Hallo schrauber!
ESET: Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=cff82ba5bdb5d4499d780ed4720e59ca
# end=init
# utc_time=2015-09-23 01:26:56
# local_time=2015-09-23 03:26:56 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.0.6002 NT Service Pack 2
Update Init
Update Download
Update Finalize
Updated modules version: 25901
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=cff82ba5bdb5d4499d780ed4720e59ca
# end=updated
# utc_time=2015-09-23 01:29:31
# local_time=2015-09-23 03:29:31 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.0.6002 NT Service Pack 2
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=cff82ba5bdb5d4499d780ed4720e59ca
# engine=25901
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-09-23 03:40:18
# local_time=2015-09-23 05:40:18 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode_1='McAfee VirusScan'
# compatibility_mode=5121 16776893 100 82 202600503 205180620 0 0
# compatibility_mode_1='Microsoft Security Essentials'
# compatibility_mode=5895 16777213 100 100 11478848 137204028 0 0
# scanned=361730
# found=4
# cleaned=0
# scan_time=7847
sh=8992F72873D09212597E582A16F8D9BC60E6A22A ft=1 fh=e21391a34e842ffc vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\DVDVideoSoft\TB\ConduitInstaller.exe.vir"
sh=16068B8977B4DC562AE782D91BC009472667E331 ft=1 fh=c3b5a87b7d152749 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\BozKurT\AppData\Local\Temp\OCS\ocs_v71a.exe.vir"
sh=100993E5BDF2AB08262B8BE5AEF2C60D6CC41D52 ft=1 fh=d728aee591b026ab vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir"
sh=81E4D6C73D512607C41C1A558BFEDC122014254D ft=0 fh=0000000000000000 vn="INF/Autorun.gen Wurm" ac=I fn="C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Trial Creator\Export\SoftDMA_Trial\Autorun.inf"
SecurityCheck: Code:
Results of screen317's Security Check version 1.008
Windows Vista Service Pack 2 x64 (UAC is enabled)
Internet Explorer 9
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
McAfee VirusScan
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
McAfee SiteAdvisor
Java version 32-bit out of Date!
Adobe Flash Player 19.0.0.185
Adobe Reader 8 Adobe Reader out of Date!
Adobe Reader 10.1.15 Adobe Reader out of Date!
Mozilla Firefox 38.0.5 Firefox out of Date!
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
McAfee VIRUSS~1 mcshield.exe
McAfee VIRUSS~1 mcsysmon.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
FRST: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
durchgeführt von BozKurT (Administrator) auf BOZKURT-PC (23-09-2015 18:10:04)
Gestartet von C:\Users\BozKurT\Desktop
Geladene Profile: BozKurT (Verfügbare Profile: BozKurT & UpdatusUser)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
() C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
(Egis Incorporated) C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSLoader.exe
(Realtek Semiconductor) C:\Windows\RAVCpl64.exe
(CyberLink) C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe
() C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Threat Expert Ltd.) C:\Program Files (x86)\PC Tools Security\BDT\FGuard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Threat Expert Ltd.) C:\Program Files (x86)\PC Tools Security\BDT\BDTUpdateService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
(shbox.de) C:\Program Files (x86)\FreePDF_XP\fpassist.exe
( ) C:\Windows\System32\dlcdcoms.exe
(Egis Incorporated) C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files (x86)\Common Files\McAfee\McProxy\McProxy.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\Mcshield.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\MPF\MpfSrv.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\MSK\msksrver.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(NewTech InfoSystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
() C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Egis inc.) C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\MSC\mcmscsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(McAfee, Inc.) C:\Program Files (x86)\Common Files\McAfee\MNA\McNASvc.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Windows\SysWOW64\conime.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan\mcsysmon.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\MPF\MC\MpfAlert.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Acer Empowering Technology Monitor] => C:\Program Files\Acer\Empowering Technology\SysMonitor.exe [319488 2008-08-19] ()
HKLM\...\Run: [EmpoweringTechnology] => C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe [323584 2008-08-19] ()
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe [561200 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RAVCpl64.exe [6456352 2008-08-19] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1833504 2008-08-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ProductReg] => C:\Program Files\Acer\WR_PopUp\ProductReg.exe [6144 2008-10-14] (Acer)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM-x32\...\Run: [mcagent_exe] => C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe [645328 2009-01-08] (McAfee, Inc.)
HKLM-x32\...\Run: [PCMMediaSharing] => C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [204908 2008-05-20] ()
HKLM-x32\...\Run: [BkupTray] => C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672 2008-04-25] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [PCTools FGuard] => C:\Program Files (x86)\PC Tools Security\BDT\FGuard.exe [247760 2011-04-12] (Threat Expert Ltd.)
HKLM-x32\...\Run: [FreePDF Assistant] => C:\Program Files (x86)\FreePDF_XP\fpassist.exe [371200 2011-02-23] (shbox.de)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-3668395413-3215351660-3596499305-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2009-03-18] (Google Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\PSDProtect.dll [2008-07-29] (Egis Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BozKurT\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-07-29] (Egis Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2009-10-31]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6F21192C-801A-4D88-85E3-3960D83C1647}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=1&o=vp64&d=1006&m=aspire_x1700
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=1&o=vp64&d=1006&m=aspire_x1700
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=1&o=vp64&d=1006&m=aspire_x1700
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3668395413-3215351660-3596499305-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3668395413-3215351660-3596499305-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
URLSearchHook: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 - PC Tools Browser Guard - {472734EA-242A-422b-ADF8-83D1E48CC825} - Keine Datei
URLSearchHook: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 - PC Tools Browser Guard - {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files (x86)\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
SearchScopes: HKLM -> DefaultScope Wert fehlt
SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 -> DefaultScope {C657300E-A21D-4D23-AD70-7D6194B2FE6F} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=A011DE662&p={SearchTerms}
SearchScopes: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7GGLL_de
SearchScopes: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 -> {C657300E-A21D-4D23-AD70-7D6194B2FE6F} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=A011DE662&p={SearchTerms}
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\Program Files (x86)\McAfee\MSK\mskapbho64.dll [2009-01-09] ()
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> c:\Program Files\McAfee\VirusScan\scriptsn.dll [2009-03-25] (McAfee, Inc.)
BHO: ShowBarObj Class -> {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} -> C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll [2008-07-29] (Egis)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\Program Files (x86)\McAfee\MSK\mskapbho.dll [2009-01-09] ()
BHO-x32: PC Tools Browser Guard BHO -> {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} -> C:\Program Files (x86)\PC Tools Security\BDT\PCTBrowserDefender.dll [2011-04-12] (Threat Expert Ltd.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll Keine Datei
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll [2009-03-25] (McAfee, Inc.)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll Keine Datei
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKLM-x32 - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
Toolbar: HKLM-x32 - PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\PC Tools Security\BDT\PCTBrowserDefender.dll [2011-04-12] (Threat Expert Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-3668395413-3215351660-3596499305-1000 -> PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - Keine Datei
DPF: HKLM-x32 {5C051655-FCD5-4969-9182-770EA5AA5565} hxxp://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-15] (McAfee, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default
FF SearchEngineOrder.1: Sichere Suche
FF Homepage: about:home
FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=mcafee&type=A111DE662&p=
FF NetworkProxy: "http", "localhost"
FF NetworkProxy: "http_port", 9666
FF NetworkProxy: "socks", "localhost"
FF NetworkProxy: "socks_port", 9050
FF NetworkProxy: "socks_remote_dns", true
FF NetworkProxy: "ssl", "localhost"
FF NetworkProxy: "ssl_port", 9666
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-22] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2009-04-15] (DivX,Inc.)
FF Plugin-x32: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-04-15] (DivX, Inc)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @unity3d.com/UnityPlayer -> C:\Program Files (x86)\Unity\WebPlayer\loader\npUnity3D32.dll [2010-06-12] (Unity Technologies ApS)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2013-07-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2013-07-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2013-07-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2013-07-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2013-07-11] (Apple Inc.)
FF Extension: YouTube Unblocker - C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default\Extensions\youtubeunblocker@unblocker.yt [2015-08-04]
FF Extension: UltraSurf Firefox Tool - C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default\Extensions\{5B52016C-D097-4aec-BE61-9F129D8FDDBA} [2009-08-28]
FF Extension: 1-Click Dailymotion Video Downloader - C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default\Extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi [2013-08-18]
FF Extension: MPEG4Plugin - C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default\Extensions\{4901eb44-5cb1-4eb9-b0aa-2357bcce2942}.xpi [2014-12-04]
FF Extension: {7f640839-0d9f-4fa5-91b7-5ae9ea4d8ce5} - C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default\Extensions\{7f640839-0d9f-4fa5-91b7-5ae9ea4d8ce5}.xpi [2014-11-30]
FF Extension: Adblock Plus - C:\Users\BozKurT\AppData\Roaming\Mozilla\Firefox\Profiles\bah1vfjy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-25]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: Kein Name - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-09-17]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-03-18]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2009-10-31]
FF HKLM-x32\...\Firefox\Extensions: [{cb84136f-9c44-433a-9048-c5cd9df1dc16}] - C:\Program Files (x86)\PC Tools Security\BDT\Firefox
FF Extension: Browser Defender Toolbar - C:\Program Files (x86)\PC Tools Security\BDT\Firefox [2011-04-17]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKU\S-1-5-21-3668395413-3215351660-3596499305-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR Profile: C:\Users\BozKurT\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2010-06-12]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2010-06-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Acer HomeMedia Connect Service; C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [269448 2008-05-20] (CyberLink) [Datei ist nicht signiert]
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-04-09] (Adobe Systems) [Datei ist nicht signiert]
R2 Browser Defender Update Service; C:\Program Files (x86)\PC Tools Security\BDT\BDTUpdateService.exe [337872 2011-04-12] (Threat Expert Ltd.)
R2 BUNAgentSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [Datei ist nicht signiert]
R2 dlcd_device; C:\Windows\system32\dlcdcoms.exe [566768 2007-01-17] ( )
R2 eDataSecurity Service; C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [500784 2008-07-29] (Egis Incorporated)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-08-19] () [Datei ist nicht signiert]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [154856 2015-09-15] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files (x86)\McAfee\MSC\mcmscsvc.exe [797864 2009-01-08] (McAfee, Inc.)
R2 McNASvc; c:\Program Files (x86)\Common Files\McAfee\MNA\McNASvc.exe [2482848 2009-01-09] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [696848 2009-04-01] (McAfee, Inc.)
R2 McProxy; c:\Program Files (x86)\Common Files\McAfee\McProxy\McProxy.exe [359952 2009-01-09] (McAfee, Inc.)
R2 McShield; C:\Program Files\McAfee\VirusScan\Mcshield.exe [153920 2009-03-25] (McAfee, Inc.)
R3 McSysmon; C:\Program Files (x86)\McAfee\VirusScan\mcsysmon.exe [606736 2009-03-24] (McAfee, Inc.)
R2 MpfService; C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe [884360 2009-03-19] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files (x86)\McAfee\MSK\MskSrver.exe [26640 2009-01-09] (McAfee, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4466688 2007-11-08] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 NTIBackupSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [45056 2008-04-25] (NewTech InfoSystems, Inc.) [Datei ist nicht signiert]
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-25] () [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [241734 2008-06-13] () [Datei ist nicht signiert]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
S1 Beep; kein ImagePath
S3 camdrv42; C:\Windows\System32\DRIVERS\camdrv42.sys [1533952 2007-04-23] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-12-30] () [Datei ist nicht signiert]
U4 Iteidelr; kein ImagePath
S3 ITEIO.SYS; c:\Windows\System32\drivers\ITEIO.sys [13144 2008-02-25] (Windows (R) Codename Longhorn DDK provider) [Datei ist nicht signiert]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [102600 2009-03-25] (McAfee, Inc.)
R1 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [307400 2009-03-25] (McAfee, Inc.)
S3 mferkdk; C:\Windows\System32\drivers\mferkdk.sys [40904 2009-03-25] (McAfee, Inc.)
R3 mfesmfk; C:\Windows\System32\drivers\mfesmfk.sys [49480 2009-03-25] (McAfee, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R1 MPFP; C:\Windows\System32\Drivers\Mpfp.sys [176144 2008-10-23] (McAfee, Inc.)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 nmwcdx64; C:\Windows\System32\drivers\ccdcmbx64.sys [18432 2008-05-02] (Nokia)
R0 PCTCore; C:\Windows\System32\drivers\PCTCore64.sys [282440 2011-03-10] (PC Tools)
R0 pctDS; C:\Windows\System32\drivers\pctDS64.sys [452872 2010-06-29] (PC Tools)
R0 pctEFA; C:\Windows\System32\drivers\pctEFA64.sys [816016 2010-07-16] (PC Tools)
R0 PSDFilter; C:\Windows\System32\DRIVERS\psdfilter.sys [22064 2008-07-29] (Egis Incorporated)
R2 PSDNServ; C:\Windows\System32\DRIVERS\PSDNServ.sys [21040 2008-07-29] (Egis Incorporated)
R2 psdvdisk; C:\Windows\System32\DRIVERS\PSDVdisk.sys [60976 2008-07-29] (Egis Incorporated)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [8704 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-23 18:02 - 2015-09-23 18:02 - 00852704 _____ C:\Users\BozKurT\Desktop\SecurityCheck.exe
2015-09-23 15:22 - 2015-09-23 15:23 - 02870984 _____ (ESET) C:\Users\BozKurT\Desktop\esetsmartinstaller_deu.exe
2015-09-21 12:23 - 2015-09-21 12:23 - 00001390 _____ C:\Users\BozKurT\Desktop\JRT.txt
2015-09-21 12:15 - 2015-09-21 12:15 - 01798976 _____ (Malwarebytes) C:\Users\BozKurT\Desktop\JRT.exe
2015-09-21 12:04 - 2015-09-21 12:19 - 00000027 _____ C:\Windows\SysWOW64\MPFServiceFailureCount.txt
2015-09-21 11:57 - 2015-09-21 11:57 - 01662976 _____ C:\Users\BozKurT\Desktop\AdwCleaner_5.008.exe
2015-09-21 11:54 - 2015-09-21 11:54 - 00002354 _____ C:\Users\BozKurT\Desktop\mbam.txt
2015-09-21 11:01 - 2015-09-21 11:53 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-21 11:01 - 2015-09-21 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-21 11:01 - 2015-09-21 11:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-21 11:01 - 2015-09-21 11:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-21 11:01 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-21 11:01 - 2015-06-18 08:41 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-09-21 11:01 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-09-21 11:00 - 2015-09-21 11:00 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\BozKurT\Desktop\mbam-setup-2.1.8.1057(1).exe
2015-09-21 10:55 - 2015-09-21 10:55 - 00321848 _____ (Malwarebytes Corporation) C:\Users\BozKurT\Downloads\mbam-clean-2.1.1.1001.exe
2015-09-17 15:47 - 2015-09-17 15:47 - 00000000 ____D C:\Users\BozKurT\Searches\Documents\Eigene Scans
2015-09-17 11:31 - 2015-09-17 11:31 - 00028035 _____ C:\ComboFix.txt
2015-09-17 10:59 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-17 10:59 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-17 10:59 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-17 10:59 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-17 10:59 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-17 10:59 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-17 10:59 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-17 10:59 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-17 10:54 - 2015-09-17 11:32 - 00000000 ____D C:\Qoobox
2015-09-17 10:53 - 2015-09-17 11:28 - 00000000 ____D C:\Windows\erdnt
2015-09-17 10:53 - 2015-09-17 10:59 - 00000000 ____D C:\32788R22FWJFW
2015-09-17 10:46 - 2015-09-17 10:46 - 05635119 ____R (Swearware) C:\Users\BozKurT\Desktop\ComboFix.exe
2015-09-16 23:45 - 2015-09-23 18:09 - 00000000 ____D C:\Users\BozKurT\Desktop\FRST-OlderVersion
2015-09-16 18:18 - 2015-09-16 18:21 - 00000000 ____D C:\Users\BozKurT\Desktop\ImageTransfer_2015-09-16_18-16
2015-09-16 00:38 - 2015-09-16 00:38 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\BozKurT\Desktop\tdsskiller.exe
2015-09-15 22:44 - 2015-09-16 00:36 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-15 22:40 - 2015-09-16 00:36 - 00000000 ____D C:\Users\BozKurT\Desktop\mbar
2015-09-15 22:35 - 2015-09-15 22:36 - 16563352 _____ (Malwarebytes Corp.) C:\Users\BozKurT\Desktop\mbar-1.09.3.1001.exe
2015-09-14 16:31 - 2015-09-14 17:30 - 00050976 _____ C:\Users\BozKurT\Desktop\Addition.txt
2015-09-14 16:24 - 2015-09-23 18:10 - 00033397 _____ C:\Users\BozKurT\Desktop\FRST.txt
2015-09-14 14:51 - 2015-09-23 18:09 - 02192384 _____ (Farbar) C:\Users\BozKurT\Desktop\FRST64.exe
2015-09-14 10:13 - 2015-07-10 16:31 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-14 10:13 - 2015-07-10 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-14 09:57 - 2015-08-13 16:36 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-09-14 09:57 - 2015-08-13 16:36 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-09-14 09:54 - 2015-09-02 23:26 - 01875968 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-14 09:54 - 2015-09-02 23:26 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-14 09:54 - 2015-09-02 23:26 - 01402368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-14 09:54 - 2015-09-02 23:26 - 01253376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-13 15:58 - 2015-08-17 19:56 - 17890304 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-13 15:58 - 2015-08-17 19:53 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-13 15:58 - 2015-08-17 19:49 - 10936832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-13 15:58 - 2015-08-17 19:48 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-13 15:58 - 2015-08-17 19:47 - 02158080 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-13 15:58 - 2015-08-17 19:47 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-13 15:58 - 2015-08-17 19:47 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-13 15:58 - 2015-08-17 19:46 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-13 15:58 - 2015-08-17 19:46 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-13 15:58 - 2015-08-17 19:46 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-09-13 15:58 - 2015-08-17 19:46 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-09-13 15:58 - 2015-08-17 19:46 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-09-13 15:58 - 2015-08-17 19:18 - 01814016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-13 15:58 - 2015-08-17 19:17 - 12388352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-13 15:58 - 2015-08-17 19:14 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-13 15:58 - 2015-08-17 19:13 - 09751040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-13 15:58 - 2015-08-17 19:12 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-13 15:58 - 2015-08-17 19:12 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-13 15:58 - 2015-08-17 19:11 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-13 15:58 - 2015-08-17 19:11 - 00422400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 01804288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00718848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-13 15:58 - 2015-08-17 19:10 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-09-13 15:58 - 2015-08-17 19:10 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-09-13 15:58 - 2015-08-17 19:10 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-09-13 15:58 - 2015-08-17 19:09 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-12 20:50 - 2015-09-12 20:50 - 00000000 ____D C:\ProgramData\AVG
2015-09-12 15:42 - 2015-09-12 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java(218)
2015-09-09 12:34 - 2015-08-05 17:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 12:33 - 2015-09-02 23:26 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-09 12:33 - 2015-09-02 23:25 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 12:33 - 2015-09-02 22:17 - 02797056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 12:33 - 2015-09-02 22:16 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 12:33 - 2015-09-02 21:54 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 13:50 - 2015-09-08 13:50 - 00000000 ____D C:\Users\BozKurT\AppData\Roaming\Sun
2015-09-08 13:45 - 2015-09-08 13:45 - 00795720 _____ C:\Users\BozKurT\AppData\Local\dd_VC_MinRed_MSI4B14.txt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-23 18:10 - 2014-04-24 15:30 - 00000000 ____D C:\FRST
2015-09-23 18:01 - 2012-06-30 14:14 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-23 17:31 - 2010-02-04 20:11 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-23 17:12 - 2006-11-02 17:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-23 17:12 - 2006-11-02 17:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-23 15:26 - 2008-01-21 13:10 - 01758728 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-23 15:26 - 2008-01-21 13:09 - 00746138 _____ C:\Windows\system32\perfh007.dat
2015-09-23 15:26 - 2008-01-21 13:09 - 00177920 _____ C:\Windows\system32\perfc007.dat
2015-09-23 15:25 - 2006-10-10 02:59 - 01239323 _____ C:\Windows\WindowsUpdate.log
2015-09-23 15:13 - 2008-10-31 21:05 - 01819216 _____ C:\Users\Public\eDSMSNLoader32.log
2015-09-23 15:13 - 2008-10-31 20:50 - 00230843 _____ C:\Windows\system32\Config.MPF
2015-09-23 15:12 - 2013-10-11 20:04 - 07509604 _____ C:\Windows\PFRO.log
2015-09-23 15:12 - 2010-02-04 20:11 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-23 15:12 - 2009-11-16 20:16 - 00000000 ____D C:\ProgramData\TEMP
2015-09-23 15:12 - 2008-10-31 21:00 - 00000147 _____ C:\Windows\SysWOW64\agent.log
2015-09-23 15:12 - 2008-10-31 20:20 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-23 15:12 - 2006-11-02 17:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-23 15:12 - 2006-10-10 03:06 - 00000000 _____ C:\Windows\system32\LogConfigTemp.xml
2015-09-22 22:13 - 2006-11-02 17:42 - 00032554 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-22 14:01 - 2012-06-30 14:14 - 00003736 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-09-22 14:01 - 2012-06-09 15:48 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 14:01 - 2011-08-21 13:57 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-22 12:01 - 2015-02-16 20:29 - 00003706 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4D2CA3CA-A550-409B-BBD7-2167104BBC95}
2015-09-21 12:04 - 2014-04-25 20:03 - 00000000 ____D C:\AdwCleaner
2015-09-21 11:48 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\Globalization
2015-09-20 19:30 - 2012-03-26 15:58 - 00000000 ____D C:\Users\BozKurT\Desktop\emine
2015-09-20 12:29 - 2009-03-29 17:03 - 00000000 ____D C:\Users\BozKurT\Desktop\Süleyman
2015-09-18 12:26 - 2010-02-04 20:11 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-18 12:26 - 2010-02-04 20:11 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-18 00:12 - 2008-10-31 20:48 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-09-18 00:12 - 2006-11-02 15:34 - 00000000 ____D C:\Windows\system32\spool
2015-09-17 22:32 - 2009-03-27 16:21 - 00000000 ____D C:\Users\BozKurT\AppData\Roaming\vlc
2015-09-17 11:31 - 2006-11-02 15:33 - 00000000 __RHD C:\Users\Default
2015-09-17 11:27 - 2006-11-02 14:34 - 00000215 _____ C:\Windows\system.ini
2015-09-16 23:38 - 2015-05-25 14:15 - 00000000 ____D C:\Users\BozKurT\Desktop\drucken
2015-09-16 23:29 - 2009-03-18 15:02 - 00000000 ____D C:\Users\BozKurT\Searches\Documents\Meine empfangenen Dateien
2015-09-14 16:17 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\rescache
2015-09-14 10:19 - 2006-11-02 17:07 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-14 10:18 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-14 10:14 - 2010-10-24 12:12 - 04078436 _____ C:\Windows\system32\Drivers\Cat.DB
2015-09-14 10:13 - 2008-10-31 20:35 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-14 10:11 - 2013-08-14 23:51 - 00000000 ____D C:\Windows\system32\MRT
2015-09-14 09:38 - 2009-03-18 13:54 - 00000000 ____D C:\Users\BozKurT
2015-09-13 01:34 - 2006-11-02 15:34 - 00000000 ____D C:\Windows\system32\Msdtc
2015-09-13 01:34 - 2006-11-02 14:33 - 75497472 _____ C:\Windows\system32\config\components_previous
2015-09-13 01:34 - 2006-11-02 14:33 - 58458112 _____ C:\Windows\system32\config\system_previous
2015-09-13 01:34 - 2006-11-02 14:33 - 106430464 _____ C:\Windows\system32\config\software_previous
2015-09-13 01:34 - 2006-11-02 14:33 - 00786432 _____ C:\Windows\system32\config\default_previous
2015-09-13 01:34 - 2006-11-02 14:33 - 00262144 _____ C:\Windows\system32\config\security_previous
2015-09-13 01:34 - 2006-11-02 14:33 - 00262144 _____ C:\Windows\system32\config\sam_previous
2015-09-13 01:13 - 2014-10-18 23:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-13 01:13 - 2006-11-02 17:07 - 00000000 ____D C:\Windows\ShellNew
2015-09-13 01:12 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\registration
2015-09-12 15:43 - 2014-04-27 21:33 - 00000000 ____D C:\ProgramData\Oracle
2015-09-09 23:35 - 2009-11-23 12:44 - 00000000 ____D C:\Users\BozKurT\Desktop\Ugur
2015-09-09 16:18 - 2006-11-02 17:21 - 03338416 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-08 13:49 - 2014-10-18 23:20 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-09-08 13:48 - 2009-03-19 14:25 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-08 13:45 - 2013-10-09 16:29 - 02160832 _____ C:\Users\BozKurT\AppData\Local\dd_install_vb_xcor_90.txt
2015-09-08 13:44 - 2013-10-09 16:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2015-09-08 13:42 - 2013-10-09 16:29 - 00136446 _____ C:\Users\BozKurT\AppData\Local\dd_depcheck_VB_EXP_90.txt
2015-09-08 13:41 - 2011-08-10 16:44 - 00000000 ____D C:\Program Files (x86)\IpodConverter
2015-09-08 13:38 - 2015-05-17 21:24 - 00000000 ____D C:\Users\BozKurT\AppData\Roaming\Skype
2015-09-08 13:38 - 2015-05-17 21:23 - 00000000 ____D C:\ProgramData\Skype
2015-08-26 18:37 - 2006-11-02 14:35 - 134753440 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-03-06 01:06 - 2014-03-06 01:06 - 0001181 _____ () C:\Users\BozKurT\AppData\Roaming\trace_FilterInstaller.1.txt
2014-03-06 01:06 - 2014-03-06 01:14 - 0000919 _____ () C:\Users\BozKurT\AppData\Roaming\trace_FilterInstaller.txt
2014-03-06 01:06 - 2014-03-06 01:14 - 0000000 _____ () C:\Users\BozKurT\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2011-01-12 21:56 - 2015-08-01 12:46 - 0001356 _____ () C:\Users\BozKurT\AppData\Local\d3d9caps.dat
2011-07-03 10:15 - 2012-07-21 23:02 - 0000732 _____ () C:\Users\BozKurT\AppData\Local\d3d9caps64.dat
2009-03-19 14:28 - 2015-07-17 01:35 - 0223232 _____ () C:\Users\BozKurT\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-07-02 11:22 - 2009-07-02 11:22 - 0036172 _____ () C:\Users\BozKurT\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
2013-10-09 16:29 - 2015-09-08 13:42 - 0136446 _____ () C:\Users\BozKurT\AppData\Local\dd_depcheck_VB_EXP_90.txt
2009-07-02 11:22 - 2009-07-02 11:22 - 0000002 _____ () C:\Users\BozKurT\AppData\Local\dd_dotnetfx35error_lp.txt
2009-07-02 11:22 - 2009-07-02 11:23 - 0203664 _____ () C:\Users\BozKurT\AppData\Local\dd_dotnetfx35install_lp.txt
2013-10-09 16:29 - 2013-10-09 16:29 - 0000002 _____ () C:\Users\BozKurT\AppData\Local\dd_error_vb_xcor_90.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 1176452 _____ () C:\Users\BozKurT\AppData\Local\dd_ExpRemoteDbg_x64_MSI741A.txt
2013-10-09 16:29 - 2015-09-08 13:45 - 2160832 _____ () C:\Users\BozKurT\AppData\Local\dd_install_vb_xcor_90.txt
2009-07-02 11:22 - 2009-07-02 11:22 - 0811646 _____ () C:\Users\BozKurT\AppData\Local\dd_NET_Framework35_LangPack_MSI6767.txt
2013-10-09 16:37 - 2013-10-09 16:37 - 0341986 _____ () C:\Users\BozKurT\AppData\Local\dd_SQLCEToolsForVS2007_MSI77B0.txt
2013-10-09 16:37 - 2013-10-09 16:37 - 0383494 _____ () C:\Users\BozKurT\AppData\Local\dd_SSCERuntime_MSI77A0.txt
2010-10-24 12:12 - 2010-10-24 12:12 - 0422964 _____ () C:\Users\BozKurT\AppData\Local\dd_vcredistMSI3F4F.txt
2011-04-17 14:03 - 2011-04-17 14:03 - 0438398 _____ () C:\Users\BozKurT\AppData\Local\dd_vcredistMSI7D1E.txt
2010-10-24 12:12 - 2010-10-24 12:12 - 0013782 _____ () C:\Users\BozKurT\AppData\Local\dd_vcredistUI3F4F.txt
2010-10-24 12:12 - 2010-10-24 12:12 - 0012938 _____ () C:\Users\BozKurT\AppData\Local\dd_vcredistUI3F50.txt
2011-04-17 14:03 - 2011-04-17 14:03 - 0012646 _____ () C:\Users\BozKurT\AppData\Local\dd_vcredistUI7D1E.txt
2011-04-17 14:03 - 2011-04-17 14:03 - 0011786 _____ () C:\Users\BozKurT\AppData\Local\dd_vcredistUI7D1F.txt
2015-09-08 13:45 - 2015-09-08 13:45 - 0795720 _____ () C:\Users\BozKurT\AppData\Local\dd_VC_MinRed_MSI4B14.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 0853224 _____ () C:\Users\BozKurT\AppData\Local\dd_VC_MinRed_MSI7400.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 0255488 _____ () C:\Users\BozKurT\AppData\Local\dd_WinSDK_ExpTools_x64_MSI743E.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 0204582 _____ () C:\Users\BozKurT\AppData\Local\dd_WinSDK_Win32ExpTools_x64_MSI7455.txt
2009-07-02 11:22 - 2015-09-08 13:45 - 1782730 _____ () C:\Users\BozKurT\AppData\Local\uxeventlog.txt
2015-09-08 13:42 - 2015-09-08 13:45 - 8302854 _____ () C:\Users\BozKurT\AppData\Local\VSMsiLog48F9.txt
2013-10-09 16:33 - 2013-10-09 16:37 - 11430914 _____ () C:\Users\BozKurT\AppData\Local\VSMsiLog7469.txt
2009-04-02 23:42 - 2009-04-02 23:42 - 0000011 _____ () C:\ProgramData\.tv5
2009-10-31 18:57 - 2012-05-01 21:39 - 0001723 _____ () C:\ProgramData\hpzinstall.log
Einige Dateien in TEMP:
====================
C:\Users\BozKurT\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-09-23 15:19
==================== Ende von FRST.txt ============================
Zwar nicht mehr das Problem mit JAVA, aber immer noch eine hohe Prozentzahl beim Physikalischen Speicher und knapp 100 Prozesse auf. Ansonsten läuft alles flüssig. |
SecurityCheck und: