction.bin
2015-12-04 22:51 - 2015-12-04 22:52 - 122133072 _____ C:\Users\Yannick\Desktop\Pokemon Zeta 1.4 (Win).zip
2015-12-04 22:26 - 2004-05-25 18:47 - 01757264 _____ (None) C:\Users\Yannick\Desktop\VisualBoyAdvance.exe
2015-12-04 22:26 - 2004-05-25 18:16 - 00025223 _____ C:\Users\Yannick\Desktop\NEWS
2015-12-04 22:26 - 2004-05-25 18:16 - 00008178 _____ C:\Users\Yannick\Desktop\README-win.txt
2015-12-04 22:26 - 2002-10-19 07:38 - 00018349 _____ C:\Users\Yannick\Desktop\COPYING
2015-12-04 22:25 - 2015-12-04 22:25 - 00611913 _____ C:\Users\Yannick\Desktop\VisualBoyAdvance-1.7.2.zip
2015-12-04 22:22 - 2015-12-04 22:24 - 01466656 _____ C:\Users\Yannick\Downloads\VisualBoyAdvance - CHIP-Installer.exe
2015-12-04 22:21 - 2015-12-04 22:23 - 122283772 _____ C:\Users\Yannick\Desktop\Pokemon Omicron 1.4 (Win).zip
2015-12-04 22:19 - 2015-12-04 22:19 - 52697557 _____ C:\Users\Yannick\Desktop\1.4.10 Omicron.zip
2015-12-04 21:03 - 2015-12-04 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-12-04 01:04 - 2015-12-04 01:04 - 00009398 _____ C:\Users\Yannick\Documents\Unbenannt 1.odt
2015-12-04 01:04 - 2015-12-04 01:04 - 00002678 _____ C:\Users\Yannick\Documents\Mein Film.wlmp
2015-12-02 22:05 - 2015-12-02 22:05 - 02037952 _____ C:\Users\Yannick\Desktop\Plattentektonik.mp4
2015-12-02 21:15 - 2015-12-02 21:15 - 00001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-12-02 21:15 - 2015-12-02 21:15 - 00000000 ____D C:\WINDOWS\de
2015-12-02 21:14 - 2015-12-02 21:14 - 00001451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-12-02 21:14 - 2015-12-02 21:14 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-12-02 21:12 - 2015-12-02 21:12 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-12-02 21:11 - 2015-12-02 21:14 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-12-02 21:00 - 2015-12-02 21:17 - 00000000 ____D C:\Users\Yannick\AppData\Local\Windows Live
2015-12-02 20:59 - 2015-12-02 21:00 - 01245384 _____ (Microsoft Corporation) C:\Users\Yannick\Downloads\wlsetup-web.exe
2015-12-01 18:20 - 2015-12-01 18:30 - 00000000 ____D C:\Users\Yannick\Desktop\Rechnungen
2015-11-29 21:52 - 2015-11-29 21:52 - 00394754 _____ C:\Users\Yannick\Downloads\soundboard-1.0b5-win64.ts3_plugin
2015-11-29 21:35 - 2015-12-03 22:50 - 00000167 _____ C:\Users\Yannick\Documents\ClownfishForTeamspeak.ini
2015-11-29 21:33 - 2015-11-29 21:33 - 00237268 _____ C:\Users\Yannick\Downloads\ClownfishVoiceChanger-v1.50.ts3_plugin
2015-11-29 21:30 - 2015-11-29 21:30 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Rapid Solution Software AG
2015-11-29 21:29 - 2015-11-29 21:29 - 01466656 _____ C:\Users\Yannick\Downloads\Scramby - CHIP-Installer.exe
2015-11-29 21:25 - 2015-11-29 21:25 - 00042496 _____ C:\Users\Yannick\Desktop\FUNNY VOICE.EXE
2015-11-29 21:24 - 2015-11-29 21:24 - 01466656 _____ C:\Users\Yannick\Downloads\FunnyVoice - CHIP-Installer.exe
2015-11-24 22:29 - 2015-11-24 22:29 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-23 22:44 - 2015-11-23 22:44 - 00001599 _____ C:\Users\Yannick\Desktop\MouseRecorder.exe - Shortcut.lnk
2015-11-23 22:39 - 2015-11-24 06:11 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Mouse Recorder
2015-11-23 22:39 - 2015-11-23 22:39 - 00000000 ____D C:\ProgramData\MouseRecorder
2015-11-23 22:39 - 2015-11-23 22:39 - 00000000 ____D C:\ProgramData\Mouse Recorder
2015-11-23 22:39 - 2015-11-23 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MouseRecorder
2015-11-23 22:39 - 2015-11-23 22:39 - 00000000 ____D C:\Program Files (x86)\MouseRecorder
2015-11-23 22:37 - 2015-11-23 22:37 - 01466656 _____ C:\Users\Yannick\Downloads\Mouse Recorder Premium - CHIP-Installer.exe
2015-11-20 23:18 - 2015-11-20 23:18 - 00001347 _____ C:\Users\Public\Desktop\Free Mouse and Keyboard Recorder.lnk
2015-11-20 23:18 - 2015-11-20 23:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Mouse and Keyboard Recorder
2015-11-20 23:18 - 2015-11-20 23:18 - 00000000 ____D C:\Program Files (x86)\RobotSoft
2015-11-20 23:16 - 2015-11-20 23:16 - 01466656 _____ C:\Users\Yannick\Downloads\Free Mouse and Keyboard Recorder - CHIP-Installer.exe
2015-11-20 21:57 - 2015-11-20 21:57 - 00001167 _____ C:\Users\Public\Desktop\ReMouse Standard.lnk
2015-11-20 21:57 - 2015-11-20 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReMouse Standard
2015-11-20 21:57 - 2015-11-20 21:57 - 00000000 ____D C:\Program Files (x86)\ReMouse Standard
2015-11-20 21:56 - 2015-11-20 21:56 - 01162728 _____ (AutomaticSolution Software ) C:\Users\Yannick\Downloads\ReMouseStandard-Setup.exe
2015-11-20 21:33 - 2015-11-20 21:57 - 00000000 ____D C:\Users\Yannick\Documents\AutomaticSolution Software
2015-11-20 21:33 - 2015-11-20 21:33 - 00001140 _____ C:\Users\Public\Desktop\GhostMouse Free.lnk
2015-11-20 21:33 - 2015-11-20 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GhostMouse
2015-11-20 21:33 - 2015-11-20 21:33 - 00000000 ____D C:\Program Files (x86)\GhostMouse
2015-11-20 21:32 - 2015-11-20 21:33 - 00842440 _____ (ghost-mouse.com ) C:\Users\Yannick\Downloads\GhostMouse-Setup.exe
2015-11-20 19:57 - 2015-11-20 21:36 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2015-11-20 19:57 - 2015-11-20 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2015-11-17 16:28 - 2015-12-05 00:45 - 00000000 ____D C:\Users\Yannick\Desktop\FRST-OlderVersion
2015-11-17 16:28 - 2015-11-17 16:29 - 00006388 _____ C:\Users\Yannick\Desktop\Fixlog.txt
2015-11-15 21:30 - 2015-11-15 21:30 - 00000000 ____D C:\Users\Yannick\Desktop\runtime
2015-11-15 21:13 - 2015-12-04 21:29 - 00001085 _____ C:\Users\Yannick\Desktop\nativelog.txt
2015-11-15 21:13 - 2015-11-15 22:27 - 00000000 ____D C:\Users\Yannick\Desktop\game
2015-11-15 20:46 - 2015-11-15 20:46 - 00332835 _____ C:\Users\Yannick\Desktop\Unbenannt 1.odt
2015-11-15 20:36 - 2015-11-15 22:20 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-11-15 20:34 - 2015-11-15 22:20 - 00000000 ____D C:\Users\Yannick\Desktop\mbar
2015-11-15 20:33 - 2015-11-15 20:33 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Yannick\Desktop\mbar-1.09.3.1001.exe
2015-11-15 15:08 - 2015-11-15 15:08 - 00002922 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-11-15 14:49 - 2015-11-15 14:49 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\ProductData
2015-11-15 14:49 - 2015-11-15 14:49 - 00000000 ____D C:\ProgramData\ProductData
2015-11-15 04:55 - 2015-11-15 04:55 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-15 00:16 - 2015-10-05 23:26 - 01801288 _____ (Malwarebytes) C:\Users\Yannick\Desktop\JRT.exe
2015-11-15 00:15 - 2015-11-15 00:16 - 01798976 _____ (Malwarebytes) C:\Users\Yannick\Desktop\JRT (1).exe
2015-11-15 00:03 - 2015-11-15 00:04 - 01798976 _____ (Malwarebytes) C:\Users\Yannick\Downloads\JRT.exe
2015-11-13 06:38 - 2015-11-13 06:38 - 00001983 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2015-11-13 06:38 - 2015-11-13 06:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-11-13 06:38 - 2015-11-13 06:38 - 00000000 ____D C:\Program Files\McAfee Security Scan
2015-11-12 16:05 - 2015-11-27 00:33 - 00000000 ____D C:\Users\Yannick\Desktop\data
2015-11-12 16:04 - 2015-11-12 16:04 - 00889478 _____ C:\Users\Yannick\Downloads\Golem.exe.zip
2015-11-10 22:52 - 2015-11-10 22:53 - 07942416 _____ (IObit ) C:\Users\Yannick\Downloads\smart-defrag-setup (1).exe
2015-11-10 22:33 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-10 22:33 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-10 22:33 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-10 22:33 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-10 22:33 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-10 22:33 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-10 22:33 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-10 22:33 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-10 22:33 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-10 22:33 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-10 22:33 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-10 22:33 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-10 22:33 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-10 22:33 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-10 22:33 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-10 22:33 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-10 22:33 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-10 22:33 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-10 22:33 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-10 22:33 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-10 22:33 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-10 22:33 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-10 22:33 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-10 22:33 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-10 22:33 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-10 22:33 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-10 22:33 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-10 22:33 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-10 22:33 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-10 22:33 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-10 22:33 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-10 22:33 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-10 22:33 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-10 22:33 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-10 22:33 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-10 22:33 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-10 22:33 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-10 22:33 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-10 22:33 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-10 22:33 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-10 22:33 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-10 22:33 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-10 22:33 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-10 22:33 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-10 22:33 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-10 22:33 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-10 22:33 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-10 22:33 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-10 22:33 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-10 22:33 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-10 22:33 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-10 22:33 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-10 22:33 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-10 18:14 - 2015-11-10 18:14 - 00001299 _____ C:\Users\Yannick\Desktop\mbam1.txt
2015-11-09 21:35 - 2015-11-24 13:05 - 00000000 ____D C:\Users\Yannick\Desktop\DO krieg
2015-11-09 21:34 - 2015-11-09 21:34 - 00001762 _____ C:\Users\Yannick\Desktop\Lightshot.lnk
2015-11-08 23:24 - 2015-11-08 23:24 - 00001939 _____ C:\Users\Yannick\Desktop\Battle for Wesnoth.lnk
2015-11-08 23:23 - 2015-11-08 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle for Wesnoth 1.12.4
2015-11-08 23:19 - 2015-11-08 23:22 - 00000000 ____D C:\Program Files (x86)\Battle for Wesnoth 1.12.4
2015-11-08 23:07 - 2015-11-08 23:18 - 357105928 _____ C:\Users\Yannick\Downloads\wesnoth-1.12.4a-win32.exe
2015-11-08 20:43 - 2015-11-08 20:43 - 00042213 _____ C:\Users\Yannick\Desktop\AdwCleaner[C1].txt
2015-11-08 20:27 - 2015-11-08 20:30 - 00000000 ____D C:\AdwCleaner
2015-11-08 20:24 - 2015-11-08 20:25 - 01712128 _____ C:\Users\Yannick\Desktop\adwcleaner_5.019.exe
2015-11-08 20:22 - 2015-11-12 15:54 - 00025232 _____ C:\Users\Yannick\Desktop\mbam.txt
2015-11-08 18:54 - 2015-11-08 18:54 - 00001224 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-11-08 18:49 - 2015-11-22 18:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-08 18:27 - 2015-11-15 20:35 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-08 18:27 - 2015-11-08 18:27 - 00001179 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-08 18:27 - 2015-11-08 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-08 18:27 - 2015-11-08 18:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-08 18:27 - 2015-11-08 18:27 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-08 18:27 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-08 18:27 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-08 18:25 - 2015-11-08 18:53 - 42996768 _____ C:\Users\Yannick\Downloads\Firefox Setup 42.0.exe
2015-11-08 18:23 - 2015-11-08 18:27 - 22908888 _____ (Malwarebytes ) C:\Users\Yannick\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-08 18:04 - 2015-11-08 18:05 - 07942416 _____ (IObit ) C:\Users\Yannick\Downloads\smart-defrag-setup.exe
2015-11-08 17:27 - 2015-11-08 17:27 - 00001345 _____ C:\Users\Yannick\Desktop\Revo Uninstaller.lnk
2015-11-08 17:27 - 2015-11-08 17:27 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-11-08 17:27 - 2015-11-08 17:27 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-11-08 17:24 - 2015-11-08 17:26 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Yannick\Downloads\revosetup95.exe
2015-11-08 10:31 - 2015-11-17 22:28 - 00047228 _____ C:\Users\Yannick\Desktop\Addition.txt
2015-11-08 10:28 - 2015-12-05 00:48 - 00028563 _____ C:\Users\Yannick\Desktop\FRST.txt
2015-11-08 10:27 - 2015-12-05 00:45 - 02350080 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2015-11-08 10:27 - 2015-12-05 00:45 - 00000000 ____D C:\FRST
2015-11-08 10:26 - 2015-11-08 10:26 - 02198528 _____ (Farbar) C:\Users\Yannick\Downloads\FRST64.exe
2015-11-07 22:45 - 2015-11-07 22:45 - 00000000 ____D C:\Program Files (x86)\55688db6-684b-430d-9112-c6e18ce39df6
2015-11-07 22:17 - 2015-11-15 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-07 22:15 - 2015-11-07 22:15 - 00000000 ____D C:\Users\Yannick\AppData\Local\Total Extension
2015-11-07 18:57 - 2015-11-07 18:57 - 01674929 _____ (TeamExtreme) C:\Users\Yannick\Downloads\Minecraft Cracked Launcher (1).jar
2015-11-07 18:08 - 2015-11-07 18:08 - 00772016 _____ (Reimage®) C:\Users\Yannick\Downloads\ReimageRepair (1).exe
2015-11-06 15:57 - 2015-11-06 15:57 - 00003360 _____ C:\WINDOWS\System32\Tasks\{13DCFC6A-D935-423C-90A8-3EE378220E6A}
2015-11-06 15:52 - 2015-11-08 17:48 - 00000000 ____D C:\Users\Yannick\AppData\Local\Mart Download
2015-11-05 23:19 - 2015-11-05 23:19 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\LibreOffice
2015-11-05 23:11 - 2015-11-05 23:11 - 00001219 _____ C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-11-05 23:11 - 2015-11-05 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-11-05 23:09 - 2015-11-05 23:11 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2015-11-05 23:07 - 2015-11-05 23:07 - 00000000 ____D C:\Users\Yannick\Desktop\Schule
2015-11-05 23:00 - 2015-11-05 23:06 - 223985664 _____ C:\Users\Yannick\Downloads\LibreOffice_4.4.6_Win_x86.msi
2015-11-05 22:55 - 2015-11-05 22:55 - 00001040 _____ C:\Users\Yannick\Desktop\Steam (2).lnk
2015-11-05 22:55 - 2015-11-05 22:55 - 00000983 _____ C:\Users\Yannick\Desktop\TeamSpeak 3 Client (2).lnk
2015-11-05 22:55 - 2015-11-05 22:55 - 00000222 _____ C:\Users\Yannick\Desktop\Clicker Heroes (2).url
2015-11-05 22:55 - 2015-11-05 22:55 - 00000220 _____ C:\Users\Yannick\Desktop\Sid Meier's Civilization V (2).url
2015-11-05 22:54 - 2015-11-05 22:54 - 00002262 _____ C:\Users\Yannick\Desktop\Advanced SystemCare 8 (2).lnk
2015-11-05 22:53 - 2015-11-05 22:53 - 00002715 _____ C:\Users\Yannick\Desktop\Skype (2).lnk
2015-11-05 22:51 - 2015-11-15 17:07 - 00000000 ____D C:\Users\Yannick\Desktop\Anderes
2015-11-05 22:50 - 2015-11-05 22:50 - 00000000 ____D C:\Users\Yannick\Desktop\Grafik
2015-11-05 22:49 - 2015-11-05 22:51 - 00000000 ____D C:\Users\Yannick\Desktop\Tools
2015-11-05 22:48 - 2015-11-09 21:37 - 00000000 ____D C:\Users\Yannick\Desktop\Spiele
2015-11-05 18:49 - 2015-11-05 21:54 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Opera Software
2015-11-05 18:49 - 2015-11-05 21:54 - 00000000 ____D C:\Users\Yannick\AppData\Local\Opera Software
2015-11-05 18:09 - 2015-08-24 00:01 - 00351149 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-05 00:47 - 2015-09-05 15:33 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-05 00:38 - 2015-10-02 20:56 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-04 22:38 - 2015-09-08 22:37 - 00000000 ____D C:\Users\Yannick
2015-12-04 21:06 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-04 21:06 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-04 21:03 - 2015-09-05 15:31 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{58127AFD-D2A0-495B-962C-C711DD258B8B}
2015-12-04 21:02 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-12-04 21:01 - 2015-09-05 15:29 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Spotify
2015-12-04 21:01 - 2015-09-05 15:29 - 00000000 ____D C:\Users\Yannick\AppData\Local\Spotify
2015-12-04 21:01 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-04 21:00 - 2015-09-05 15:16 - 00000000 __SHD C:\Users\Yannick\IntelGraphicsProfiles
2015-12-04 01:04 - 2015-09-05 15:46 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\TS3Client
2015-12-03 23:35 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-03 23:33 - 2015-09-10 18:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\vlc
2015-12-03 22:46 - 2015-09-10 18:10 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\dvdcss
2015-12-03 00:10 - 2014-08-29 13:48 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-12-02 21:29 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-12-02 21:12 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-01 18:38 - 2015-09-08 22:55 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-01 18:38 - 2015-07-10 17:34 - 00772342 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-01 18:38 - 2015-07-10 17:34 - 00154170 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-01 18:21 - 2015-09-10 16:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Foxit Software
2015-12-01 15:51 - 2015-09-05 15:16 - 00000000 ____D C:\Users\Yannick\AppData\Local\VirtualStore
2015-11-27 18:43 - 2015-10-11 16:10 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.technic
2015-11-27 15:48 - 2015-09-05 15:42 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.minecraft
2015-11-24 22:28 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-24 22:28 - 2015-07-10 10:05 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2015-11-24 22:06 - 2015-09-05 15:46 - 00000000 ____D C:\Users\Yannick\AppData\Local\Overwolf
2015-11-20 21:35 - 2015-09-06 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-11-18 18:59 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-17 16:29 - 2015-09-10 21:15 - 00000000 ____D C:\Users\Yannick\AppData\LocalLow\Temp
2015-11-16 21:44 - 2015-09-25 17:14 - 00000000 ____D C:\Program Files (x86)\IObit
2015-11-15 05:16 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-15 05:03 - 2015-09-08 23:26 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-15 04:59 - 2015-09-05 16:31 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Skype
2015-11-13 07:08 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-13 07:04 - 2015-09-05 20:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-10 22:46 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\SKB
2015-11-10 22:45 - 2015-10-06 17:31 - 00000000 ____D C:\Program Files (x86)\Audacity
2015-11-09 17:30 - 2015-09-05 15:16 - 00000000 ____D C:\Users\Yannick\AppData\Local\Packages
2015-11-08 23:24 - 2015-09-16 18:13 - 00000000 ____D C:\Users\Yannick\Documents\My Games
2015-11-08 22:59 - 2015-09-05 21:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-08 21:15 - 2015-09-08 17:37 - 00000000 ____D C:\Users\Yannick\AppData\Local\ElevatedDiagnostics
2015-11-08 20:53 - 2015-09-25 17:14 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\IObit
2015-11-08 20:53 - 2015-09-25 17:14 - 00000000 ____D C:\ProgramData\IObit
2015-11-08 20:30 - 2015-09-05 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-08 20:10 - 2015-09-05 16:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-08 18:54 - 2015-09-18 20:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 18:54 - 2015-09-05 16:22 - 00001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-06 23:29 - 2015-07-10 13:20 - 00319616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-06 16:13 - 2015-09-25 17:51 - 04322440 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2015-11-05 22:52 - 2015-09-10 15:37 - 00000000 ____D C:\Users\Yannick\Desktop\Schriftarten
2015-11-05 22:38 - 2015-10-05 15:46 - 00000000 ____D C:\Users\Yannick\AppData\Local\Sony
2015-11-05 21:18 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-11-05 19:59 - 2014-08-29 13:48 - 00000000 ____D C:\ProgramData\McAfee
2015-11-05 18:47 - 2015-09-05 15:31 - 00000000 __SHD C:\Users\Yannick\AppData\Local\EmieUserList
2015-11-05 18:46 - 2015-09-05 15:31 - 00000000 __SHD C:\Users\Yannick\AppData\Local\EmieSiteList
2015-11-05 17:52 - 2015-09-05 15:13 - 00000000 ____D C:\Users\Yannick\AppData\Local\SweetLabs App Platform

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-10-31 20:20 - 2015-10-31 20:20 - 0003420 _____ () C:\Users\Yannick\AppData\Local\recently-used.xbel
2015-10-17 21:57 - 2015-10-17 21:57 - 0000003 _____ () C:\Users\Yannick\AppData\Local\updater.log
2015-10-17 21:57 - 2015-10-17 21:57 - 0000424 _____ () C:\Users\Yannick\AppData\Local\UserProducts.xml
2015-09-08 22:32 - 2015-09-08 22:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-15 04:55

==================== Ende von FRST.txt ============================


Alle Zeitangaben in WEZ +1. Es ist jetzt 18:47 Uhr.
Seite 3 von 4 12 3 4
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131