mbam.txt Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlaufdatum: 19.04.2016
Suchlaufzeit: 13:09
Protokolldatei: mbam.txt
Administrator: Ja
Version: 2.2.1.1043
Malware-Datenbank: v2016.04.19.04
Rootkit-Datenbank: v2016.04.17.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Jan
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 358996
Abgelaufene Zeit: 25 Min., 44 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Deaktiviert
Rootkits: Aktiviert
Heuristik: Deaktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 3
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe, 1220, Löschen bei Neustart, [f1bf7b355940a1950ff392642ad7a060]
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCTray.exe, 4020, Löschen bei Neustart, [8b25f2be0e8b3afcc43e0de944bdbf41]
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe, 3152, Löschen bei Neustart, [2b85cce4a0f97eb891716d89d0312ad6]
Module: 36
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LpcManager.dll, Löschen bei Neustart, [a10f8f21306911256d95589e2cd5aa56],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LpcManager.dll, Löschen bei Neustart, [a10f8f21306911256d95589e2cd5aa56],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\WinService.dll, Löschen bei Neustart, [8e229f111782d75f0af86591f70a9b65],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XProcessBus.dll, Löschen bei Neustart, [e1cfa60a7821d5610af8e01681800bf5],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XProcessBus.dll, Löschen bei Neustart, [e1cfa60a7821d5610af8e01681800bf5],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Report.dll, Löschen bei Neustart, [446c7c34b7e2a59154aed125748d38c8],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Report.dll, Löschen bei Neustart, [446c7c34b7e2a59154aed125748d38c8],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XBus.dll, Löschen bei Neustart, [b5fb4769a2f7f14518ea6e88bc45fd03],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\TrayFrame.dll, Löschen bei Neustart, [1898961a722774c29969af475ba621df],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Monitor.dll, Löschen bei Neustart, [327eb5fb14856cca48ba03f3a160c43c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Database.dll, Löschen bei Neustart, [159b684827722a0ccc36de1826db06fa],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LogReport.dll, Löschen bei Neustart, [f4bc0da39dfc70c6689ab93d847dc739],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\BrowserPlugIn.dll, Löschen bei Neustart, [3e72763af3a6ce6841c1b83e3ec37c84],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Cleaner.dll, Löschen bei Neustart, [446c06aabfda86b06a982fc71de47987],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeProtect.dll, Löschen bei Neustart, [416f555bf5a4e650c83a698d30d10df3],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Update.dll, Löschen bei Neustart, [951b03ada7f2102619e938bee31e1de3],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Web.dll, Löschen bei Neustart, [545cf1bf871288aea062cc2aad54e020],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi.dll, Löschen bei Neustart, [3a762888c0d968ce12f06690788916ea],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AdbWinApi.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AdbWinUsbApi.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AndriodServer.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Support.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Support.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Utility.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Utility.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XSkin.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
Registrierungsschlüssel: 23
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCProtectService, Löschen bei Neustart, [f1bf7b355940a1950ff392642ad7a060],
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, In Quarantäne, [9a169b157623d561fb9b04f06e94e818],
PUP.Optional.Wajam, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, In Quarantäne, [8b257e32dabf0a2c4c4a569e8082da26],
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, In Quarantäne, [dcd4f0c0920747ef8a0c24d027db3dc3],
PUP.Optional.YesSearches, HKU\S-1-5-18\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}, In Quarantäne, [565ab9f74b4eb97d2053f3cc3ac823dd],
PUP.Optional.YesSearches, HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}, In Quarantäne, [4a66f3bd25749b9bf57e952a34cef709],
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\{9E6892AE-EDB8-490A-9FDD-5A9770E7909E}, In Quarantäne, [5759efc198013303430d4b424bb9f60a],
PUP.Optional.VBates.Gen, HKLM\SOFTWARE\UBOXVA, In Quarantäne, [b2fec9e78e0bdf57574cecbf6b99f907],
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32LDR , In Quarantäne, [29877f312772c5716311b7962cd8cb35],
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E040F3E-D48C-4283-BB54-133925E85229}, Löschen bei Neustart, [e5cbcfe14e4b1f17b57afdad887c60a0],
PUP.Optional.Goobzo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3F1E436C-B12B-4114-A9C6-3A75DD201433}, Löschen bei Neustart, [f7b96c4490095cda007b772a36ce06fa],
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{781AD9BE-5F36-4DE3-A507-D1DAB84B88D1}, Löschen bei Neustart, [8828b8f858416bcb07dac1e951b3827e],
PUP.Optional.Komodia.Gen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B303C568-174D-4788-80EF-078CF1C15247}, Löschen bei Neustart, [f2be426e475292a41576e0cb11f30bf5],
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\bvyvave, Löschen bei Neustart, [d6da7e323b5e8aac210fa00a956fc13f],
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\FYJHMJXE1, Löschen bei Neustart, [2e82a50bf3a6ff371dc5b0fa28dc659b],
PUP.Optional.Komodia.Gen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\kze3024, Löschen bei Neustart, [d2de9e129108de58bad255561be9bc44],
PUP.Optional.Goobzo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SMW_UpdateTask_Time_333133353639353036342d782d233257574a5a4145502a, Löschen bei Neustart, [98182b85e9b0aa8ce54c261be02340c0],
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, In Quarantäne, [842c416f9009290d7843122611f26a96],
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\WOW6432NODE\{9E6892AE-EDB8-490A-9FDD-5A9770E7909E}, In Quarantäne, [3e72f3bdb8e13105c789147931d306fa],
PUP.Optional.VBates.Gen, HKLM\SOFTWARE\WOW6432NODE\UBOXVA, In Quarantäne, [cbe5d3ddc7d22214c1e25952c2425da3],
PUP.Optional.MorePowerfulCleaner, HKLM\SOFTWARE\WOW6432NODE\MPC, Löschen bei Neustart, [4a66feb28811b086c2362f73ff059b65],
PUP.Optional.PCSpeedUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, In Quarantäne, [456b80305445d2640f279d9f81837090],
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCKPT, Löschen bei Neustart, [a10fbdf398010e28a5544d55b153b64a],
Registrierungswerte: 16
PUP.Optional.VBates.Gen, HKLM\SOFTWARE\Uboxva|installer_name, vbates_tfpcdeex-00-1_.exe, In Quarantäne, [b2fec9e78e0bdf57574cecbf6b99f907]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32Ldr |{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131047717054696425, In Quarantäne, [29877f312772c5716311b7962cd8cb35]
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E040F3E-D48C-4283-BB54-133925E85229}|Path, \bvyvave, Löschen bei Neustart, [e5cbcfe14e4b1f17b57afdad887c60a0]
PUP.Optional.Goobzo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3F1E436C-B12B-4114-A9C6-3A75DD201433}|Path, \SMW_UpdateTask_Time_333133353639353036342d782d233257574a5a4145502a, Löschen bei Neustart, [f7b96c4490095cda007b772a36ce06fa]
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{781AD9BE-5F36-4DE3-A507-D1DAB84B88D1}|Path, \FYJHMJXE1, Löschen bei Neustart, [8828b8f858416bcb07dac1e951b3827e]
PUP.Optional.Komodia.Gen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B303C568-174D-4788-80EF-078CF1C15247}|Path, \kze3024, Löschen bei Neustart, [f2be426e475292a41576e0cb11f30bf5]
PUP.Optional.IDSCProduct, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|IDSCCOMQG8, "C:\Program Files\Sound+\idsccom_QG8.exe", In Quarantäne, [baf6a10f5346b581bb478a210afa2bd5]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, hxxp://www.yessearches.com/?ts=AHEqA34sC3MmAE..&v=20160405&uid=A506813BB05C8D8E37AA5C12E79A62A2&ptid=wak&mode=ffsengext, In Quarantäne, [842c416f9009290d7843122611f26a96]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, hxxp://www.yessearches.com/?ts=AHEqA34sC3MmAE..&v=20160405&uid=A506813BB05C8D8E37AA5C12E79A62A2&ptid=wak&mode=ffsengext, In Quarantäne, [8729fcb431688aacc1fa3107768d07f9]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, hxxp://www.yessearches.com/chrome.php?uid=A506813BB05C8D8E37AA5C12E79A62A2&ptid=wak&q={searchTerms}&ts=AHEqA34sC3MmAE..&v=20160405&mode=ffsengext, In Quarantäne, [713faa06cdcca78fb00bf6427a890bf5]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, hxxp://www.yessearches.com/chrome.php?uid=A506813BB05C8D8E37AA5C12E79A62A2&ptid=wak&ts=AHEqA34sC3MmAE..&v=20160405&mode=ffexttoolbar&q=, In Quarantäne, [9e12397783167cbaf7c46ccc7192b749]
PUP.Optional.VBates.Gen, HKLM\SOFTWARE\WOW6432NODE\Uboxva|installer_name, vbates_tfpcdeex-00-1_.exe, In Quarantäne, [cbe5d3ddc7d22214c1e25952c2425da3]
Adware.EoRezo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|sun21, In Quarantäne, [48686b455b3e8babc3ed059f8e76c43c],
PUP.Optional.MorePowerfulCleaner, HKLM\SOFTWARE\WOW6432NODE\MPC|Location, C:\Program Files (x86)\MPC Cleaner, Löschen bei Neustart, [4a66feb28811b086c2362f73ff059b65]
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCKPT|Description, MPC Driver, Löschen bei Neustart, [a10fbdf398010e28a5544d55b153b64a]
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCPROTECTSERVICE|ImagePath, "C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe", Löschen bei Neustart, [a60ab00031686ccae4f460435ba908f8]
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Ordner: 25
PUP.Optional.VBates, C:\Users\Jan\AppData\LocalLow\Company\Product\1.0, In Quarantäne, [b3fd7a366138c96d333e96c8e12307f9],
PUP.Optional.VBates, C:\Users\Jan\AppData\LocalLow\Company\Product, In Quarantäne, [b3fd7a366138c96d333e96c8e12307f9],
PUP.Optional.MorePowerfulCleaner, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC, In Quarantäne, [bdf36c4425742610ec443269996bcf31],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\DB, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Exe, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\News, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Tray, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.Goobzo, C:\Users\Jan\AppData\Local\brsrv, In Quarantäne, [07a9723ecbcef93db93540f2d82bc040],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\libraries, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\resources, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
Dateien: 218
PUP.Optional.MorePowerfulCleaner, C:\WINDOWS\SYSTEM32\drivers\MPCKpt.sys, Löschen bei Neustart, [b66a551d00e41d5416f4cb5497926238],
PUP.Optional.Komodia, C:\WINDOWS\SYSTEM32\drivers\zdwfp64.sys, Löschen bei Neustart, [a767ff3670b7349e961687c29ea9054e],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, Löschen bei Neustart, [02ae06aac1d8d363d230698d35cc4eb2],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe, Löschen bei Neustart, [f1bf7b355940a1950ff392642ad7a060],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LpcManager.dll, Löschen bei Neustart, [a10f8f21306911256d95589e2cd5aa56],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\WinService.dll, Löschen bei Neustart, [8e229f111782d75f0af86591f70a9b65],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XProcessBus.dll, Löschen bei Neustart, [e1cfa60a7821d5610af8e01681800bf5],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Report.dll, Löschen bei Neustart, [446c7c34b7e2a59154aed125748d38c8],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCTray.exe, Löschen bei Neustart, [8b25f2be0e8b3afcc43e0de944bdbf41],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XBus.dll, Löschen bei Neustart, [b5fb4769a2f7f14518ea6e88bc45fd03],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\TrayFrame.dll, Löschen bei Neustart, [1898961a722774c29969af475ba621df],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Monitor.dll, Löschen bei Neustart, [327eb5fb14856cca48ba03f3a160c43c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Database.dll, Löschen bei Neustart, [159b684827722a0ccc36de1826db06fa],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LogReport.dll, Löschen bei Neustart, [f4bc0da39dfc70c6689ab93d847dc739],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\BrowserPlugIn.dll, Löschen bei Neustart, [3e72763af3a6ce6841c1b83e3ec37c84],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Cleaner.dll, Löschen bei Neustart, [446c06aabfda86b06a982fc71de47987],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeProtect.dll, Löschen bei Neustart, [416f555bf5a4e650c83a698d30d10df3],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Update.dll, Löschen bei Neustart, [951b03ada7f2102619e938bee31e1de3],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Web.dll, Löschen bei Neustart, [545cf1bf871288aea062cc2aad54e020],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi.dll, Löschen bei Neustart, [3a762888c0d968ce12f06690788916ea],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe, Löschen bei Neustart, [2b85cce4a0f97eb891716d89d0312ad6],
Adware.PennyBee.WnskRST, C:\Program Files\Uboxva\Byidf.dll, In Quarantäne, [b4fccce4debbb185ad683add3cc6fa06],
Adware.PennyBee.WnskRST, C:\Program Files\Uboxva\Byidf64.dll, In Quarantäne, [6c444e620495f343986c4dca1fe3c53b],
Adware.PennyBee.WnskRST, C:\Program Files\Uboxva\Ezouhti64.dll, In Quarantäne, [5b558e227a1fe74f1ef8ef28c939639d],
Adware.PennyBee, C:\Program Files\Uboxva\nfregdrv64.exe, In Quarantäne, [dbd5921eb7e23501f41ff91e9b6705fb],
PUP.Optional.VBates, C:\Program Files\Uboxva\prc.exe, In Quarantäne, [a808ac04cecba690938468c93acb7789],
Adware.PennyBee.WnskRST, C:\Program Files\Uboxva\Wemved64.dll, In Quarantäne, [dfd18828e4b5ee488d758394b74bbf41],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll64.dll, Löschen bei Neustart, [ac04397767323ff7768c7d79ca37b947],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MainFrame.dll, In Quarantäne, [763a1f91eeab0432a65ccb2be71ad927],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPC.exe, In Quarantäne, [941c04ac2e6b40f63bc7985e9a675da3],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCAutoClean.exe, In Quarantäne, [5858456b8217d06607fb9e58669b52ae],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCNews.exe, In Quarantäne, [1a96377944550630e51daf471de4f30d],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCSecurity.exe, In Quarantäne, [8f21258b1f7a92a450b2e0165fa23cc4],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCSetting.exe, In Quarantäne, [4769e2cee7b2d75fff03a74f24ddb947],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi64.dll, Löschen bei Neustart, [852b47694b4ec571689ae1153dc4629e],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SetupFrame.dll, In Quarantäne, [77392e8251489a9c52b05a9c0cf5bd43],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Uninstall.exe, In Quarantäne, [7a368e22bfdacf67b84a9264ea172cd4],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\UninstallFrame.dll, In Quarantäne, [a70906aa1287d85e25dd50a619e8748c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\UninstDelete.exe, In Quarantäne, [2d838c24742541f5d72b50a6b849ac54],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\UpdateHost.exe, In Quarantäne, [fab6624e435646f0ee145b9b07fa19e7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Upgrade.dll, In Quarantäne, [753bbdf3d8c15ed820e26f8748b92bd5],
PUP.Optional.StartSurf, C:\Users\Jan\AppData\Local\Temp\03b1a18b.a, In Quarantäne, [842cc3edd3c6e84e87dc766eac55d52b],
Adware.IStartSurf, C:\Users\Jan\AppData\Local\Temp\03b1ab00.a, In Quarantäne, [dbd5b3fda0f97abcc8c9e5203fc39f61],
Trojan.Graftor, C:\Users\Jan\AppData\Local\Temp\Install_31631\ins_PEEDGE.exe, In Quarantäne, [446c0da3b0e91125c437a9b2bd431de3],
PUP.Optional.PCSpeedUp, C:\Users\Jan\AppData\Local\Temp\LVE5XT251\LVE5XT251.exe, In Quarantäne, [7937d4dcd3c6de5872b46be635cc6e92],
PUP.Optional.Goobzo, C:\Users\Jan\AppData\Local\brsrv\brsrv.exe, In Quarantäne, [f0c0b2feb0e973c3aa0378b52fd607f9],
PUP.Optional.SearchModule, C:\Windows\Temp\SM_cache_chrome.exe.cache, In Quarantäne, [cfe1d8d88a0fa096f492034050b458a8],
PUP.Optional.SearchModule, C:\Windows\Temp\SM_cache_iexplore.exe.cache, In Quarantäne, [f0c02c84227772c4a9dd40037c8841bf],
PUP.Optional.FakeIELaunch, C:\Users\Jan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk, In Quarantäne, [20904c64990041f58c8fc993b3514ab6],
PUP.Optional.VBates, C:\Users\Jan\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt, In Quarantäne, [b3fd7a366138c96d333e96c8e12307f9],
PUP.Optional.VBates, C:\Users\Jan\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt, In Quarantäne, [b3fd7a366138c96d333e96c8e12307f9],
PUP.Optional.MorePowerfulCleaner, C:\Users\Public\Desktop\MPC Cleaner.lnk, In Quarantäne, [4967bdf3c8d1c5711a156b30e61ea35d],
PUP.Optional.MorePowerfulCleaner, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC\MPC Cleaner.lnk, In Quarantäne, [bdf36c4425742610ec443269996bcf31],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\symsrv.yes, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\snh.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AdbWinApi.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AdbWinUsbApi.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AdcManager.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\AndriodServer.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\CeBase.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\CrashReport.exe, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\dbgkpt.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Decode.exe, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT.manifest, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\msvcm90.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\msvcp90.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\msvcr90.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Support.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\symsrv.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Utility.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\wfhxte.dat, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\xadb.exe, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XSkin.dll, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\ymlct, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers\MPCBase_32.sys, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers\MPCKpt.inf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers\MPCKpt.sys, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers\MPCKpt_vista_32.sys, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers\MPCKpt_vista_64.sys, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Drivers\MPCKpt_xp_32.sys, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\Clean.xf, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\PlugIn.xf, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\DB\as.db, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\DB\cf.db, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\DB\run.db, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Config\DB\st.db, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Exe\ADC_qd00000.exe, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q2.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\ad_gray.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\ad_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\ad_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\ad_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g1.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g10.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g11.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g12.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g2.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g3.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g4.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g5.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g6.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g7.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g8.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\g9.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q1.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q10.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q11.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q12.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q3.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q4.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q5.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q6.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q7.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q8.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\q9.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r1.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r10.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r11.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r12.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r2.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r3.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r4.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r5.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r6.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r7.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r8.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\r9.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\sys_gray.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\sys_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\sys_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\sys_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y1.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y10.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y11.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y12.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y2.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y3.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y4.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y5.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y6.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y7.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y8.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\y9.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{08DA4B46-E0EB-4B4D-8C8B-558C967AF6C5}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{22A8D5A3-F368-4C6B-BF4D-3C901EBCF242}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{3F9A707D-2C36-4344-8621-B8E4ADC95C18}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{ADC520A9-B4B3-791E-B149-845C11673CB0}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{CDA529A9-B1B3-793E-B449-845C11673CB5}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{D8EC46AF-529F-4636-963B-C086429C73DA}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{DE37CD8C-DE7B-481F-A676-303ABAFBEE04}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{EDA029A1-B5BA-793E-B649-875C18673CC5}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{F154C596-75A9-4028-90E8-9752BD7CA05B}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\search_{FDA029A2-A5BA-797E-B689-875E18673FC2}.ico, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon\toasts_waring.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon\adcapp.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon\adcweb.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon\block.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon\home.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon\ie.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SgIcon\search.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\AR_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\AR_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\AR_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\Bp_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\Bp_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\Bp_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\SpeedUp_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\SpeedUp_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\SpeedUp_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\SVC_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\SVC_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\SVC_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\TSK_green.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\TSK_org.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Image\SoIcon\TSK_red.png, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT\msvcm90.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT\msvcp90.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT\msvcr90.dll, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner\Lang.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner\Skin.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport\Lang.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport\Skin.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\News\Lang.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\News\Skin.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Tray\Lang.xf, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Tray\Skin.xf, Löschen bei Neustart, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall\Lang.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall\Skin.xf, In Quarantäne, [634d9b152e6b82b48ff19dfec24253ad],
PUP.Optional.Komodia, C:\Windows\Temp\zdengine.log, In Quarantäne, [852bbff17d1cf83ec6dfe9b6ad57619f],
PUP.Optional.Linkury, C:\Users\Jan\AppData\Roaming\inst.lat, In Quarantäne, [edc3bcf4e8b19b9bbf6d57536a9abc44],
PUP.Optional.SearchProtect, C:\Windows\System32\Tasks\bvyvave, In Quarantäne, [f0c0862a4851c2746bc2bded8e76cb35],
PUP.Optional.CouponMarvel, C:\Windows\System32\Tasks\FYJHMJXE1, In Quarantäne, [ecc48b255940c0769e41e4c622e2867a],
PUP.Optional.CouponMarvel, C:\Windows\Tasks\FYJHMJXE1.job, In Quarantäne, [1f91486805945cda11cf2189a65eed13],
PUP.Optional.Komodia.Gen, C:\Windows\System32\Tasks\kze3024, In Quarantäne, [931da20e8217ec4a0782a407927204fc],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate\rlz_id.dll, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate\sma.exe, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate\smci64.dll, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate\smi32.exe, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate\smi64.exe, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.Goobzo.Gen, C:\Program Files\Common Files\Soobzo\GDUpdate\SMUninstall.exe, In Quarantäne, [cce46b4579200432f65f1a19d52e41bf],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\tree.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\Byidf.dll, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\Byidf64.dll, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\config.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\Ezouhti64.dll, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\Karagir.bat, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\nfregdrv64.exe, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\setup.ico, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\Wemved.dll, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\Wemved64.dll, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\wlist.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\libraries\DataExchangeScript.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\resources\config.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\resources\LocalScript.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\resources\uninstall.html, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.VBates.BrwsrFlsh, C:\Program Files\Uboxva\resources\wlist.js, In Quarantäne, [cee2e8c8adecea4c9eb37bf08e77ff01],
PUP.Optional.Linkury.ACMB1, C:\Users\Jan\AppData\Roaming\InstallationConfiguration.xml, In Quarantäne, [0aa6a70982176ec8a08890db689d3bc5],
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end) Code:
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Jan on 19.04.2016 at 14:50:32,86.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jan\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
19.04.2016 14:51:58 Zoek.exe System Restore Point Created Successfully.
==== Empty Folders Check ======================
C:\Program Files\McAfee deleted successfully
C:\Program Files\Uhhiwesoif deleted successfully
C:\PROGRA~3\WinZip deleted successfully
C:\Users\Jan\AppData\Roaming\DecfMegb deleted successfully
C:\Users\Jan\AppData\Roaming\NiryFepja deleted successfully
C:\Users\Jan\AppData\Roaming\Phase6 deleted successfully
C:\Users\Jan\AppData\Local\AviraSpeedup deleted successfully
C:\Users\Jan\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Jan\AppData\Local\EmieSiteList deleted successfully
C:\Users\Jan\AppData\Local\EmieUserList deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E6E66045-E911-4C01-961D-42387CF12080} deleted successfully
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E6E66045-E911-4C01-961D-42387CF12080} deleted successfully
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E6E66045-E911-4C01-961D-42387CF12080} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E6E66045-E911-4C01-961D-42387CF12080} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Approved Extensions\{990999BC-8BF7-4726-9609-A3EBABF627A0} deleted successfully
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Approved Extensions\{990999BC-8BF7-4726-9609-A3EBABF627A0} deleted successfully
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Approved Extensions\{990999BC-8BF7-4726-9609-A3EBABF627A0} deleted successfully
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{990999BC-8BF7-4726-9609-A3EBABF627A0} deleted successfully
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Classes\Software\Microsoft\Internet Explorer\Approved Extensions\{990999BC-8BF7-4726-9609-A3EBABF627A0} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Approved Extensions\{D3CB5957-3359-4F29-aC50-E6C666F53059} deleted successfully
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Approved Extensions\{D3CB5957-3359-4F29-aC50-E6C666F53059} deleted successfully
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Approved Extensions\{D3CB5957-3359-4F29-aC50-E6C666F53059} deleted successfully
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{D3CB5957-3359-4F29-aC50-E6C666F53059} deleted successfully
HKEY_USERS\S-1-5-21-489078762-871934448-399521353-1001\Software\Classes\Software\Microsoft\Internet Explorer\Approved Extensions\{D3CB5957-3359-4F29-aC50-E6C666F53059} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\kZsq9LNj.default\prefs.js:
Added to C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\kZsq9LNj.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\windows\SysNative\Tasks\KHEIGTSHJRHYMLJD deleted
C:\windows\SysNative\Tasks\Software Update Application deleted
C:\Windows\tasks\KHEIGTSHJRHYMLJD.job deleted
C:\PROGRA~3\19a87fa1ec024bbcbb41931263354405 deleted
C:\Users\Public\Pokki deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Jan\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108 deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Public\Documents\dmp deleted
C:\Users\Jan\AppData\LocalLow\Company deleted
C:\Users\Jan\Documents\Add-in Express deleted
==== Orphaned Tasks deleted from Registry ======================
Software Update Application deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\kZsq9LNj.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\kZsq9LNj.default
- Segurana do navegador Avira - %ProfilePath%\extensions\abs@avira.com.xpi
==== Firefox Plugins ======================
==== Chromium Look ======================
Google Chrome Version: 46.0.2490.86
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[08.01.2016 11:47]
Skype - Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://search.avira.net/#web/result?source=art&q="
"Default_Search_URL"="https://search.avira.net/#web/result?source=art&q="
"Default_Page_URL"="https://search.avira.net/#web/result?source=art&q="
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="https://search.avira.net/#web/result?source=art&q="
"Search Page"="https://search.avira.net/#web/result?source=art&q="
"Start Page"="https://search.avira.net/#web/result?source=art&q="
"Default_Page_URL"="https://search.avira.net/#web/result?source=art&q="
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="https://search.avira.net/#web/result?source=art&q="
"Search Page"="https://search.avira.net/#web/result?source=art&q="
"Start Page"="https://search.avira.net/#web/result?source=art&q="
"Default_Page_URL"="https://search.avira.net/#web/result?source=art&q="
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{A3782EB2-C684-409E-A3C8-C932D426AFD5}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="https://search.avira.net/#web/result?source=art&q="
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{A3782EB2-C684-409E-A3C8-C932D426AFD5}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\SearchScopes\{A3782EB2-C684-409E-A3C8-C932D426AFD5} - hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{A3782EB2-C684-409E-A3C8-C932D426AFD5}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\Wow6432Node\SearchScopes\{A3782EB2-C684-409E-A3C8-C932D426AFD5} - hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - hxxp://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{A3782EB2-C684-409E-A3C8-C932D426AFD5} - No_Url_Value
==== Reset Google Chrome ======================
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencesgbak was reset successfully
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Web Data.tmp was reset successfully
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Web Datagbak was reset successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jan\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jan\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jan\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Jan\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=1445 folders=718 229193734 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jan\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Jan\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted
==== EOF on 19.04.2016 at 15:03:53,00 ====================== Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-04-2016 01
durchgeführt von Jan (Administrator) auf NOTEBOOK-JAN2 (19-04-2016 15:10:00)
Gestartet von C:\Users\Jan\Desktop
Geladene Profile: Jan (Verfügbare Profile: Jan)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Program Files (x86)\Allway Sync\Bin\syncappw.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\RSSDK\v3\bin\win32\notification_tool.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Astonsoft) C:\Program Files (x86)\EssentialPIM\EssentialPIM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Farbar) C:\Users\Jan\Desktop\FRST64 (1).exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-03-19] (Apple Inc.)
HKLM-x32\...\Run: [Intel Privacy Notification Tool] => C:\Program Files (x86)\Common Files\Intel\RSSDK\v3\bin\win32\notification_tool.exe [8173240 2014-10-30] (Intel Corporation)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe -autorun
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-08-27] (Atheros Communications)
HKU\S-1-5-21-489078762-871934448-399521353-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-489078762-871934448-399521353-1001\...\Run: [GoogleChromeAutoLaunch_1F14D2380DB1DE09582B9D790BD95BA5] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1003160 2016-04-06] (Google Inc.)
HKU\S-1-5-21-489078762-871934448-399521353-1001\...\Run: [Allway Sync] => C:\Program Files (x86)\Allway Sync\Bin\syncappw.exe [93488 2015-10-29] ()
HKU\S-1-5-21-489078762-871934448-399521353-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-489078762-871934448-399521353-1001\...\MountPoints2: {7dd3a79a-3f30-11e5-826a-206a8a9e0239} - "F:\LaunchU3.exe" -a
HKU\S-1-5-18\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [60688 2015-12-01] (Apple Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\phase-6 Reminder.lnk [2016-04-19]
ShortcutTarget: phase-6 Reminder.lnk -> C:\Program Files (x86)\phase-6\phase-6\reminder\reminder.exe (phase-6)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{562729EF-57C3-478A-BEFD-55F1642D22A4}: [DhcpNameServer] 10.61.12.1
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 10.0.0.1
Tcpip\..\Interfaces\{bbed3e08-0b41-11e3-8249-806e6f6e6963}: [NameServer] 10.0.0.1
Tcpip\..\Interfaces\{DB5D870B-9660-446A-83A0-9E1575A73068}: [DhcpNameServer] 192.168.178.1
ManualProxies:
Internet Explorer:
==================
HKU\S-1-5-21-489078762-871934448-399521353-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-489078762-871934448-399521353-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-489078762-871934448-399521353-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-489078762-871934448-399521353-1001 -> {A3782EB2-C684-409E-A3C8-C932D426AFD5} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-15] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-03-15] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-08-30] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\kZsq9LNj.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [2015-08-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [2015-08-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2016-03-08] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-08-30] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\kZsq9LNj.default\Extensions\abs@avira.com.xpi [2016-04-10]
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avira Browserschutz) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-04-19]
CHR Extension: (Skype) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-04-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [322176 2014-08-27] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2828016 2016-02-09] (Microsoft Corporation)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-06-16] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-02-19] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3905536 2014-08-11] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-08-27] (Qualcomm Atheros)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-04-11] ()
S3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-04-19] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [116736 2014-02-19] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42736 2014-07-10] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-19 15:10 - 2016-04-19 15:10 - 00019586 _____ C:\Users\Jan\Desktop\FRST.txt
2016-04-19 15:09 - 2016-04-19 15:09 - 00001271 _____ C:\Users\Jan\Downloads\FRST - Verknüpfung.lnk
2016-04-19 15:09 - 2016-04-18 16:45 - 02375680 _____ (Farbar) C:\Users\Jan\Desktop\FRST64 (1).exe
2016-04-19 15:01 - 2016-04-19 14:50 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-04-19 14:50 - 2016-04-19 14:49 - 00001355 _____ C:\Users\Jan\Desktop\zoek - Verknüpfung.lnk
2016-04-19 14:49 - 2016-04-19 14:49 - 00001355 _____ C:\Users\Jan\Downloads\zoek - Verknüpfung.lnk
2016-04-19 14:48 - 2016-04-19 15:01 - 00000000 ____D C:\zoek_backup
2016-04-19 14:48 - 2016-04-19 14:48 - 01309184 _____ C:\Users\Jan\Downloads\zoek.exe
2016-04-19 14:44 - 2016-04-19 14:44 - 00047545 _____ C:\Users\Jan\Desktop\mbam.txt
2016-04-19 14:39 - 2016-04-19 14:39 - 00001371 _____ C:\Users\Jan\Desktop\GeForce Experience.lnk
2016-04-19 13:07 - 2016-04-19 15:02 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-04-19 13:07 - 2016-04-19 14:35 - 00001074 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-19 13:07 - 2016-04-19 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-04-19 13:07 - 2016-04-19 13:07 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-04-19 13:07 - 2016-04-19 13:07 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-04-19 13:07 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-04-19 13:07 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-04-19 13:07 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-04-19 13:05 - 2016-04-19 13:05 - 22851472 _____ (Malwarebytes ) C:\Users\Jan\Downloads\mbam-setup-2.2.1.1043.exe
2016-04-18 16:48 - 2016-04-18 16:50 - 00047979 _____ C:\Users\Jan\Downloads\Addition.txt
2016-04-18 16:47 - 2016-04-18 16:50 - 00048575 _____ C:\Users\Jan\Downloads\FRST.txt
2016-04-18 16:46 - 2016-04-19 15:10 - 00000000 ____D C:\FRST
2016-04-18 16:45 - 2016-04-18 16:45 - 02375680 _____ (Farbar) C:\Users\Jan\Downloads\FRST64 (1).exe
2016-04-16 17:44 - 2016-04-16 17:44 - 00002440 _____ C:\Users\Jan\Desktop\AdwCleaner[C6].txt
2016-04-16 17:38 - 2016-04-16 17:38 - 01726464 _____ (Farbar) C:\Users\Jan\Downloads\FRST.exe
2016-04-16 17:36 - 2016-04-16 17:36 - 02375168 _____ (Farbar) C:\Users\Jan\Downloads\FRST64.exe
2016-04-16 17:18 - 2016-03-31 02:54 - 25817600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-04-16 17:18 - 2016-03-31 02:03 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-04-16 17:18 - 2016-03-31 01:39 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-04-16 17:17 - 2016-03-31 02:31 - 02892800 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-04-16 17:17 - 2016-03-31 02:28 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-04-16 17:17 - 2016-03-31 02:25 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-04-16 17:17 - 2016-03-31 02:17 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-04-16 17:17 - 2016-03-31 01:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-04-16 17:17 - 2016-03-31 01:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-04-16 17:17 - 2016-03-31 01:55 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-04-16 17:17 - 2016-03-31 01:53 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-04-16 17:17 - 2016-03-31 01:51 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-04-16 17:17 - 2016-03-31 01:50 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-04-16 17:17 - 2016-03-31 01:45 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-04-16 17:17 - 2016-03-31 01:45 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-04-16 17:17 - 2016-03-31 01:43 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-04-16 17:17 - 2016-03-31 01:43 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-04-16 17:17 - 2016-03-31 01:43 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-04-16 17:17 - 2016-03-31 01:42 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-04-16 17:17 - 2016-03-31 01:30 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-04-16 17:17 - 2016-03-31 01:30 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-04-16 17:17 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-04-16 17:17 - 2016-03-31 01:30 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-04-16 17:17 - 2016-03-31 01:27 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-04-16 17:17 - 2016-03-31 01:24 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-04-16 17:17 - 2016-03-31 01:23 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-04-16 17:17 - 2016-03-31 01:23 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-04-16 17:17 - 2016-03-31 01:23 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-04-16 17:17 - 2016-03-31 01:21 - 13811712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-04-16 17:17 - 2016-03-31 01:18 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-04-16 17:17 - 2016-03-31 01:06 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-04-16 17:17 - 2016-03-31 01:05 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-04-16 17:17 - 2016-03-31 01:02 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-04-16 17:17 - 2016-03-31 01:00 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-04-16 17:16 - 2016-03-16 01:00 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-04-16 17:16 - 2016-03-15 16:14 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-04-16 17:16 - 2016-03-11 16:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-04-16 17:16 - 2016-03-10 20:22 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-04-16 17:16 - 2016-03-10 20:21 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-04-16 17:16 - 2016-03-10 20:20 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-04-16 17:16 - 2016-03-10 19:44 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-04-16 17:16 - 2016-03-10 19:16 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-04-16 17:16 - 2016-03-10 19:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-04-16 17:16 - 2016-03-10 18:48 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-04-16 17:16 - 2016-03-03 18:47 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-16 17:16 - 2016-03-03 18:33 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-04-16 17:15 - 2016-04-16 17:15 - 03677760 _____ C:\Users\Jan\Downloads\adwcleaner_5.111.exe
2016-04-16 17:15 - 2016-04-04 08:35 - 00046768 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-04-16 17:15 - 2016-04-02 15:26 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-04-16 17:15 - 2016-04-02 15:26 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-04-16 17:15 - 2016-03-28 15:21 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-04-16 17:15 - 2016-03-28 15:21 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-04-16 17:15 - 2016-03-28 15:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-04-16 17:15 - 2016-03-28 15:21 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-04-16 17:15 - 2016-03-28 15:21 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-04-16 17:15 - 2016-03-03 03:39 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-16 17:15 - 2016-03-03 03:39 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-04-16 17:14 - 2016-03-10 21:19 - 07452512 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-04-16 17:14 - 2016-03-10 21:17 - 01663192 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-04-16 17:14 - 2016-03-10 21:17 - 01523216 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-04-16 17:14 - 2016-03-10 21:17 - 01490128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-04-16 17:14 - 2016-03-10 21:17 - 01358960 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-04-16 17:14 - 2016-03-10 21:17 - 01133752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-04-16 17:14 - 2016-03-10 19:48 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-04-16 17:14 - 2016-03-10 19:43 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-04-16 17:14 - 2016-03-10 18:55 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-04-16 17:14 - 2016-03-10 18:42 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-04-16 17:12 - 2016-03-03 18:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-04-16 12:12 - 2016-03-29 16:05 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-04-11 19:01 - 2016-04-11 19:01 - 00000000 _____ C:\autoexec.bat
2016-04-11 19:00 - 2016-04-11 19:00 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-04-11 18:29 - 2016-04-16 17:20 - 00000000 ____D C:\AdwCleaner
2016-04-10 16:51 - 2016-04-10 16:51 - 00000000 ____D C:\Users\Jan\AppData\Roaming\MCorp
2016-04-10 16:28 - 2016-04-10 16:34 - 00000000 ____D C:\Users\Jan\AppData\Local\app
2016-04-10 16:20 - 2016-04-10 16:20 - 00003332 _____ C:\Windows\System32\Tasks\Jaynew
2016-04-10 16:20 - 2016-04-10 16:20 - 00003332 _____ C:\Windows\System32\Tasks\Itepe
2016-04-10 16:19 - 2016-04-10 16:20 - 00000000 ____D C:\Users\Jan\AppData\Local\Tempfolder
2016-04-10 16:19 - 2016-04-10 16:19 - 00023164 _____ C:\Windows\System32\Tasks\{0E057D47-7808-0A78-0C11-7E0A0A78117F}
2016-04-10 16:19 - 2016-04-10 16:19 - 00000000 ____D C:\uninst
2016-04-10 16:17 - 2016-04-10 16:20 - 00127488 _____ C:\Users\Jan\AppData\Roaming\Installer.dat
2016-04-10 16:16 - 2016-04-10 16:15 - 00001006 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-04-09 12:37 - 2016-04-09 12:37 - 00000000 ____D C:\Users\Jan\AppData\Roaming\dvdcss
2016-04-09 10:39 - 2016-04-09 10:39 - 00000000 ____D C:\Users\Jan\AppData\Local\Avira_Operations_GmbH_&_C
2016-04-09 10:31 - 2016-04-09 10:31 - 00000000 ____D C:\Users\Jan\AppData\Local\Avira
2016-04-09 10:29 - 2016-04-12 20:41 - 00000000 ____D C:\Program Files (x86)\Avira
2016-04-09 10:29 - 2016-04-11 20:20 - 00000000 ____D C:\ProgramData\Avira
2016-04-09 09:57 - 2016-04-09 09:57 - 00000000 ____D C:\Windows\system32\SSL
2016-03-29 12:06 - 2016-03-29 12:06 - 00000000 ____D C:\Users\Jan\AppData\Roaming\NVIDIA
2016-03-29 11:31 - 2016-03-29 11:31 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-29 11:31 - 2016-03-22 04:25 - 06369728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-03-29 11:31 - 2016-03-22 04:25 - 02993088 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-03-29 11:31 - 2016-03-22 04:25 - 02561472 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-03-29 11:31 - 2016-03-22 04:25 - 01264064 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-03-29 11:31 - 2016-03-22 04:25 - 00532536 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-03-29 11:31 - 2016-03-22 04:25 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-03-29 11:31 - 2016-03-22 04:25 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-03-29 11:31 - 2016-03-22 04:25 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-03-29 11:31 - 2016-03-18 20:10 - 06253721 _____ C:\Windows\system32\nvcoproc.bin
2016-03-29 11:30 - 2016-03-22 06:12 - 42923576 _____ C:\Windows\system32\nvcompiler.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 37567424 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 31555008 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 25321408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 21355248 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 20897416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 19004040 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 17748712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 17342392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 17248408 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 16446032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 14128840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 12567608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-03-29 11:30 - 2016-03-22 06:12 - 10550736 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 08659472 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 03714472 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 03286992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 03235896 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 02809280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436472.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436472.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00959544 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00889400 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00753208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00695864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00678520 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00571912 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00501896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00377792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-03-29 11:30 - 2016-03-22 06:12 - 00037091 _____ C:\Windows\system32\nvinfo.pb
2016-03-29 11:30 - 2016-03-22 06:12 - 00000139 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-03-29 11:30 - 2016-03-22 06:12 - 00000139 _____ C:\Windows\system32\nv-vk64.json
2016-03-27 12:08 - 2016-03-27 12:08 - 00000000 ____D C:\Users\Jan\Documents\Razer
2016-03-24 18:58 - 2016-03-24 18:58 - 06868672 _____ (Piriform Ltd) C:\Users\Jan\Downloads\ccsetup516.exe
2016-03-23 11:36 - 2016-03-23 11:36 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2016-03-23 11:36 - 2016-02-02 20:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys
2016-03-23 11:36 - 2016-01-31 21:17 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-03-23 11:36 - 2016-01-31 20:07 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-03-23 11:36 - 2016-01-31 19:42 - 03320832 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-03-23 11:36 - 2016-01-31 19:14 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-03-23 11:36 - 2016-01-31 18:24 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-03-23 11:36 - 2016-01-31 18:20 - 02464256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-03-23 11:35 - 2016-02-09 03:31 - 22365472 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-03-23 11:35 - 2016-02-09 03:31 - 19794896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-03-23 11:35 - 2016-02-09 03:31 - 02757616 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-03-23 11:35 - 2016-02-09 03:31 - 02412576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-03-23 11:35 - 2016-02-09 03:31 - 00273264 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-03-23 11:35 - 2016-02-08 22:55 - 02712576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-03-23 11:35 - 2016-02-08 22:15 - 02551808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2016-03-23 11:35 - 2016-02-08 22:02 - 01197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2016-03-23 11:35 - 2016-02-08 21:48 - 12879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-03-23 11:35 - 2016-02-08 21:43 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-03-23 11:35 - 2016-02-08 21:40 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2016-03-23 11:35 - 2016-02-08 21:39 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2016-03-23 11:35 - 2016-02-08 21:37 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2016-03-23 11:35 - 2016-02-08 21:35 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-03-23 11:35 - 2016-02-08 21:34 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2016-03-23 11:35 - 2016-02-08 21:33 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-03-23 11:35 - 2016-02-08 20:50 - 03120640 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-03-23 11:35 - 2016-02-08 19:55 - 02592256 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2016-03-23 11:35 - 2016-02-08 19:33 - 01278464 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2016-03-23 11:35 - 2016-02-08 19:12 - 14466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-03-23 11:35 - 2016-02-08 19:02 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-03-23 11:35 - 2016-02-08 19:00 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2016-03-23 11:35 - 2016-02-08 18:58 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2016-03-23 11:35 - 2016-02-08 18:55 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2016-03-23 11:35 - 2016-02-08 18:53 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2016-03-23 11:35 - 2016-02-08 18:53 - 01348096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-03-23 11:35 - 2016-02-08 18:50 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-03-23 11:35 - 2016-02-08 18:50 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2016-03-23 11:35 - 2016-02-08 18:48 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-03-23 11:35 - 2016-02-08 18:47 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2016-03-23 11:35 - 2016-02-08 18:44 - 00955392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-03-23 11:35 - 2016-02-05 16:46 - 01455104 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2016-03-23 11:35 - 2016-02-04 20:07 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\dhcpsapi.dll
2016-03-23 11:35 - 2016-02-04 19:35 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpsapi.dll
2016-03-23 11:35 - 2016-02-03 17:14 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2016-03-23 11:35 - 2016-02-03 17:11 - 01673728 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-03-23 11:35 - 2016-02-02 19:51 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-03-23 11:35 - 2016-02-02 19:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-03-23 11:35 - 2016-02-02 19:15 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2016-03-23 11:35 - 2016-02-02 19:01 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-03-23 11:35 - 2016-02-02 18:51 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-03-23 11:35 - 2016-02-02 18:48 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-03-23 11:35 - 2016-02-02 18:46 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-03-23 11:35 - 2016-02-02 18:41 - 02170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-03-23 11:35 - 2016-02-02 18:39 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-03-23 11:35 - 2016-01-27 17:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-03-23 11:35 - 2016-01-26 21:15 - 00072024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2016-03-23 11:35 - 2016-01-22 07:22 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-03-23 11:35 - 2016-01-22 07:11 - 01482240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2016-03-23 11:35 - 2016-01-21 21:35 - 00952928 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2016-03-23 11:35 - 2016-01-21 20:42 - 00786152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2016-03-23 11:35 - 2016-01-21 00:40 - 00099672 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-03-23 11:34 - 2016-02-07 01:05 - 00551256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2016-03-23 11:34 - 2016-02-07 00:41 - 00316760 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2016-03-23 11:34 - 2016-02-05 21:07 - 00378712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-03-23 11:34 - 2016-02-05 17:11 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2016-03-23 11:34 - 2016-02-05 17:11 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-03-23 11:34 - 2016-02-05 17:07 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-03-23 11:34 - 2016-02-05 17:02 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-03-23 11:34 - 2016-02-04 18:23 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-03-23 11:34 - 2016-02-04 18:22 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-03-23 11:34 - 2016-02-02 19:18 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-03-23 11:34 - 2016-01-31 19:17 - 00779264 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2016-03-22 18:08 - 2016-04-19 14:35 - 00000882 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-22 18:08 - 2016-03-22 18:08 - 00002796 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-03-22 18:08 - 2016-03-22 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-03-22 18:08 - 2016-03-22 18:08 - 00000000 ____D C:\Program Files\CCleaner
2016-03-22 18:05 - 2016-03-22 18:07 - 05600464 _____ (Piriform Ltd) C:\Users\Jan\Downloads\ccsetup515_slim.exe
2016-03-22 16:58 - 2016-04-19 14:35 - 00001769 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-03-22 16:58 - 2016-03-22 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-03-22 16:58 - 2016-03-22 16:58 - 00000000 ____D C:\Program Files\iTunes
2016-03-22 16:58 - 2016-03-22 16:58 - 00000000 ____D C:\Program Files\iPod
2016-03-22 16:58 - 2016-03-22 16:58 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-03-22 12:36 - 2016-03-22 12:36 - 00036872 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
2016-03-20 10:00 - 2016-03-20 10:00 - 00000000 ____D C:\Users\Jan\AppData\Local\ElevatedDiagnostics
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-19 15:08 - 2015-08-09 08:50 - 00003592 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-489078762-871934448-399521353-1001
2016-04-19 15:05 - 2015-08-30 11:43 - 00000000 ____D C:\Users\Jan\AppData\Roaming\EssentialPIM
2016-04-19 15:04 - 2015-08-09 19:46 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-19 15:02 - 2015-08-09 10:05 - 00001146 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-19 15:02 - 2015-08-09 10:05 - 00001142 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-19 15:01 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-19 14:53 - 2015-08-10 08:56 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-19 14:43 - 2015-06-17 21:46 - 06150350 _____ C:\Windows\system32\perfh007.dat
2016-04-19 14:43 - 2015-06-17 21:46 - 01772674 _____ C:\Windows\system32\perfc007.dat
2016-04-19 14:43 - 2014-03-18 12:03 - 00005430 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-19 14:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-04-19 14:35 - 2016-02-24 21:09 - 00000921 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2 Multiplayer.lnk
2016-04-19 14:35 - 2016-02-24 21:09 - 00000916 _____ C:\Users\Public\Desktop\American Truck Simulator Multiplayer.lnk
2016-04-19 14:35 - 2016-02-15 20:24 - 00000867 _____ C:\Users\Jan\Desktop\Steam.lnk
2016-04-19 14:35 - 2015-12-08 21:50 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2016-04-19 14:35 - 2015-11-03 19:57 - 00001772 _____ C:\Users\Jan\Desktop\Word 2013.lnk
2016-04-19 14:35 - 2015-08-31 16:42 - 00002838 _____ C:\Users\Jan\Desktop\Excel 2013.lnk
2016-04-19 14:35 - 2015-08-31 16:42 - 00002769 _____ C:\Users\Jan\Desktop\PowerPoint 2013.lnk
2016-04-19 14:35 - 2015-08-30 13:14 - 00001251 _____ C:\Users\Jan\Desktop\Landwirtschafts Simulator 15 .lnk
2016-04-19 14:35 - 2015-08-30 12:46 - 00001945 _____ C:\Users\Public\Desktop\Samsung Kies 3.lnk
2016-04-19 14:35 - 2015-08-30 12:28 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-04-19 14:35 - 2015-08-30 12:28 - 00002031 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-04-19 14:35 - 2015-08-30 12:15 - 00001089 _____ C:\Users\Public\Desktop\phase-6 desktop.lnk
2016-04-19 14:35 - 2015-08-30 11:54 - 00001042 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-04-19 14:35 - 2015-08-30 11:43 - 00001027 _____ C:\Users\Public\Desktop\EssentialPIM.lnk
2016-04-19 14:35 - 2015-08-30 11:41 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-04-19 14:35 - 2015-08-30 11:40 - 00000990 _____ C:\Users\Jan\Desktop\IrfanView 64.lnk
2016-04-19 14:35 - 2015-08-09 10:06 - 00002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-19 14:35 - 2015-08-09 10:06 - 00002159 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-19 14:35 - 2015-07-15 18:58 - 00001272 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HD Audio-Manager.lnk
2016-04-19 14:35 - 2015-07-15 18:58 - 00001051 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-04-19 14:35 - 2015-07-15 18:57 - 00000469 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-04-19 14:35 - 2015-07-15 18:57 - 00000467 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-04-19 14:35 - 2015-01-12 15:58 - 00001357 _____ C:\Users\Public\Desktop\CyberLink PowerDirector 10.lnk
2016-04-19 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\schemas
2016-04-19 13:51 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-04-19 13:02 - 2013-08-22 16:44 - 00381472 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-18 18:42 - 2015-08-09 18:56 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-04-18 18:42 - 2015-08-09 18:56 - 00000000 ___SD C:\Windows\system32\GWX
2016-04-18 18:42 - 2015-08-09 18:56 - 00000000 ____D C:\Windows\system32\appraiser
2016-04-18 18:41 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-04-18 17:09 - 2015-01-12 14:48 - 00000000 ____D C:\Windows\Panther
2016-04-18 17:07 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-04-18 17:05 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-04-18 16:45 - 2015-08-09 11:47 - 00000000 ____D C:\Windows\system32\MRT
2016-04-18 16:42 - 2015-08-09 11:47 - 135176864 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-04-18 16:39 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-16 17:21 - 2016-03-12 12:26 - 00000000 ____D C:\Program Files (x86)\Razer
2016-04-16 17:14 - 2016-01-12 20:47 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-04-16 17:13 - 2016-03-09 15:46 - 01737080 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-16 17:13 - 2016-03-09 15:46 - 01501488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-04-16 17:13 - 2016-03-09 15:46 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-04-16 17:07 - 2016-03-12 12:31 - 00000000 ____D C:\Users\Jan\AppData\Local\Razer
2016-04-16 17:07 - 2016-03-12 12:26 - 00000000 ____D C:\ProgramData\Razer
2016-04-11 19:01 - 2015-07-15 18:57 - 00000000 ____D C:\Users\Jan
2016-04-10 21:14 - 2015-08-09 09:00 - 00000000 ____D C:\Users\Jan\AppData\Local\CrashDumps
2016-04-10 17:41 - 2016-02-07 17:03 - 00000000 ____D C:\Users\Jan\Documents\American Truck Simulator
2016-04-09 12:41 - 2015-08-30 11:54 - 00000000 ____D C:\Users\Jan\AppData\Roaming\vlc
2016-04-09 10:35 - 2015-08-30 12:20 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Mozilla
2016-04-09 09:45 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-04-05 23:53 - 2015-01-12 15:43 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-05 23:53 - 2015-01-12 15:43 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-05 15:36 - 2015-11-03 21:23 - 00000222 _____ C:\Users\Jan\Desktop\DiRT Rally.url
2016-04-02 19:54 - 2016-03-02 16:14 - 00000000 ____D C:\Users\Jan\Documents\Project CARS
2016-03-29 11:31 - 2015-06-17 12:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-29 11:31 - 2015-06-17 12:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-03-29 11:31 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2016-03-23 13:08 - 2015-08-31 20:54 - 00000000 ____D C:\Users\Jan\Documents\Euro Truck Simulator 2
2016-03-23 11:41 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2016-03-23 10:48 - 2015-08-30 12:46 - 00000000 ____D C:\Users\Jan\Documents\SelfMV
2016-03-22 22:19 - 2015-07-15 18:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-22 16:58 - 2015-08-30 11:41 - 00000000 ____D C:\Program Files\Common Files\Apple
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-04-10 16:17 - 2016-04-10 16:20 - 0127488 _____ () C:\Users\Jan\AppData\Roaming\Installer.dat
2015-06-17 13:07 - 2015-06-17 13:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-04-10 12:27
==================== Ende von FRST.txt ============================ |