Schaeff64 | 28.12.2015 14:24 | Teil 1
Hallo Rafael,
anbei die weiteren Logs: Code:
Zoek.exe v5.0.0.1 Updated 27-December-2015
Tool run by Andreas on 28.12.2015 at 13:35:33,76.
Microsoft Windows 10 Pro 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Andreas\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
28.12.2015 13:38:17 Zoek.exe System Restore Point Created Successfully.
==== Empty Folders Check ======================
C:\Program Files\CEWE deleted successfully
C:\Program Files\office.tmp deleted successfully
C:\PROGRA~3\Canon IJ Network Tool deleted successfully
C:\PROGRA~3\CanonEPP deleted successfully
C:\PROGRA~3\CanonIJEPPEX2 deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\firebird deleted successfully
C:\PROGRA~3\Freemake deleted successfully
C:\PROGRA~3\QNAP deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted successfully
C:\Users\Andreas\AppData\Local\Downloaded Installations deleted successfully
C:\Users\Andreas\AppData\Local\EmieSiteList deleted successfully
C:\Users\Andreas\AppData\Local\EmieUserList deleted successfully
C:\Users\Andreas\AppData\Local\NetworkTiles deleted successfully
C:\Users\Andreas\AppData\Local\Package Cache deleted successfully
C:\Users\Andreas\AppData\Local\PeerDistRepub deleted successfully
C:\Users\Andreas\AppData\Local\SecTaskMan deleted successfully
C:\Users\Andreas\AppData\Local\Trend Micro deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2617929731-1537490630-542298381-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\S-1-5-21-2617929731-1537490630-542298381-1001\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D9420AC0-7FFF-413D-B419-52469CCC2485} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Andreas\AppData\Roaming\Marmiko IT-Solutions GmbH\Browser 7\Profiles\2j8eqrxo.default\prefs.js:
Added to C:\Users\Andreas\AppData\Roaming\Marmiko IT-Solutions GmbH\Browser 7\Profiles\2j8eqrxo.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459\prefs.js:
user_pref("browser.startup.homepage", "hxxp://www.t-online.de/");
Added to C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~2\FreeTime not found
C:\PROGRA~2\Mp3tag not found
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} not found
C:\Users\Andreas\.android deleted
C:\PROGRA~2\Wondershare deleted
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\PROGRA~3\StreamingMediaTechnologyLog.txt deleted
C:\PROGRA~3\Wondershare Video Converter Ultimate deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Andreas\AppData\Local\Wondershare deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Andreas\AppData\Roaming\Marmiko IT-Solutions GmbH\Browser 7\Profiles\2j8eqrxo.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"bdwteffv20@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff" [19.12.2015 17:22]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"bdwteffv20@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff" [19.12.2015 17:22]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"DSE"="true" []
==== Firefox Extensions ======================
ProfilePath: C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459
- Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff
- Fox Web Security - %ProfilePath%\extensions\s3fox@security.xpi
- S3.Google Translator - %ProfilePath%\extensions\s3google@translator.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459
9C63DFDB39BFE3784B412B1FAC7A48CF - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL - Microsoft Office 2016
02D4E390BAA1AE9A1B64889C116B11D6 - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2016
9C06DBC403F91D518ED117E460F03F85 - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL - CANON iMAGE GATEWAY Album Plugin Utility for IJ
95812430959AE88CDD0301AB3A71913B - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll - Shockwave Flash
5DF56521E8985BFD8F21A3D97A4D4574 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll - Shockwave Flash
9798CE98C7093F2BF20A64D1EEDD8101 - C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll - PDF-XChange Editor
3FA824DEA3BC55991B62D314A5EB3B67 - C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll - PDF-XChange Editor
==== Chromium Look ======================
Google Chrome Version: 46.0.2490.86
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dhhejlifdlcgcmogbggeomfodgklfaem - No path found[]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
";Start Page"="hxxp://www.globasearch.com/?serie=211&b=3&installkey=Np9kpr0x42of8ppo4D2Z"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
";Start Page"="hxxp://www.globasearch.com/?serie=211&b=3&installkey=Np9kpr0x42of8ppo4D2Z"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
";Start Page"="hxxp://www.globasearch.com/?serie=211&b=3&installkey=Np9kpr0x42of8ppo4D2Z"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
";Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
";Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
";Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - hxxp://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Andreas\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Andreas\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Andreas\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Andreas\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\Andreas\AppData\Local\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459\cache2 emptied successfully
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=2596 folders=203 660124521 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Andreas\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 28.12.2015 at 14:11:27,62 ======================
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015
durchgeführt von Andreas (Administrator) auf ANDIS-PC (28-12-2015 14:17:54)
Gestartet von C:\Users\Andreas\Desktop\Viren&Co
Geladene Profile: Andreas (Verfügbare Profile: Andreas)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech, Inc.) C:\Program Files\Logitech\SolarApp\L4301_Solar.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 13 Organizer\PhotoshopElementsFileAgent.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(ABBYY InfoPoisk LLC) C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(QNAP Systems, Inc.) C:\Program Files\QNAP\NetBak\QVssService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\msoia.exe
(QNAP Systems, Inc.) C:\Program Files\QNAP\NetBak\NetBak.exe
() C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe
(TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(QNAP Systems, Inc.) C:\Program Files (x86)\QNAP\Qsync\Qsync.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwtxapps.exe
(Neuber Software - www.neuber.com) C:\Program Files (x86)\Security Task Manager\SpyProtector.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
(AVM Berlin) C:\Users\Andreas\AppData\Local\Apps\2.0\04K0X4LD.TBB\MV8VT3J7.2LJ\frit..tion_1acae14e4778b8d2_0002.0003_60ff6cdc6aeff8f9\fritzbox-usb-fernanschluss.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxcr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-09-18] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242712 2015-10-03] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe [1720488 2015-12-14] (Bitdefender)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-09] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1957520 2015-12-18] ()
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-23] (CANON INC.)
HKLM-x32\...\Run: [Spy Protector] => C:\Program Files (x86)\Security Task Manager\SpyProtector.exe [143696 2015-01-20] (Neuber Software - www.neuber.com)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [208424 2013-10-17] (Haufe-Lexware GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [937984 2015-10-01] (AVM Berlin)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-11-30] (Apple Inc.)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [61200 2015-11-30] (Apple Inc.)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe [1423288 2015-12-14] (Bitdefender)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [1958248 2015-10-13] (TomTom)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\Run: [Qsync] => C:\Program Files (x86)\QNAP\Qsync\Qsync.exe [18315472 2015-10-16] (QNAP Systems, Inc.)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\Run: [AVMUSBFernanschluss] => C:\Users\Andreas\AppData\Local\Apps\2.0\04K0X4LD.TBB\MV8VT3J7.2LJ\frit..tion_1acae14e4778b8d2_0002.0003_60ff6cdc6aeff8f9\AVMAutoStart.exe [139264 2015-12-06] (AVM Berlin)
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\...\MountPoints2: {de1c262a-9ce4-11e5-8308-c485087b9395} - "F:\pushinst.exe"
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [60688 2015-12-01] (Apple Inc.)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [177416 2015-10-03] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ QsyncEx_Icon1] -> {9EF65B94-EC0D-49F7-B46D-006B388EB03E} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2015-10-16] ()
ShellIconOverlayIdentifiers: [ QsyncEx_Icon2] -> {A8986A1D-8DAC-4A5D-82DD-CDFCD3131E23} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2015-10-16] ()
ShellIconOverlayIdentifiers: [ QsyncEx_Icon3] -> {A2327C79-B08D-4A08-9344-80626F200C11} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2015-10-16] ()
ShellIconOverlayIdentifiers: [ QsyncEx_Icon4] -> {AA03A855-2660-471F-BD69-1B2FD131763B} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2015-10-16] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ControlCenter.lnk [2015-12-26]
ShortcutTarget: ControlCenter.lnk -> C:\Program Files (x86)\T-Home\Eumex 800 V1.30\ControlCenter.exe (T-Com)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken 2014 Zahlungserinnerung.lnk [2015-12-26]
ShortcutTarget: Quicken 2014 Zahlungserinnerung.lnk -> C:\Windows\Installer\{E60036CF-1E46-4DFE-832F-5476574B30FF}\BillMinder.8C5DA79E_7079_4AB3_81F7_712153351D0D.exe (Macrovision Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken 2015 Zahlungserinnerung.lnk [2015-12-26]
ShortcutTarget: Quicken 2015 Zahlungserinnerung.lnk -> C:\Windows\Installer\{44A9A647-0BBA-4776-8B61-1092EDFEA0C2}\BillMinder.8C5DA79E_7079_4AB3_81F7_712153351D0D.exe (Macrovision Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{2a3f6b38-7cd6-42ac-841a-ffb53b01460d}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7d7f474c-f625-44de-a925-0119484f5b09}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7f847884-1554-4020-9c3b-1f09222f12c3}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2617929731-1537490630-542298381-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2617929731-1537490630-542298381-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2617929731-1537490630-542298381-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2015-12-14] (Bitdefender)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2015-12-18] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2015-12-18] (Microsoft Corporation)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2015-12-14] (Bitdefender)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2015-12-18] (Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2015-12-18] (Wondershare)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-12] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2015-12-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-12] (Oracle Corporation)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2015-12-14] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2015-12-14] (Bitdefender)
Toolbar: HKU\S-1-5-21-2617929731-1537490630-542298381-1001 -> Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2015-12-14] (Bitdefender)
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-12-18] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2015-12-18] (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2015-09-09] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2014-07-28] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-07-11] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-12-18] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2015-12-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-09-09] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2015-09-09] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2617929731-1537490630-542298381-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2015-09-09] (Tracker Software Products (Canada) Ltd.)
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff [2015-12-19]
FF Extension: S3.Google Translator - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459\extensions\s3google@translator.xpi [2015-12-26]
FF Extension: Fox Web Security - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459\extensions\s3fox@security.xpi [2015-12-26]
FF Extension: Adblock Plus - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\sqabga7f.default-1451163081459\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-26]
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2015-09-17] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com
FF Extension: Wondershare Video Converter Ultimate - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com [2015-12-26] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
Chrome:
=======
CHR Profile: C:\Users\Andreas\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM-x32\...\Chrome\Extension: [dhhejlifdlcgcmogbggeomfodgklfaem] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [821048 2013-06-17] (ABBYY InfoPoisk LLC)
R2 AdobeActiveFileMonitor13.0; C:\Program Files\Adobe\Elements 13 Organizer\PhotoshopElementsFileAgent.exe [231120 2015-01-30] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S2 AvmSwitchUsb; C:\Program Files (x86)\avmwlanstick\AVMSwitchUsb.exe [125440 2015-10-01] () [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2748600 2015-12-04] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-09-11] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-09-11] (Dropbox, Inc.)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593976 2012-10-11] (Samsung Electronics CO., LTD.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [131288 2015-10-03] (ELAN Microelectronics Corp.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328616 2015-11-15] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 L4301_Solar; C:\Program Files\Logitech\SolarApp\L4301_Solar.exe [405744 2013-01-30] (Logitech, Inc.)
S2 Lexware_Update_Service; C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe [61992 2014-02-18] (Haufe-Lexware GmbH & Co. KG)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 Media Center 21 Service; C:\Program Files (x86)\J River\Media Center 21\JRService.exe [402720 2015-11-17] (JRiver, Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [857288 2015-11-09] (Bitdefender)
R2 QVssService; C:\Program Files\QNAP\NetBak\QVssService.exe [2203824 2015-02-09] (QNAP Systems, Inc.)
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [124488 2015-10-05] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1604080 2015-12-14] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 BdDesktopParental; "C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe" [X]
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.5.0\WsAppService.exe [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1600512 2015-11-05] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [282000 2015-11-05] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [775424 2015-11-05] (BitDefender)
R3 avmaudio; C:\Windows\System32\drivers\avmaudio.sys [116480 2015-12-06] (AVM Berlin)
R3 avmaura; C:\Windows\System32\drivers\avmaura.sys [116480 2015-12-06] (AVM Berlin)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2015-07-31] (AVM Berlin)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2015-11-05] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [115800 2015-12-14] (BitDefender LLC)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-14] (BitDefender)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R3 ETDSMBus; C:\Windows\system32\DRIVERS\ETDSMBus.sys [32328 2015-10-03] (ELAN Microelectronic Corp.)
S3 fwlanusb6; C:\Windows\system32\DRIVERS\fwlanusb6.sys [1330656 2013-09-13] (AVM GmbH)
S3 fwlanusb6_860; C:\Windows\system32\DRIVERS\fwlanusb6_860.sys [2242720 2015-07-31] (AVM GmbH)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160032 2015-04-29] (BitDefender LLC)
R3 i8042HDR; C:\Windows\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider)
R0 ignis; C:\Windows\system32\DRIVERS\ignis.sys [271808 2015-11-05] (Bitdefender)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 QDrive; C:\Users\Andreas\AppData\Local\Temp\QDrive.sys [127120 2015-12-28] (QNAP Systems, Inc.)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [477272 2015-06-02] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 UDST7000BDA; C:\Windows\system32\DRIVERS\TerraTecUsbBda.sys [917160 2012-08-27] (TerraTec Electronic GmbH.)
S3 UDST7000HID; C:\Windows\System32\drivers\TerraTecUsbHid.sys [26408 2012-08-27] (TerraTec Electronic GmbH.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WsAudio_Device; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2014-10-24] (Wondershare)
S1 BdfNdisf; \??\E:\Windows\System32\DriverStore\FileRepository\netlwf.inf_amd64_bac83df88fa69a0e\bdfndisf6.sys [X]
S3 VMSVSP; \SystemRoot\system32\DRIVERS\vmswitch.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-28 14:06 - 2015-12-28 14:06 - 00016148 _____ C:\WINDOWS\system32\ANDIS-PC_Andreas_HistoryPrediction.bin
2015-12-28 14:01 - 2015-12-28 13:35 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-12-28 13:54 - 2015-12-28 14:11 - 00000000 ____D C:\zoek
2015-12-28 13:35 - 2015-12-28 13:57 - 00000000 ____D C:\zoek_backup
2015-12-28 13:34 - 2015-12-28 13:34 - 01309184 _____ C:\Users\Andreas\Downloads\zoek(1).exe
2015-12-28 12:31 - 2015-12-28 14:17 - 00000000 ____D C:\Users\Andreas\Desktop\Viren&Co
2015-12-28 10:29 - 2015-12-28 10:30 - 00066619 _____ C:\Users\Andreas\Downloads\Addition.txt
2015-12-28 10:27 - 2015-12-28 14:17 - 00000000 ____D C:\FRST
2015-12-28 10:27 - 2015-12-28 10:30 - 00070625 _____ C:\Users\Andreas\Downloads\FRST.txt
2015-12-28 10:26 - 2015-12-28 10:26 - 02370560 _____ (Farbar) C:\Users\Andreas\Downloads\FRST64.exe
2015-12-28 08:19 - 2015-12-28 08:29 - 00000000 ____D C:\ProgramData\SecTaskMan
2015-12-27 17:36 - 2015-12-27 17:36 - 00259584 _____ (OldTimer Tools) C:\Users\Andreas\Downloads\OTH.scr
2015-12-27 17:34 - 2015-12-27 17:34 - 00463688 _____ (Bleeping Computer, LLC) C:\Users\Andreas\Downloads\sc-cleaner.exe
2015-12-27 17:29 - 2015-12-27 17:29 - 01798976 _____ (Malwarebytes) C:\Users\Andreas\Downloads\JRT.exe
2015-12-26 21:40 - 2015-12-26 21:41 - 11337112 _____ (SurfRight B.V.) C:\Users\Andreas\Downloads\HitmanPro_x64(1).exe
2015-12-26 21:34 - 2015-12-26 21:34 - 00000000 ____D C:\Users\Andreas\AppData\Local\MicrosoftEdge
2015-12-26 21:09 - 2015-12-26 21:09 - 01743360 _____ C:\Users\Andreas\Downloads\adwcleaner_5.026.exe
2015-12-26 19:35 - 2015-12-26 19:35 - 00333720 _____ C:\WINDOWS\Minidump\122615-25968-01.dmp
2015-12-26 16:23 - 2015-12-26 16:23 - 00000000 ____D C:\ProgramData\NortonInstaller
2015-12-26 16:22 - 2015-12-26 16:22 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\WinZip
2015-12-26 16:05 - 2015-12-26 16:05 - 00003422 _____ C:\WINDOWS\System32\Tasks\Format Factory
2015-12-26 15:29 - 2015-12-26 22:11 - 00001338 _____ C:\Users\Public\Desktop\Wondershare Video Converter.lnk
2015-12-26 15:29 - 2015-02-27 10:35 - 00000232 _____ C:\WINDOWS\SysWOW64\dllhost.exe.config
2015-12-26 15:27 - 2015-02-27 14:38 - 00721263 _____ () C:\WINDOWS\SysWOW64\WSCM64.dll
2015-12-26 15:27 - 2015-02-27 14:38 - 00214528 _____ () C:\WINDOWS\SysWOW64\WSCM32.dll
2015-12-26 14:49 - 2015-12-26 16:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-19 17:38 - 2015-12-19 17:38 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-12-19 17:13 - 2015-12-26 22:11 - 00001822 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-12-19 17:13 - 2015-12-19 17:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-12-19 17:13 - 2015-12-19 17:13 - 00000000 ____D C:\Program Files\iTunes
2015-12-19 17:13 - 2015-12-19 17:13 - 00000000 ____D C:\Program Files\iPod
2015-12-19 17:13 - 2015-12-19 17:13 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-12-18 13:44 - 2015-12-18 13:44 - 00000346 _____ C:\WINDOWS\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864.job
2015-12-12 15:31 - 2015-12-26 22:11 - 00001228 _____ C:\Users\Public\Desktop\Polar FlowSync.lnk
2015-12-12 15:31 - 2015-12-12 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polar
2015-12-12 15:31 - 2015-12-12 15:31 - 00000000 ____D C:\Program Files (x86)\Polar
2015-12-12 15:26 - 2015-12-12 15:30 - 23793864 _____ (Polar Electro Oy ) C:\Users\Andreas\Downloads\FlowSync_2.6.2.exe
2015-12-11 15:15 - 2015-12-11 15:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-12-10 19:18 - 2015-12-10 19:18 - 00000000 ____D C:\WINDOWS\system32\MpEngineStore
2015-12-10 19:17 - 2015-12-10 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-12-09 18:39 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 18:39 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2015-12-09 18:39 - 2015-12-01 06:54 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-12-09 18:39 - 2015-12-01 06:51 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-12-09 18:39 - 2015-12-01 06:49 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-12-09 18:39 - 2015-12-01 06:02 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-12-09 18:39 - 2015-12-01 05:59 - 05455360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-12-09 18:39 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-12-09 18:39 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2015-12-09 18:39 - 2015-11-25 06:41 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 18:39 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-12-09 18:39 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-09 18:39 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2015-12-09 18:39 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 18:39 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-12-09 18:39 - 2015-11-25 06:11 - 01532984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 18:39 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 18:39 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-09 18:39 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2015-12-09 18:39 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-09 18:39 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-12-09 18:39 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-09 18:39 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2015-12-09 18:39 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EthernetMediaManager.dll
2015-12-09 18:39 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMediaManager.dll
2015-12-09 18:39 - 2015-11-25 05:44 - 21872640 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 18:39 - 2015-11-25 05:42 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-09 18:39 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 18:39 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-09 18:39 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-12-09 18:39 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-09 18:39 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2015-12-09 18:39 - 2015-11-25 05:34 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 18:39 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2015-12-09 18:39 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2015-12-09 18:39 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 18:39 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2015-12-09 18:39 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 18:39 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2015-12-09 18:39 - 2015-11-25 05:28 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 18:39 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 18:39 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-12-09 18:39 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-12-09 18:39 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 18:39 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-12-09 18:39 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2015-12-09 18:39 - 2015-11-25 05:23 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-09 18:39 - 2015-11-25 05:23 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-09 18:39 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-12-09 18:39 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 18:39 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 18:39 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-12-09 18:39 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-09 18:39 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2015-12-09 18:39 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-09 18:39 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2015-12-09 18:39 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-12-09 18:39 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-12-09 18:39 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-12-09 18:39 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-09 18:39 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-09 18:39 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2015-12-09 18:39 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 18:39 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2015-12-09 18:39 - 2015-11-25 05:10 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 18:39 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 18:39 - 2015-11-25 05:10 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 18:39 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 18:39 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-12-09 18:39 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2015-12-09 18:39 - 2015-11-25 05:05 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 18:39 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 18:39 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-12-09 18:39 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-12-09 18:39 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2015-12-09 18:39 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2015-12-09 18:39 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2015-12-09 18:39 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2015-12-09 18:39 - 2015-11-25 03:52 - 00775312 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-12-09 18:39 - 2015-11-25 03:52 - 00775312 _____ C:\WINDOWS\system32\locale.nls
2015-12-08 18:40 - 2015-12-08 18:40 - 00000000 ____D C:\Users\Andreas\Documents\JRiver
2015-12-08 17:26 - 2015-12-08 17:26 - 04553072 _____ (AVM GmbH ) C:\Users\Andreas\Downloads\avm_fritz!wlanusb_stick_ac860_x64_build_150706.exe
2015-12-08 17:23 - 2015-12-08 17:26 - 00000000 ____D C:\Program Files (x86)\avmwlanstick
2015-12-08 17:23 - 2015-12-08 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!WLAN
2015-12-08 17:22 - 2015-07-31 02:00 - 00014120 _____ (AVM Berlin) C:\WINDOWS\system32\Drivers\avmeject.sys
2015-12-08 16:59 - 2015-07-31 02:00 - 02242720 _____ (AVM GmbH) C:\WINDOWS\system32\Drivers\fwlanusb6_860.sys
2015-12-08 16:59 - 2015-07-31 02:00 - 00113656 _____ (AVM Berlin) C:\WINDOWS\system32\fwlan6ci_860_28.dll
2015-12-08 16:59 - 2015-07-31 02:00 - 00079216 _____ C:\WINDOWS\system32\Drivers\fwlanusb62.bin
2015-12-08 16:59 - 2015-07-31 02:00 - 00020954 _____ C:\WINDOWS\system32\Drivers\fwlanusb62pa.bin
2015-12-08 05:30 - 2015-12-08 05:30 - 00003794 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2015-12-07 20:21 - 2015-12-07 20:21 - 00000316 _____ C:\WINDOWS\Tasks\NetBak-ANDIS-PC-Andreas-Job2.job
2015-12-07 17:18 - 2015-12-07 17:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JRiver Media Center 21
2015-12-07 17:16 - 2015-12-07 17:16 - 00000076 _____ C:\WINDOWS\SysWOW64\w3url.dll
2015-12-07 17:16 - 2015-12-07 17:16 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\J River
2015-12-07 17:16 - 2015-12-07 17:16 - 00000000 ____D C:\Program Files (x86)\J River
2015-12-07 17:16 - 2015-11-17 17:54 - 00556320 ____N (JRiver, Inc.) C:\WINDOWS\SysWOW64\MC21.exe
2015-12-07 17:16 - 2015-11-17 17:54 - 00556320 ____N (JRiver, Inc.) C:\WINDOWS\system32\MC21.exe
2015-12-07 17:16 - 2014-08-29 15:54 - 00585728 ____N (Audible Inc.) C:\WINDOWS\SysWOW64\AReadyLB.dll
2015-12-07 17:16 - 2014-08-29 15:54 - 00585728 ____N (Audible Inc.) C:\WINDOWS\system32\AReadyLB.dll
2015-12-07 17:16 - 2014-08-29 15:54 - 00229376 ____N (Audible Inc.) C:\WINDOWS\SysWOW64\AudDevicePlugin.dll
2015-12-07 17:16 - 2014-08-29 15:54 - 00229376 ____N (Audible Inc.) C:\WINDOWS\system32\AudDevicePlugin.dll
2015-12-07 17:15 - 2015-12-07 17:15 - 27077384 _____ (JRiver, Inc.) C:\Users\Andreas\Downloads\MediaCenter210023.exe
2015-12-06 21:21 - 2015-12-06 21:21 - 00116480 _____ (AVM Berlin) C:\WINDOWS\system32\Drivers\avmaura.sys
2015-12-06 21:21 - 2015-12-06 21:21 - 00116480 _____ (AVM Berlin) C:\WINDOWS\system32\Drivers\avmaudio.sys
2015-12-06 21:21 - 2015-12-06 21:21 - 00032256 _____ (AVM Berlin) C:\WINDOWS\system32\MiniInstaller.dll
2015-12-06 21:21 - 2015-12-06 21:21 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRITZ!Box
2015-12-06 21:20 - 2015-12-08 17:59 - 00000000 ____D C:\Users\Andreas\AppData\Local\Deployment
2015-12-06 21:20 - 2015-12-06 21:20 - 00010298 _____ C:\Users\Andreas\Downloads\fritzbox-usb-fernanschluss.application
2015-12-06 17:49 - 2015-12-06 17:49 - 00003306 _____ C:\WINDOWS\System32\Tasks\NetBak-ANDIS-PC-Andreas-AutoStartup
2015-12-06 17:48 - 2015-12-06 17:48 - 35171600 _____ (QNAP SYSTEMS, INC.) C:\Users\Andreas\Downloads\QNAPNetBakWindows-4.5.0.0209(3).exe
2015-12-06 10:33 - 2015-12-26 22:11 - 00001864 _____ C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\QNAP NetBak Replicator.lnk
2015-12-06 10:33 - 2015-12-26 22:11 - 00001840 _____ C:\Users\Andreas\Desktop\NetBak Replicator.lnk
2015-12-06 10:33 - 2015-12-06 10:33 - 00000000 ____D C:\Program Files\QNAP
2015-12-06 10:17 - 2015-12-06 10:20 - 81000039 _____ C:\Users\Andreas\Downloads\Grundschulwoerterbuch Englisch.gme
2015-12-06 09:42 - 2015-12-26 22:11 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\tiptoi® Manager Deinstallationsprogramm.lnk
2015-12-06 09:42 - 2015-12-06 11:33 - 00000000 ____D C:\ProgramData\RavensburgerTipToi3
2015-12-06 09:42 - 2015-12-06 11:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\tiptoi® Manager
2015-12-06 09:42 - 2015-12-06 09:42 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\RavensburgerTipToi3
2015-12-06 09:41 - 2015-12-26 22:11 - 00002049 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\tiptoi.lnk
2015-12-06 09:41 - 2015-12-06 11:34 - 00000000 ____D C:\Program Files (x86)\Ravensburger tiptoi
2015-12-06 09:41 - 2015-12-06 11:33 - 00000000 ____D C:\Users\Andreas\.oracle_jre_usage
2015-12-06 09:40 - 2015-12-06 09:40 - 50567680 _____ (Ravensburger AG) C:\Users\Andreas\Downloads\install(1).exe
2015-12-05 21:02 - 2015-12-05 21:03 - 34301424 _____ (QNAP SYSTEMS, INC.) C:\Users\Andreas\Downloads\qnapnetbakwindows-4.3.1.0403.exe
2015-12-05 13:40 - 2015-12-28 14:09 - 00000000 ___RD C:\Users\Andreas\Qsync
2015-12-05 10:41 - 2015-12-26 22:11 - 00001949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\QNAP Qsync Client.lnk
2015-12-05 10:41 - 2015-12-26 22:11 - 00001943 _____ C:\Users\Public\Desktop\Qsync Client.lnk
2015-12-04 20:56 - 2015-12-04 20:56 - 00137100 _____ C:\Users\Andreas\Downloads\quick(4).cgi
2015-12-04 20:41 - 2015-12-26 22:11 - 00001180 _____ C:\Users\Public\Desktop\Qfinder Pro.lnk
2015-12-04 20:41 - 2015-12-05 10:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QNAP
2015-12-04 20:41 - 2015-12-05 10:41 - 00000000 ____D C:\Program Files (x86)\QNAP
2015-12-04 20:41 - 2015-12-04 20:41 - 00003040 _____ C:\WINDOWS\System32\Tasks\iSCSIAgentAutoStartup
2015-12-04 20:40 - 2015-12-04 20:41 - 33051408 _____ (Igor Pavlov) C:\Users\Andreas\Downloads\QNAPQfinder_Windows(1).exe
2015-12-03 20:47 - 2015-12-03 20:47 - 00137100 _____ C:\Users\Andreas\Downloads\quick(3).cgi
2015-12-03 19:56 - 2015-12-03 19:56 - 00137100 _____ C:\Users\Andreas\Downloads\quick(2).cgi
2015-12-03 19:42 - 2015-12-03 19:42 - 00137100 _____ C:\Users\Andreas\Downloads\quick(1).cgi
2015-12-03 19:36 - 2015-12-03 19:36 - 00137100 _____ C:\Users\Andreas\Downloads\quick.cgi
2015-12-03 18:43 - 2015-12-03 18:45 - 180991657 _____ C:\Users\Andreas\Downloads\TS-219_20151118-4.2.0(1).zip
2015-12-03 18:42 - 2015-12-03 18:42 - 00000000 ____D C:\Users\Andreas\Downloads\TS-219_20151118-4.2.0
2015-12-03 18:28 - 2015-11-18 09:31 - 180951679 _____ C:\Users\Andreas\Downloads\TS-219_20151118-4.2.0.img
2015-12-03 18:27 - 2015-12-03 18:28 - 180991657 _____ C:\Users\Andreas\Downloads\TS-219_20151118-4.2.0.zip
2015-11-28 20:27 - 2015-12-26 22:11 - 00001203 _____ C:\Users\Public\Desktop\OnlineFotoservice.lnk
2015-11-28 20:27 - 2015-12-26 22:11 - 00001188 _____ C:\Users\Public\Desktop\CEWE FOTOSCHAU.lnk
2015-11-28 20:27 - 2015-11-28 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OnlineFotoservice
2015-11-28 17:39 - 2015-11-28 17:40 - 00000000 ____D C:\Users\Andreas\Downloads\Setup OnlineFotoservice
2015-11-28 17:38 - 2015-11-28 17:39 - 01628152 _____ C:\Users\Andreas\Downloads\setup_OnlineFotoservice(1).exe
2015-11-28 11:59 - 2015-11-28 12:00 - 33051408 _____ (Igor Pavlov) C:\Users\Andreas\Downloads\QNAPQfinder_Windows.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-28 14:11 - 2014-01-25 08:34 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\Dropbox
2015-12-28 14:11 - 2014-01-12 09:53 - 00000000 ___RD C:\Users\Andreas\Dropbox
2015-12-28 14:07 - 2015-10-04 12:40 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-28 14:07 - 2015-09-11 14:43 - 00000000 __SHD C:\Users\Andreas\IntelGraphicsProfiles
2015-12-28 14:07 - 2015-01-18 09:36 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-28 14:06 - 2015-09-11 15:02 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-28 14:06 - 2015-09-11 14:52 - 00001230 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2015-12-28 14:06 - 2015-09-11 14:50 - 00000000 ____D C:\Program Files\Bitdefender Agent
2015-12-28 14:06 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-28 14:06 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-28 14:05 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-28 14:05 - 2015-03-01 09:32 - 00054439 _____ C:\bdlog.txt
2015-12-28 13:57 - 2015-09-11 14:52 - 00001234 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2015-12-28 13:57 - 2015-09-11 05:55 - 00000000 ____D C:\Users\Andreas
2015-12-28 13:57 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-12-28 13:56 - 2014-01-25 16:43 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-28 13:51 - 2015-10-04 12:40 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-28 12:19 - 2014-11-30 09:13 - 00000000 ____D C:\ProgramData\tmp
2015-12-28 11:27 - 2014-01-23 06:28 - 00000000 ____D C:\ProgramData\Lexware
2015-12-28 10:58 - 2015-05-04 20:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-28 08:18 - 2015-10-10 13:11 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1DFAAFDA-1AAE-4DF6-864A-FDB95CA3B02C}
2015-12-28 08:18 - 2014-01-25 16:42 - 00000000 ____D C:\Users\Andreas\AppData\Local\Adobe
2015-12-27 17:42 - 2015-05-04 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-27 17:42 - 2015-05-04 20:43 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-26 22:11 - 2015-10-28 20:28 - 00001292 _____ C:\Users\Public\Desktop\MailStore Home.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002541 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2015-12-26 22:11 - 2015-10-26 20:23 - 00002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2015-12-26 22:11 - 2015-10-24 08:29 - 00000962 _____ C:\Users\Public\Desktop\TomTom MyDrive Connect.lnk
2015-12-26 22:11 - 2015-10-12 19:50 - 00001372 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio 15.lnk
2015-12-26 22:11 - 2015-09-27 17:13 - 00001477 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2015-12-26 22:11 - 2015-09-27 17:13 - 00001465 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2015-12-26 22:11 - 2015-09-21 19:09 - 00002180 _____ C:\Users\Public\Desktop\devolo Cockpit.lnk
2015-12-26 22:11 - 2015-09-11 15:31 - 00000560 _____ C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DATEN_Andi.lnk
2015-12-26 22:11 - 2015-09-11 14:50 - 00002398 _____ C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-26 22:11 - 2015-09-11 06:04 - 00001552 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-26 22:11 - 2015-06-18 18:24 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 13.lnk
2015-12-26 22:11 - 2015-06-18 18:24 - 00001054 _____ C:\Users\Public\Desktop\Adobe Photoshop Elements 13.lnk
2015-12-26 22:11 - 2015-06-15 12:51 - 00001115 _____ C:\Users\Public\Desktop\PDF-XChange Editor.lnk
2015-12-26 22:11 - 2015-05-25 18:15 - 00001129 _____ C:\Users\Public\Desktop\FastStone Photo Resizer.lnk
2015-12-26 22:11 - 2015-03-22 15:33 - 00001943 _____ C:\Users\Public\Desktop\Design&Print.lnk
2015-12-26 22:11 - 2015-03-09 20:37 - 00001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2015-12-26 22:11 - 2015-03-09 20:37 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2015-12-26 22:11 - 2015-03-09 20:37 - 00001147 _____ C:\Users\Public\Desktop\Security Task Manager.lnk
2015-12-26 22:11 - 2015-03-05 05:46 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-26 22:11 - 2015-02-05 17:26 - 00002717 _____ C:\Users\Public\Desktop\Joe - Rename.lnk
2015-12-26 22:11 - 2015-01-18 09:36 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-12-26 22:11 - 2015-01-18 09:36 - 00001028 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-12-26 22:11 - 2015-01-13 20:14 - 00001946 _____ C:\Users\Public\Desktop\Canon Easy-PhotoPrint EX.lnk
2015-12-26 22:11 - 2015-01-13 20:13 - 00002111 _____ C:\Users\Public\Desktop\Canon MP Navigator EX 3.0.lnk
2015-12-26 22:11 - 2015-01-13 19:48 - 00002025 _____ C:\Users\Public\Desktop\Canon IJ Network Tool.lnk
2015-12-26 22:11 - 2014-12-29 08:17 - 00002026 _____ C:\Users\Andreas\Desktop\PhotoDesigner.lnk
2015-12-26 22:11 - 2014-10-21 20:46 - 00001234 _____ C:\Users\Andreas\Desktop\Notepad.lnk
2015-12-26 22:11 - 2014-10-07 18:31 - 00001109 _____ C:\Users\Public\Desktop\Office2PDF5.lnk
2015-12-26 22:11 - 2014-10-07 18:31 - 00001085 _____ C:\Users\Public\Desktop\PDF-Tools 4.lnk
2015-12-26 22:11 - 2014-10-05 12:28 - 00001961 _____ C:\Users\Andreas\Desktop\dreamboxEDIT.lnk
2015-12-26 22:11 - 2014-08-07 20:42 - 00001122 _____ C:\Users\Public\Desktop\Picasa 3.lnk
2015-12-26 22:11 - 2014-05-18 10:54 - 00002089 _____ C:\Users\Andreas\Desktop\iCloud.lnk
2015-12-26 22:11 - 2014-05-17 09:02 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-12-26 22:11 - 2014-03-16 16:19 - 00001172 _____ C:\Users\Public\Desktop\MAGIX Video deluxe 2014 Plus.lnk
2015-12-26 22:11 - 2014-03-16 16:10 - 00001183 _____ C:\Users\Public\Desktop\MAGIX Fotos auf DVD 2014 Deluxe.lnk
2015-12-26 22:11 - 2014-03-15 20:51 - 00001321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-12-26 22:11 - 2014-03-15 20:39 - 00001390 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-12-26 22:11 - 2014-02-26 20:04 - 00001291 _____ C:\Users\Andreas\Desktop\7zFM.lnk
2015-12-26 22:11 - 2014-02-22 08:23 - 00002012 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2015-12-26 22:11 - 2014-01-26 21:13 - 00001160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint.NET.lnk
2015-12-26 22:11 - 2014-01-26 21:13 - 00001148 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2015-12-26 22:11 - 2014-01-26 15:20 - 00001214 _____ C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\S Agent.lnk
2015-12-26 22:11 - 2014-01-25 18:59 - 00002881 _____ C:\Users\Public\Desktop\ABBYY FineReader 11.lnk
2015-12-26 22:11 - 2014-01-22 06:21 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-12-26 21:42 - 2014-10-05 19:36 - 00041984 ___SH C:\Users\Andreas\Downloads\Thumbs.db
2015-12-26 21:15 - 2014-01-18 17:35 - 00000000 ____D C:\AdwCleaner
2015-12-26 20:26 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-12-26 19:35 - 2015-10-14 19:42 - 711733129 _____ C:\WINDOWS\MEMORY.DMP
2015-12-26 19:35 - 2015-09-27 14:47 - 00000000 ____D C:\WINDOWS\Minidump
2015-12-26 19:26 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-26 16:08 - 2015-07-10 13:20 - 00478568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 16:07 - 2014-01-22 06:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-26 15:29 - 2014-12-27 08:27 - 00000000 ____D C:\ProgramData\Wondershare
2015-12-26 15:26 - 2014-12-27 08:26 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2015-12-26 15:21 - 2014-07-12 15:43 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\vlc
2015-12-26 14:58 - 2014-12-27 08:27 - 00000000 ____D C:\Users\Andreas\Documents\Wondershare MediaServer
2015-12-26 14:33 - 2014-01-28 20:47 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2015-12-25 17:43 - 2014-05-18 09:10 - 00003494 _____ C:\WINDOWS\System32\Tasks\Apple Diagnostics
2015-12-23 21:34 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-22 20:14 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-12-22 13:45 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-20 16:52 - 2014-01-09 10:47 - 00000000 ____D C:\Users\Andreas\AppData\Local\Packages
2015-12-20 11:36 - 2015-09-11 06:44 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-20 11:32 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-19 17:39 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-12-19 17:38 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-19 17:37 - 2015-10-26 20:09 - 00000000 ____D C:\Program Files\Microsoft Office
2015-12-19 17:31 - 2015-09-11 06:17 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-19 17:31 - 2015-07-10 17:34 - 00772342 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-19 17:31 - 2015-07-10 17:34 - 00154170 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-19 17:26 - 2015-10-04 15:29 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-12-19 17:22 - 2015-04-19 19:33 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-19 17:22 - 2015-04-19 19:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-19 17:19 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-19 17:13 - 2014-05-17 09:02 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-12-14 18:19 - 2015-04-19 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-14 18:18 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-14 17:55 - 2015-09-21 19:26 - 00087912 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2015-12-12 16:05 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-11 15:15 - 2015-09-11 14:52 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-12-10 19:16 - 2014-01-24 20:40 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-10 19:16 - 2014-01-24 20:40 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 04:39 - 2015-02-21 13:46 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-08 17:22 - 2014-09-05 16:49 - 00000000 ____D C:\WINDOWS\AVM_Driver
2015-12-06 21:20 - 2014-02-24 17:38 - 00000000 ____D C:\Users\Andreas\AppData\Local\Apps\2.0
2015-12-06 17:55 - 2014-12-28 20:58 - 00000316 _____ C:\WINDOWS\Tasks\NetBak-ANDIS-PC-Andreas-Job1.job
2015-12-05 18:46 - 2015-10-04 12:40 - 00004194 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 18:46 - 2015-10-04 12:40 - 00003962 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-05 10:41 - 2014-12-28 14:49 - 00000000 ____D C:\Users\Andreas\AppData\Local\QNAP
2015-12-01 01:32 - 2015-10-12 19:14 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:32 - 2015-10-12 19:14 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-28 20:26 - 2014-01-23 06:16 - 00000000 ____D C:\Users\Andreas\AppData\Local\ElevatedDiagnostics
2015-11-28 20:23 - 2014-11-30 09:26 - 00000000 ____D C:\Program Files\OnlineFotoservice
2015-11-28 11:44 - 2014-12-18 17:20 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-28 11:44 - 2014-02-24 17:45 - 00000000 ____D C:\ProgramData\Adobe
2015-11-28 11:44 - 2014-01-21 23:32 - 00000000 ____D C:\Users\Andreas\AppData\Roaming\Adobe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-01-22 20:07 - 2014-01-22 20:07 - 0000036 _____ () C:\Users\Andreas\AppData\Local\housecall.guid.cache
2015-09-18 07:52 - 2015-09-18 07:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-24 03:30
==================== Ende von FRST.txt ============================ --- --- --- |