Trojaner-Board - Flashplayer & Co

Trojaner-Board (https://www.trojaner-board.de/)

- Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)

- - Flashplayer & Co (https://www.trojaner-board.de/172187-flashplayer-co.html)

Sieht dir Beitrag #10 an von dir. Von dem geposteten MBAM Log fehlen die Kopfdaten.

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 

Suchlaufdatum: 18.10.2015

Suchlaufzeit: 09:35

Protokolldatei: mbam 4.txt

Administrator: Ja
 

Version: 2.2.0.1024

Malware-Datenbank: v2015.10.17.06

Rootkit-Datenbank: v2015.10.16.01

Lizenz: Kostenlose Version

Malware-Schutz: Deaktiviert

Schutz vor bösartigen Websites: Deaktiviert

Selbstschutz: Deaktiviert
 

Betriebssystem: Windows 7 Service Pack 1

CPU: x64

Dateisystem: NTFS

Benutzer: Eddy
 

Suchlauftyp: Bedrohungssuchlauf

Ergebnis: Abgeschlossen

Durchsuchte Objekte: 363092

Abgelaufene Zeit: 18 Min., 9 Sek.
 

Speicher: Aktiviert

Start: Aktiviert

Dateisystem: Aktiviert

Archive: Aktiviert

Rootkits: Deaktiviert

Heuristik: Aktiviert

PUP: Warnen

PUM: Aktiviert
 

Prozesse: 0

(keine bösartigen Elemente erkannt)
 

Module: 0

(keine bösartigen Elemente erkannt)
 

Registrierungsschlüssel: 14

PUP.Optional.BrowserUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Browser Updater, Löschen bei Neustart, [2cdef95f167560d6e83611549172d729], 

PUP.Optional.OpenCandy, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\OpenCandyHelperRunAsStandardUser755B9B959B6046D0B7A9FE12E79744E2, Löschen bei Neustart, [9b6f23355f2c86b0ede32266e71c4cb4], 

PUP.Optional.OpenCandy, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\OpenCandyHelperRunOnceE359E82BD4E742B2BB80BA9F7452CEC6, Löschen bei Neustart, [5baf75e3c3c83ff76b65028643c0ed13], 

PUP.Optional.ProtectedSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ProtectedSearch, Löschen bei Neustart, [f6140850e7a4082e73b9513c36cd59a7], 

PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct3317892, In Quarantäne, [86844612f09b50e66cca7ffda260cd33], 

PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21025663-595C-4163-BE9F-95FC77426885}, In Quarantäne, [03076eea0d7e9a9cd80b54192bd89f61], 

PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2188FB19-3CB9-4901-821F-D8161EE4A029}, In Quarantäne, [4dbd93c50e7d2f070cd86607768d8c74], 

PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{54D72285-6F00-4D85-8EF2-06D6AA19FCF8}, In Quarantäne, [d5358dcbeaa13cfaf6ef600d857e09f7], 

PUP.Optional.Widdit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, In Quarantäne, [719964f41a71a88e4acbced359aab34d], 

PUP.Optional.APNToolBar.Gen, HKU\S-1-5-18\SOFTWARE\AskPartnerNetwork, In Quarantäne, [93771f39830839fd3a26abd127dbcf31], 

PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3918896019-351383226-3202211127-1000\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct3317892, In Quarantäne, [e228a9af6229ee4878b9b0cc05fda15f], 

PUP.Optional.InetStat, HKU\S-1-5-21-3918896019-351383226-3202211127-1000\SOFTWARE\INETSTAT, In Quarantäne, [ec1e6eea8dfe2e082038b1fe49ba649c], 

PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3918896019-351383226-3202211127-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CHCT3317892, In Quarantäne, [a367f167860510263d6cf85d42c1ef11], 

PUP.Optional.InetStat, HKU\S-1-5-21-3918896019-351383226-3202211127-1000_Classes\APPLICATIONS\inetstat.exe, In Quarantäne, [c644a2b6b0db033399befbb4a85bd32d], 
 

Registrierungswerte: 5

PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21025663-595c-4163-be9f-95fc77426885}|AppName, Plus-HD-3.8-bg.exe, In Quarantäne, [03076eea0d7e9a9cd80b54192bd89f61]

PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2188fb19-3cb9-4901-821f-d8161ee4a029}|AppName, Plus-HD-3.8-buttonutil.exe, In Quarantäne, [4dbd93c50e7d2f070cd86607768d8c74]

PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{54d72285-6f00-4d85-8ef2-06d6aa19fcf8}|AppName, Plus-HD-3.8-codedownloader.exe, In Quarantäne, [d5358dcbeaa13cfaf6ef600d857e09f7]

PUP.Optional.Widdit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|SuggestionsURL_JSON, hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=66920&gid=66920-6787-1380349316142-67E3F1CB5ADBC69DD93C78335706187F&dbCode=1&command={searchTerms}, In Quarantäne, [719964f41a71a88e4acbced359aab34d]

PUP.Optional.InetStat, HKU\S-1-5-21-3918896019-351383226-3202211127-1000\SOFTWARE\INETSTAT|status, In Quarantäne, [ec1e6eea8dfe2e082038b1fe49ba649c], 
 

Registrierungsdaten: 0

(keine bösartigen Elemente erkannt)
 

Ordner: 6

PUP.Optional.APNToolBar.Gen, C:\ProgramData\APN\APN-Stub, In Quarantäne, [9872e5734e3d58de99fc55f6946e649c], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Temp\Techgile, In Quarantäne, [a8624117cdbe8da9cb106908da28c040], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM\dat, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehdkbdjlfcbljimghjcdnnimkhonahp\1.0.1_0, In Quarantäne, [06041246e1aa0e28d4a9e6891ee6738d], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehdkbdjlfcbljimghjcdnnimkhonahp, In Quarantäne, [06041246e1aa0e28d4a9e6891ee6738d], 
 

Dateien: 13

PUP.Optional.APNToolBar, C:\Users\Eddy\AppData\Local\Temp\APNSetup.exe, In Quarantäne, [17f3fb5d08836bcbb9ebd680bb46718f], 

PUP.Optional.DownloadGuide, C:\Users\Eddy\Downloads\master_CB-DL-Manager.exe, In Quarantäne, [b55532267219dc5acc799cbc6899d828], 

PUP.Optional.Downloader, C:\Users\Eddy\Downloads\OpenOffice - CHIP-Installer.exe, In Quarantäne, [d535e3754c3ffd39878eab76bd439f61], 

PUP.Optional.DVDVideoSoft, C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi, In Quarantäne, [cb3f78e090fb95a17aa6d899d3300ef2], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM\dat\JkLrqoVe.exe.config, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM\dat\VCraHIF.exe.config, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM\EEEEiLbM.dat, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM\EEEEiLbM.exe.config, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.PullUpdate, C:\ProgramData\KBwCtM\info.dat, In Quarantäne, [1eec56026b201f17f1cf2747c440b64a], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehdkbdjlfcbljimghjcdnnimkhonahp\1.0.1_0\manifest.json, In Quarantäne, [06041246e1aa0e28d4a9e6891ee6738d], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehdkbdjlfcbljimghjcdnnimkhonahp\1.0.1_0\background.js, In Quarantäne, [06041246e1aa0e28d4a9e6891ee6738d], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehdkbdjlfcbljimghjcdnnimkhonahp\1.0.1_0\content.js, In Quarantäne, [06041246e1aa0e28d4a9e6891ee6738d], 

PUP.Optional.Techgile, C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehdkbdjlfcbljimghjcdnnimkhonahp\1.0.1_0\icon.png, In Quarantäne, [06041246e1aa0e28d4a9e6891ee6738d], 
 

Physische Sektoren: 0

(keine bösartigen Elemente erkannt)
 
 

(end)

Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

http://www.trojaner-board.de/picture...&pictureid=611

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-10-2015

durchgeführt von Eddy (Administrator) auf ZAUBERKISTE (18-10-2015 14:26:58)

Gestartet von C:\Users\Eddy\Downloads

Geladene Profile: Eddy (Verfügbare Profile: Eddy)

Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe

(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.6.1180.0\McCSPServiceHost.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(www.rene-zeidler.de) C:\Users\Eddy\Desktop\Installationen\Snipping Tool Plus.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe

(Farbar) C:\Users\Eddy\Downloads\FRST64(2).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2280232 2010-07-29] (Synaptics Incorporated)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12673128 2011-08-16] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2277480 2011-08-16] (Realtek Semiconductor)

HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)

HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-02-08] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)

HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)

HKLM-x32\...\Run: [ArcadeMovieService] => C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-08-26] (CyberLink Corp.)

HKLM-x32\...\Run: [SAFE12 HotKeys] => C:\Program Files (x86)\Steganos Safe 12\SteganosHotKeyService.exe [83456 2010-10-12] (Steganos Software GmbH)

HKLM-x32\...\Run: [SAFE12 File Redirection Starter] => C:\Program Files (x86)\Steganos Safe 12\fredirstarter.exe [17408 2010-10-12] (Steganos Software GmbH)

HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [933888 2013-12-17] (AVM Berlin)

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKLM\...\Policies\Explorer: [NoFolderOptions] 0

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-09-21] (Sandboxie Holdings, LLC)

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Run: [winClient] => C:\Program Files (x86)\mobilcom-debitel cloud\md cloud.exe [8192512 2015-07-16] ()

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Policies\Explorer: [NoFolderOptions] 0

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Policies\Explorer: [NoControlPanel] 0

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: F - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {0697b47b-bf20-11e2-9943-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {0697b48a-bf20-11e2-9943-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {0697b4a0-bf20-11e2-9943-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {180dbe36-48a1-11e5-94ad-dc0ea117d7cb} - F:\pushinst.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {404a39eb-9281-11e4-83f2-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc7fa-c80b-11e4-b449-9439e575c14b} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc808-c80b-11e4-b449-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc815-c80b-11e4-b449-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc823-c80b-11e4-b449-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {631ba6d5-be30-11e2-872c-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {631ba6fe-be30-11e2-872c-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {7b859413-8e91-11e3-9bef-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {86adbbe7-c8f6-11e4-a470-9439e575c14b} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {942cb90a-2e74-11e4-80e8-9439e575c14b} - F:\setup_vmc_lite.exe /checkApplicationPresence

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {c40524bb-64b7-11e2-9bab-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {c40524ca-64b7-11e2-9bab-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\es.scr [2968064 2010-12-21] ()

Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

ShellIconOverlayIdentifiers: ["11CloudOverlayIcon"] -> {7287689B-8C79-4D52-A8C7-CC11D4D8ECE3} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["12CloudOverlayIcon"] -> {75804F50-7528-4089-91DC-ABD7144EC960} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["13CloudOverlayIcon"] -> {8B680D9E-7971-4ED5-BC1D-C0B7CA89B5A6} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["14CloudOverlayIcon"] -> {2FFEFB84-A51D-4FAC-B125-17E44C87BC84} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["15CloudOverlayIcon"] -> {D0F0E8F3-5536-4A04-80A1-40FB42B296EC} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["16CloudOverlayIcon"] -> {5B3DEF8D-36B5-4A0C-AF95-BB774BE05E8F} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-08-03]

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe (McAfee, Inc.)
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Hosts: 0.0.0.1        mssplus.mcafee.com

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1

Tcpip\..\Interfaces\{203C3DCC-E305-446D-912C-0B363EB21E9D}: [NameServer] 193.189.244.206 193.189.244.225

Tcpip\..\Interfaces\{523918AC-DF71-49FB-B539-0DF001A2E37C}: [DhcpNameServer] 192.168.9.1 192.168.9.1

Tcpip\..\Interfaces\{6FB089AB-478C-4DAD-BA8C-4D2BC4B06275}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Tcpip\..\Interfaces\{8B0F37F6-C332-4D6A-922C-0B5A25087487}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Tcpip\..\Interfaces\{E4C74C11-8C6D-4D41-8E7A-4F36FE51FB83}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Tcpip\..\Interfaces\{F92DE5EC-65DF-44BB-ACE9-97856A9203E7}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Tcpip\..\Interfaces\{FA06C5A3-8B60-42F4-9E59-7AEEA3307B47}: [NameServer] 193.189.244.206 193.189.244.225
 

Internet Explorer:

==================

HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}

SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}

SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)

BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)

BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)

Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-08-21] (McAfee, Inc.)

Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-08-21] (McAfee, Inc.)
 

FireFox:

========

FF ProfilePath: C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil

FF DefaultSearchUrl: hxxp://www.google.de/search?hl=de&gl=de&lr=&ie=UTF-8&oe=UTF-8&meta=lr=lang_de&q=

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()

FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-08-21] ()

FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll [2014-04-15] (Adobe Systems, Inc.)

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2012-04-14] (Google)

FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)

FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-08-21] ()

FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\12\NP_wtapp.dll [2015-01-04] ()

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF SearchPlugin: C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\searchplugins\google-images.xml [2014-10-02]

FF SearchPlugin: C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\searchplugins\google-maps.xml [2014-10-02]

FF Extension: Amazon-Icon - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\amazon-icon@giga.de [2014-01-11] [ist nicht signiert]

FF Extension: Flagfox - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\info@flagfox.net [2013-05-14] [ist nicht signiert]

FF Extension: FoxyDeal - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-09-28] [ist nicht signiert]

FF Extension: ICQ Sparberater - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\ciuvo-extension@icq.de.xpi [2012-03-13] [ist nicht signiert]

FF Extension: Adblock Plus - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-03-08] [ist nicht signiert]

FF Extension: Amazon-Icon - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\amazon-icon@giga.de [2014-01-11] [ist nicht signiert]

FF Extension: Click&Clean - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\clickclean@hotcleaner.com [2012-05-04] [ist nicht signiert]

FF Extension: Facebook Disconnect - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\facebook@disconnect.me.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Kein Name - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Long URL Please - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\longurlplease@darragh.curran.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Stealthy - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\stealthyextension@gmail.com.xpi [2012-05-04] [ist nicht signiert]

FF Extension: PrivacyChoice TrackerBlock - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\trackerblock@privacychoice.org.xpi [2012-05-04] [ist nicht signiert]

FF Extension: NoScript - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Adblock Plus - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Amazon-Icon - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\Extensions\amazon-icon@giga.de [2014-01-11] [ist nicht signiert]

FF Extension: Kein Name - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\Extensions\cliqz@cliqz.com.xpi [2014-10-02] [ist nicht signiert]

FF Extension: Kein Name - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com [2015-10-03] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-09-25]

FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 => nicht gefunden

FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 12\pfplugin => nicht gefunden

FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2011-10-20] [ist nicht signiert]

FF HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\extensions\cliqz@cliqz.com => nicht gefunden
 

Chrome: 

=======

CHR Profile: C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (SiteAdvisor) - C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2012-07-09]

CHR Extension: (Google Wallet) - C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-24]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-09-25]

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-09-25]
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S2 CLKMSVC10_34E30CCC; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [245744 2011-05-06] (CyberLink)

S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-02-13] (WildTangent)

R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [157928 2015-09-22] (McAfee, Inc.)

R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [782608 2015-08-21] (McAfee, Inc.)

S3 McAWFwk; c:\Program Files\mcafee\msc\McAWFwk.exe [224704 2011-03-09] (McAfee, Inc.)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [289256 2015-07-31] (McAfee, Inc.)

R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe [1694152 2015-09-01] (McAfee, Inc.)

R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [639456 2015-07-17] (McAfee, Inc.)

S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.)

R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc.)

R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.)

S2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()

S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [246112 2015-03-11] ()

R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)

S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4518008 2013-05-01] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]

S2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)

S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [177800 2015-09-21] (Sandboxie Holdings, LLC)

S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)

S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Datei ist nicht signiert]

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2013-12-17] (AVM Berlin)

S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-08-30] (Broadcom Corporation.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)

R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-09-04] (Symantec Corporation)

R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()

S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()

S3 fwlanusb6; C:\Windows\System32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH)

R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-10-04] (GFI Software)

S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)

R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-07-24] (AnchorFree Inc.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)

R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.)

R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.)

R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.)

R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.)

R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)

S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)

R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37960 2015-09-22] (McAfee, Inc.)

R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.)

R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [191624 2015-09-21] (Sandboxie Holdings, LLC)

R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )

R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2012-03-12] () [Datei ist nicht signiert]

R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)

U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

U3 ae5e1tjh; C:\Windows\System32\Drivers\ae5e1tjh.sys [0 ] (Advanced Micro Devices) <==== ACHTUNG (Null Byte Datei/Ordner)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-10-18 14:25 - 2015-10-18 14:26 - 02196992 _____ (Farbar) C:\Users\Eddy\Downloads\FRST64(2).exe

2015-10-18 13:59 - 2015-10-18 13:59 - 00007644 _____ C:\mbam 4.txt

2015-10-18 13:59 - 2015-10-18 13:59 - 00001287 _____ C:\Users\Eddy\Desktop\mbam 3.txt

2015-10-18 11:13 - 2015-10-18 11:13 - 02196992 _____ (Farbar) C:\Users\Eddy\Downloads\FRST64(1).exe

2015-10-18 11:09 - 2015-10-18 11:09 - 00002994 _____ C:\Users\Eddy\Desktop\JRT.txt

2015-10-18 11:02 - 2015-10-18 11:02 - 01798976 _____ (Malwarebytes) C:\Users\Eddy\Downloads\JRT.exe

2015-10-18 11:02 - 2015-10-05 23:26 - 01801288 _____ (Malwarebytes) C:\Users\Eddy\Desktop\JRT.exe

2015-10-18 11:00 - 2015-10-18 11:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee

2015-10-18 10:52 - 2015-10-18 10:53 - 00000000 ____D C:\AdwCleaner

2015-10-18 10:47 - 2015-10-18 10:47 - 01682432 _____ C:\Users\Eddy\Downloads\AdwCleaner_5.013.exe

2015-10-18 10:43 - 2015-10-18 10:43 - 00007644 _____ C:\Users\Eddy\Desktop\mbam 2.txt

2015-10-18 10:42 - 2015-10-18 10:42 - 00007644 _____ C:\mbam 2.txt

2015-10-18 10:42 - 2015-10-18 10:42 - 00001022 _____ C:\Users\Eddy\Desktop\mbam.txt

2015-10-18 10:38 - 2015-10-18 10:40 - 00001022 _____ C:\mbam.txt

2015-10-18 09:34 - 2015-10-18 09:34 - 00001066 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-10-18 09:33 - 2015-10-18 09:34 - 22908888 _____ (Malwarebytes ) C:\Users\Eddy\Downloads\mbam-setup-2.2.0.1024.exe

2015-10-17 20:43 - 2015-10-17 20:43 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Eddy\Downloads\revosetup95.exe

2015-10-17 20:43 - 2015-10-17 20:43 - 00001228 _____ C:\Users\Eddy\Desktop\Revo Uninstaller.lnk

2015-10-17 20:43 - 2015-10-17 20:43 - 00000000 ____D C:\Program Files (x86)\VS Revo Group

2015-10-17 20:07 - 2015-10-17 20:09 - 00059125 _____ C:\Users\Eddy\Downloads\Addition.txt

2015-10-17 20:06 - 2015-10-18 14:27 - 00000000 ____D C:\FRST

2015-10-17 20:06 - 2015-10-18 14:26 - 00028226 _____ C:\Users\Eddy\Downloads\FRST.txt

2015-10-17 20:03 - 2015-10-17 20:04 - 02196992 _____ (Farbar) C:\Users\Eddy\Downloads\FRST64.exe

2015-10-16 22:12 - 2015-10-16 22:13 - 00000000 ____D C:\Users\Eddy\Desktop\Flic Flac

2015-10-15 13:43 - 2015-10-15 13:43 - 00277960 _____ C:\Windows\Minidump\101515-11606-01.dmp

2015-10-15 09:00 - 2015-09-18 21:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2015-10-15 09:00 - 2015-09-18 21:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2015-10-15 09:00 - 2015-09-18 21:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2015-10-14 10:21 - 2015-09-18 21:31 - 00391784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-10-14 10:21 - 2015-09-18 20:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-10-14 10:21 - 2015-09-16 06:48 - 25851904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-10-14 10:21 - 2015-09-16 06:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-10-14 10:21 - 2015-09-16 06:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2015-10-14 10:21 - 2015-09-16 06:22 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-10-14 10:21 - 2015-09-16 06:21 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2015-10-14 10:21 - 2015-09-16 06:14 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-10-14 10:21 - 2015-09-16 06:13 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-10-14 10:21 - 2015-09-16 06:10 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-10-14 10:21 - 2015-09-16 06:09 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-10-14 10:21 - 2015-09-16 06:08 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-10-14 10:21 - 2015-09-16 06:08 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-10-14 10:21 - 2015-09-16 06:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-10-14 10:21 - 2015-09-16 06:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2015-10-14 10:21 - 2015-09-16 06:01 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-10-14 10:21 - 2015-09-16 05:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-10-14 10:21 - 2015-09-16 05:58 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-10-14 10:21 - 2015-09-16 05:50 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2015-10-14 10:21 - 2015-09-16 05:46 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-10-14 10:21 - 2015-09-16 05:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-10-14 10:21 - 2015-09-16 05:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-10-14 10:21 - 2015-09-16 05:43 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-10-14 10:21 - 2015-09-16 05:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-10-14 10:21 - 2015-09-16 05:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-10-14 10:21 - 2015-09-16 05:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-10-14 10:21 - 2015-09-16 05:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-10-14 10:21 - 2015-09-16 05:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2015-10-14 10:21 - 2015-09-16 05:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-10-14 10:21 - 2015-09-16 05:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2015-10-14 10:21 - 2015-09-16 05:29 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-10-14 10:21 - 2015-09-16 05:29 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-10-14 10:21 - 2015-09-16 05:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-10-14 10:21 - 2015-09-16 05:28 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-10-14 10:21 - 2015-09-16 05:26 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-10-14 10:21 - 2015-09-16 05:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-10-14 10:21 - 2015-09-16 05:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-10-14 10:21 - 2015-09-16 05:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-10-14 10:21 - 2015-09-16 05:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-10-14 10:21 - 2015-09-16 05:22 - 14458368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-10-14 10:21 - 2015-09-16 05:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-10-14 10:21 - 2015-09-16 05:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2015-10-14 10:21 - 2015-09-16 05:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-10-14 10:21 - 2015-09-16 05:11 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-10-14 10:21 - 2015-09-16 05:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2015-10-14 10:21 - 2015-09-16 05:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-10-14 10:21 - 2015-09-16 05:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-10-14 10:21 - 2015-09-16 05:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-10-14 10:21 - 2015-09-16 05:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-10-14 10:21 - 2015-09-16 05:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-10-14 10:21 - 2015-09-16 04:59 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-10-14 10:21 - 2015-09-16 04:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-10-14 10:21 - 2015-09-16 04:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-10-14 10:21 - 2015-09-16 04:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-10-14 10:21 - 2015-09-16 04:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-10-14 10:21 - 2015-09-16 04:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-10-14 10:21 - 2015-09-16 04:48 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-10-14 10:21 - 2015-09-16 04:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-10-14 10:21 - 2015-09-16 04:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-10-14 10:21 - 2015-09-16 04:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-10-14 09:36 - 2015-08-06 20:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-10-14 09:36 - 2015-08-06 20:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2015-10-14 09:36 - 2015-08-06 19:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-10-14 09:36 - 2015-08-06 19:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll

2015-10-14 09:32 - 2015-10-01 20:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2015-10-14 09:32 - 2015-10-01 20:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2015-10-14 09:32 - 2015-10-01 20:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2015-10-14 09:32 - 2015-10-01 20:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2015-10-14 09:32 - 2015-10-01 20:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2015-10-14 09:32 - 2015-10-01 20:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2015-10-14 09:32 - 2015-10-01 20:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2015-10-14 09:32 - 2015-10-01 19:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll

2015-10-14 09:32 - 2015-10-01 19:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2015-10-14 09:32 - 2015-09-29 05:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-10-14 09:32 - 2015-09-29 05:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2015-10-14 09:32 - 2015-09-29 05:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2015-10-14 09:32 - 2015-09-29 05:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2015-10-14 09:32 - 2015-09-29 05:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2015-10-14 09:32 - 2015-09-29 05:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-10-14 09:32 - 2015-09-29 05:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2015-10-14 09:32 - 2015-09-29 05:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2015-10-14 09:32 - 2015-09-29 05:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-10-14 09:32 - 2015-09-29 05:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-10-14 09:32 - 2015-09-29 05:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2015-10-14 09:32 - 2015-09-29 04:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2015-10-14 09:32 - 2015-09-29 04:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll

2015-10-14 09:32 - 2015-09-29 04:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2015-10-14 09:32 - 2015-09-29 04:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2015-10-14 09:32 - 2015-09-29 04:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-10-14 09:32 - 2015-09-29 04:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2015-10-14 09:32 - 2015-09-29 03:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2015-10-14 09:32 - 2015-09-29 03:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2015-10-14 09:32 - 2015-09-29 03:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2015-10-14 09:32 - 2015-09-29 03:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2015-10-14 09:32 - 2015-09-29 03:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-10-14 09:32 - 2015-09-25 20:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-10-14 09:32 - 2015-09-25 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2015-10-14 09:32 - 2015-09-25 20:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-10-14 09:32 - 2015-09-25 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-10-14 09:32 - 2015-09-25 19:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-10-14 09:32 - 2015-09-15 20:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-10-14 09:32 - 2015-09-15 20:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-10-14 09:32 - 2015-09-15 20:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-10-14 09:32 - 2015-09-15 20:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-10-14 09:32 - 2015-09-15 19:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-10-14 09:32 - 2015-09-15 19:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-10-14 09:32 - 2015-09-15 19:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-10-14 09:32 - 2015-09-15 19:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2015-10-03 14:00 - 2015-10-17 11:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-09-25 20:04 - 2015-09-25 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie

2015-09-25 11:33 - 2015-09-25 11:58 - 00000000 ___RD C:\Users\Eddy\Desktop\MM

2015-09-25 11:13 - 2015-09-25 11:14 - 00000000 ____D C:\Users\Eddy\Desktop\Eddy

2015-09-25 10:47 - 2015-09-25 11:10 - 00000000 ____D C:\Users\Eddy\Desktop\München

2015-09-22 08:43 - 2015-09-22 08:43 - 00000000 ____D C:\Users\Eddy\Desktop\Frankreich

2015-09-19 22:45 - 2015-10-06 14:12 - 00000836 _____ C:\Users\Eddy\Desktop\Gruissan - Verknüpfung.lnk

2015-09-19 22:44 - 2015-10-06 14:12 - 00000836 _____ C:\Users\Eddy\Desktop\Fun Pics - Verknüpfung.lnk

2015-09-19 22:42 - 2015-10-06 14:12 - 00000864 _____ C:\Users\Eddy\Desktop\Kamera Handy - Verknüpfung.lnk
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-10-18 14:04 - 2011-12-26 06:01 - 01530750 _____ C:\Windows\WindowsUpdate.log

2015-10-18 14:01 - 2015-07-16 09:48 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf9bdad3d0b7.job

2015-10-18 13:58 - 2014-12-31 12:55 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-10-18 13:56 - 2014-12-27 23:22 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-10-18 13:54 - 2014-05-08 21:26 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf6af359499f7e.job

2015-10-18 13:53 - 2015-02-06 09:43 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d041e08c2292bc.job

2015-10-18 13:48 - 2014-11-13 11:55 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfff27e964e0f2.job

2015-10-18 13:20 - 2015-08-05 13:11 - 00000000 ___RD C:\Users\Eddy\Desktop\F.I

2015-10-18 12:54 - 2009-07-14 06:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-10-18 12:54 - 2009-07-14 06:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-10-18 12:52 - 2011-12-26 14:51 - 00700134 _____ C:\Windows\system32\perfh007.dat

2015-10-18 12:52 - 2011-12-26 14:51 - 00149984 _____ C:\Windows\system32\perfc007.dat

2015-10-18 12:52 - 2009-07-14 07:13 - 01622300 _____ C:\Windows\system32\PerfStringBackup.INI

2015-10-18 10:54 - 2013-10-03 07:47 - 00320894 _____ C:\Windows\PFRO.log

2015-10-18 10:54 - 2013-10-03 07:47 - 00086709 _____ C:\Windows\setupact.log

2015-10-18 10:54 - 2012-07-09 19:54 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-10-18 10:54 - 2012-03-08 22:29 - 00000000 ____D C:\ProgramData\clear.fi

2015-10-18 10:54 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-10-18 10:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help

2015-10-18 10:17 - 2014-05-17 04:00 - 00000450 ____H C:\Windows\Tasks\Norton Security Scan for Eddy.job

2015-10-18 09:34 - 2014-12-31 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-10-18 09:34 - 2014-12-31 12:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-10-17 13:50 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp

2015-10-17 13:09 - 2014-08-22 07:57 - 00000000 ____D C:\Users\Eddy\AppData\Local\Adobe

2015-10-17 13:08 - 2014-12-27 23:22 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2015-10-17 13:08 - 2014-12-27 23:22 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2015-10-17 13:08 - 2014-12-27 23:22 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2015-10-17 11:22 - 2012-10-20 10:38 - 00002328 _____ C:\Windows\Sandboxie.ini

2015-10-17 11:21 - 2012-05-02 15:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-10-17 11:21 - 2011-10-20 11:04 - 00000000 ____D C:\Program Files (x86)\McAfee

2015-10-16 22:10 - 2012-03-08 22:20 - 00000000 ____D C:\Users\Eddy\AppData\Roaming\vlc

2015-10-16 18:05 - 2015-07-02 13:46 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-10-16 18:05 - 2014-12-29 12:01 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

2015-10-16 14:32 - 2012-07-03 09:27 - 00001102 _____ C:\Windows\wininit.ini

2015-10-15 22:37 - 2014-12-10 08:00 - 00000000 ____D C:\Windows\system32\appraiser

2015-10-15 22:37 - 2014-05-07 00:18 - 00000000 ___SD C:\Windows\system32\CompatTel

2015-10-15 19:45 - 2015-02-12 09:53 - 00000000 ____D C:\Windows\rescache

2015-10-15 13:43 - 2012-03-23 08:16 - 00000000 ____D C:\Windows\Minidump

2015-10-15 00:19 - 2013-08-08 06:21 - 00000000 ____D C:\Windows\system32\MRT

2015-10-15 00:14 - 2012-03-13 06:40 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-10-13 13:22 - 2012-03-12 19:20 - 00039262 _____ C:\Users\Eddy\AppData\Roaming\wklnhst.dat

2015-10-09 18:37 - 2012-03-09 18:08 - 00000000 ____D C:\Users\Eddy\AppData\Roaming\UseNeXT

2015-10-09 08:37 - 2015-04-04 22:40 - 00000000 ___SD C:\Windows\system32\GWX

2015-10-09 00:01 - 2015-04-04 22:40 - 00000000 ___SD C:\Windows\SysWOW64\GWX

2015-10-05 09:50 - 2014-12-31 12:54 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-10-05 09:50 - 2014-12-31 12:54 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-10-05 09:50 - 2014-12-31 12:54 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2011-01-12 02:00 - 2011-01-12 02:00 - 0146944 _____ () C:\Program Files (x86)\Common Files\dsfFLACDecoder.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0221184 _____ () C:\Program Files (x86)\Common Files\dsfFLACEncoder.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0204800 _____ () C:\Program Files (x86)\Common Files\dsfNativeFLACSource.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0195584 _____ () C:\Program Files (x86)\Common Files\dsfOggDemux2.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0240128 _____ () C:\Program Files (x86)\Common Files\dsfVorbisDecoder.dll

2009-07-11 23:08 - 2009-07-11 23:08 - 0001860 _____ () C:\Program Files (x86)\Common Files\Microsoft.VC90.CRT.manifest

2011-04-18 22:51 - 2011-04-18 22:51 - 0569680 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\MSVCP90.dll

2011-04-18 22:51 - 2011-04-18 22:51 - 0653136 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\MSVCR90.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0412672 _____ (Google) C:\Program Files (x86)\Common Files\vp8decoder.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0701440 _____ (Google) C:\Program Files (x86)\Common Files\vp8encoder.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0302592 _____ (Google) C:\Program Files (x86)\Common Files\webmmux.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0292352 _____ (Google) C:\Program Files (x86)\Common Files\webmsplit.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0030208 _____ () C:\Program Files (x86)\Common Files\wmpinfo.dll

2012-03-12 19:20 - 2015-10-13 13:22 - 0039262 _____ () C:\Users\Eddy\AppData\Roaming\wklnhst.dat

2014-12-14 11:38 - 2014-12-14 11:38 - 0000218 _____ () C:\Users\Eddy\AppData\Local\recently-used.xbel

2012-09-18 20:53 - 2013-03-12 22:33 - 0017408 _____ () C:\Users\Eddy\AppData\Local\WebpageIcons.db

2011-12-26 06:19 - 2011-12-26 06:21 - 0015635 _____ () C:\ProgramData\ArcadeDeluxe5.log
 

Einige Dateien in TEMP:

====================

C:\Users\Eddy\AppData\Local\Temp\2949bed4-2a1e-4dff-9381-53fec5dcdc56.exe

C:\Users\Eddy\AppData\Local\Temp\8faf27c8-f37e-4e3c-becd-8c21d9764108.exe

C:\Users\Eddy\AppData\Local\Temp\9b092af6-5a05-4f45-9f52-a715e16627ce.exe

C:\Users\Eddy\AppData\Local\Temp\amazonicon_v3.exe

C:\Users\Eddy\AppData\Local\Temp\amazoninstallernircmdc.exe

C:\Users\Eddy\AppData\Local\Temp\gsm3sys32.exe

C:\Users\Eddy\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe

C:\Users\Eddy\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe

C:\Users\Eddy\AppData\Local\Temp\jre-8u31-windows-au.exe

C:\Users\Eddy\AppData\Local\Temp\Quarantine.exe

C:\Users\Eddy\AppData\Local\Temp\SandboxieInstall.exe

C:\Users\Eddy\AppData\Local\Temp\sdanircmdc.exe

C:\Users\Eddy\AppData\Local\Temp\sdapskill.exe

C:\Users\Eddy\AppData\Local\Temp\SHSetup.exe

C:\Users\Eddy\AppData\Local\Temp\sqlite3.dll

C:\Users\Eddy\AppData\Local\Temp\vlc-2.1.2-win32.exe

C:\Users\Eddy\AppData\Local\Temp\vlc-2.1.3-win32.exe

C:\Users\Eddy\AppData\Local\Temp\vlc-2.1.5-win32.exe

C:\Users\Eddy\AppData\Local\Temp\vlc-2.2.1-win32.exe

C:\Users\Eddy\AppData\Local\Temp\wgs3_tzt.dll
 
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\Windows\system32\winlogon.exe => Datei ist digital signiert

C:\Windows\system32\wininit.exe => Datei ist digital signiert

C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert

C:\Windows\explorer.exe => Datei ist digital signiert

C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert

C:\Windows\system32\svchost.exe => Datei ist digital signiert

C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert

C:\Windows\system32\services.exe => Datei ist digital signiert

C:\Windows\system32\User32.dll => Datei ist digital signiert

C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert

C:\Windows\system32\userinit.exe => Datei ist digital signiert

C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert

C:\Windows\system32\rpcss.dll => Datei ist digital signiert

C:\Windows\system32\dnsapi.dll => Datei ist digital signiert

C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-10-11 10:39
 

==================== Ende von FRST.txt ============================

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-10-2015

durchgeführt von Eddy (2015-10-18 14:27:24)

Gestartet von C:\Users\Eddy\Downloads

Windows 7 Home Premium Service Pack 1 (X64) (2012-03-08 19:00:44)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-3918896019-351383226-3202211127-500 - Administrator - Disabled)

Eddy (S-1-5-21-3918896019-351383226-3202211127-1000 - Administrator - Enabled) => C:\Users\Eddy

fbwuser (S-1-5-21-3918896019-351383226-3202211127-1003 - Limited - Enabled)

Gast (S-1-5-21-3918896019-351383226-3202211127-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3918896019-351383226-3202211127-1002 - Limited - Enabled)
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}

FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.99 - NTI Corporation)

Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 1.0.1904 - CyberLink Corp.)

Acer Crystal Eye Webcam (x32 Version: 1.0.1904 - CyberLink Corp.) Hidden

Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3008 - Acer Incorporated)

Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3504 - Acer Incorporated)

Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)

Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3504 - Acer Incorporated)

Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0913.2011 - Acer Incorporated)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)

Adobe Bridge 1.0 (HKLM-x32\...\{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}) (Version: 1.0.1.1 - Adobe Systems)

Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)

Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden

Alien Intruders (HKLM-x32\...\11-com.novelgames.flashgames.invaders) (Version: 1.7.0 - Novel Games Limited)

Alien Intruders (x32 Version: 1.7.0 - Novel Games Limited) Hidden

ANNO 1503 GOLD (HKLM-x32\...\{DB833EF9-A198-49BE-970A-BD46F30BFBB4}) (Version: 1.05.00 - )

Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)

ATI Catalyst Install Manager (HKLM\...\{1D72BF42-E249-4EB7-CC4C-8CC09DAB180B}) (Version: 3.0.812.0 - ATI Technologies, Inc.)

Aurora 3D Animation Maker version 13.06.24 (HKLM-x32\...\{4F6B6582-B9F6-42B2-AAFC-48G097D07837}_is1) (Version: 13.06.24 - Aurora3D Software)

AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 1.2.0.0 - AVM Berlin)

Backup Manager V3 (x32 Version: 3.0.0.99 - NTI Corporation) Hidden

BarMix (HKLM-x32\...\BarMix) (Version: 1.3.18.441 - )

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

BEWERBUNGSMASTER (HKLM-x32\...\ST6UNST #1) (Version:  - )

Bing Bar (HKLM-x32\...\{C28D96C0-6A90-459E-A077-A6706F4EC0FC}) (Version: 7.0.765.0 - Microsoft Corporation)

bwin Download Casino (HKLM-x32\...\bwinCasino) (Version:  - bwin)

ccc-core-static (x32 Version: 2011.0208.2202.39516 - Ihr Firmenname) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.03 - Piriform)

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5067 - CDBurnerXP)

Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Cities in Motion (HKLM-x32\...\Steam App 73010) (Version:  - )

clear.fi (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 1.0.2024.00 - CyberLink Corp.)

clear.fi (x32 Version: 1.0.1517_36458 - CyberLink Corp.) Hidden

clear.fi (x32 Version: 1.0.2024.00 - CyberLink Corp.) Hidden

clear.fi (x32 Version: 9.0.8026 - CyberLink Corp.) Hidden

clear.fi Client (HKLM-x32\...\{43AAE145-83CF-4C96-9A5E-756CEFCE879F}) (Version: 1.00.3500 - Acer Incorporated)

COMPUTERBILD Alles-Öffner (HKLM-x32\...\{777C64A3-5909-4DBC-B917-F5AD8DFB9B09}) (Version: 1.0.8 - J3S)

COMPUTERBILD Alles-Öffner (x32 Version: 1.0.8 - J3S) Hidden

Crazy Chicken Kart 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Dartuoso (HKLM-x32\...\Dartuoso) (Version:  - )

Der Planer 1 (HKLM-x32\...\Der Planer 1) (Version:  - )

Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)

Download Protect (HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version:  - Download Protect)

Dream Builder - Erlebnispark 1.0 (HKLM-x32\...\Dream Builder - Erlebnispark 1.0) (Version: 1.0 - BigFish)

Driving Speed 2.0 (HKLM-x32\...\Driving Speed 2_is1) (Version:  - WheelSpin Studios)

eBay Worldwide (HKLM-x32\...\{D3E5A972-9A15-427D-AE78-8181A5FD943C}) (Version: 2.2.0409 - OEM)

Electric Sheep 2.7b29 (HKLM-x32\...\Electric Sheep) (Version: 2.7b29 - Electricsheep)

EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)

Evernote v. 4.5.1 (HKLM-x32\...\{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}) (Version: 4.5.1.5451 - Evernote Corp.)

Farmington Tales 1.00 (HKLM-x32\...\Farmington Tales 1.00) (Version: 1.00 - BigFish)

FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden

Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden

Fooz Kids (HKLM-x32\...\FoozKids) (Version: 3.0.8 - FUHU, Inc.)

Fooz Kids (x32 Version: 3.0.8 - FUHU, Inc.) Hidden

Fooz Kids Platform (HKLM-x32\...\{8D68CE08-9A14-4B7B-9857-3C646A2F34C7}) (Version: 2.1 - FUHU, Inc.)

Formatwandler 2013 (HKLM-x32\...\{98C7891F-4BA8-48D3-0001-D4DD055B2886}) (Version: 5.0.12.625 - S.A.D.)

Formatwandler 4 Demo (HKLM-x32\...\{5D2BAB14-B050-43CB-0001-CCB79085A90A}) (Version: 4.0.12.224 - S.A.D.)

Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

FotoMorph version 13.9.1 (HKLM-x32\...\{87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1) (Version: 13.9.1 - Digital Photo Software)

Free Audio Converter version 5.0.45.806 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.45.806 - DVDVideoSoft Ltd.)

Free MP4 Video Converter version 5.0.45.806 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.45.806 - DVDVideoSoft Ltd.)

Free Studio version 5.3.4 (HKLM-x32\...\Free Studio_is1) (Version: 5.3.4 - DVDVideoSoft Ltd.)

Free YouTube Download version 3.2.43.806 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.43.806 - DVDVideoSoft Ltd.)

FUSSBALL MANAGER 13 (HKLM-x32\...\{80AF0300-866F-400F-A350-D53E3C3E34E0}) (Version: 1.0.2.0 - Electronic Arts)

Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.)

Google Earth (HKLM-x32\...\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}) (Version: 6.2.2.6613 - Google)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden

GPL Ghostscript (HKLM\...\GPL Ghostscript 9.15) (Version: 9.15 - Artifex Software Inc.)

Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)

ICQ7.7 (HKLM-x32\...\{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}) (Version: 7.7 - ICQ)

Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)

ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)

Inkscape 0.48.5 (HKLM-x32\...\Inkscape) (Version: 0.48.5 - )

Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)

Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)

JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)

Jewel Match 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden

Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden

John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

K-Lite Codec Pack 7.0.0 (Standard) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )

Launch Manager (HKLM-x32\...\LManager) (Version: 5.1.7 - Acer Inc.)

MAGIX FunPix Maker 1.0.0.0 (D) (HKLM-x32\...\MAGIX FunPix Maker D) (Version: 1.0.0.0 - MAGIX AG)

Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

McAfee Internet Security Suite (HKLM-x32\...\MSC) (Version: 14.0.4121 - McAfee, Inc.)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.167 - McAfee, Inc.)

md Cloud Desktop (HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\md Cloud Desktop) (Version: 1.00.00.56 - mobilcom-debitel cloud)

MegaCasino (HKLM-x32\...\MegaCasino) (Version:  - )

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.5128.5002 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Works (HKLM-x32\...\{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}) (Version: 08.05.0822 - Microsoft Corporation)

Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.14.00.03 - Huawei Technologies Co.,Ltd)

Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 21.005.15.00.705 - Huawei Technologies Co.,Ltd)

Mozilla Firefox 41.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)

Mozilla Thunderbird 31.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.3.0 (x86 de)) (Version: 31.3.0 - Mozilla)

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden

MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden

MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden

MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)

MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) Hidden

newsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)

newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) Hidden

Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)

Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.3.0.43 - Symantec Corporation)

Open Freely (HKLM\...\{1BF14E04-85DE-480C-9A04-EB36744C66C3}_is1) (Version: 1.0 - Download Freely, LLC)

OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)

Origin (HKLM-x32\...\Origin) (Version: 9.0.11.77 - Electronic Arts, Inc.)

Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden

Personal ID (HKLM-x32\...\{F722209B-739E-40E4-ADB1-062BD032A0DB}) (Version: 1.8.5 - coolspot AG)

Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden

Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)

PokerTH (HKLM-x32\...\PokerTH 1.1.1) (Version: 1.1.1 - www.pokerth.net)

Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden

Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden

Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

RAPTOR-GAMING LG2 (HKLM-x32\...\{1BE44FFC-45D1-4817-B235-370FA823C78D}) (Version: 1.00.0000 - My Company Name)

RarZilla Free Unrar (HKLM-x32\...\RarZilla Free Unrar) (Version: 4.19 - Philipp Winterberg)

ratDVD 0.78.1444 (HKLM-x32\...\ratDVD) (Version: 0.78.1444 - ratDVD)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6438 - Realtek Semiconductor Corp.)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30123 - Realtek Semiconductor Corp.)

Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)

Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden

Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)

Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14024.11 - Samsung Electronics Co., Ltd.)

Samsung Kies3 (x32 Version: 3.2.14024.11 - Samsung Electronics Co., Ltd.) Hidden

Samsung Mobile Modem Device Software (HKLM\...\Samsung Mobile Modem Device) (Version:  - )

SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )

Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version:  - )

SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )

SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)

SAMSUNG USB Mobile Device Software (HKLM\...\SAMSUNG USB Mobile Device) (Version:  - )

Sandboxie 5.04 (64-bit) (HKLM\...\Sandboxie) (Version: 5.04 - Sandboxie Holdings, LLC)

Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)

Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)

Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden

Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden

simfy (HKLM-x32\...\Simfy) (Version: 1.7.6 - simfy AG)

simfy (x32 Version: 1.7.6 - simfy AG) Hidden

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)

Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Smart View 2.0 (HKLM-x32\...\{FBAAAFAE-08A8-4C63-87EA-4AEA9DEE53E1}) (Version: 1.0.0.0 - Samsung)

SopCast 3.5.0 (HKLM-x32\...\SopCast) (Version: 3.5.0 - www.sopcast.com)

SpyHunter (HKLM\...\{1F7E4FF9-D2E5-4258-9AE1-E16E6CB3252A}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)

Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)

Steganos Safe 12 (HKLM-x32\...\{D9EB1AF1-5A27-49E7-B83B-D3AB9FF407DD}) (Version: 12.0 - Steganos Software GmbH)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.6.0 - Synaptics Incorporated)

Terminplaner .Net (HKLM-x32\...\{AFC4FEEE-6E08-4CC9-815E-5CEDF2C15E2E}_is1) (Version:  - Ronny Decke)

Torchlight (x32 Version: 2.2.0.97 - WildTangent) Hidden

TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)

Two Worlds Pinball (HKLM-x32\...\Two Worlds Pinball) (Version:  - )

Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)

Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)

Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden

UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version:  - Tangysoft Ltd.)

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden

VirtualDJ 8 (HKLM-x32\...\{85E12659-D3A1-4583-BA1C-95DF53C3C632}) (Version: 8.0.2087.0 - Atomix Productions)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden

Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3504 - Acer Incorporated)

WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.2200 - Broadcom Corporation)

WildTangent Games App (x32 Version: 4.0.11.2 - WildTangent) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)

WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)

Wir-feiern-Finale.de Torwandschießen (HKLM-x32\...\DMM-Torwand3D) (Version: 1.0D - Anders und Seim Neue Medien AG)

XMedia Recode Version 3.1.5.8 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.5.8 - XMedia Recode)

Zattoo4 4.0.5 (HKLM-x32\...\Zattoo4) (Version: 4.0.5 - Zattoo Inc.)

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden

Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Wiederherstellungspunkte =========================
 

18-10-2015 11:03:22 JRT Pre-Junkware Removal
 

==================== Hosts Inhalt: ===============================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2009-07-14 04:34 - 2015-09-06 22:40 - 00000856 ____N C:\Windows\system32\Drivers\etc\hosts
 

0.0.0.1        mssplus.mcafee.com
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {01E4795C-4535-4A44-BDD8-85C2A49DFBD5} - \Browser Updater\Browser Updater -> Keine Datei <==== ACHTUNG

Task: {2616A0BD-2D61-4DB2-BB5A-50A73F4A1EC5} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe

Task: {31872A18-7D58-4576-AEF9-5E839ECCDA69} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)

Task: {34ACE63B-7FB2-4671-BEA4-CF3BA9B64E26} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {4FC56446-9B35-4FF4-BDA9-4286F456D288} - System32\Tasks\{919B8F1D-4F13-4FEA-92F6-91B2D6F26E1C} => pcalua.exe -a F:\Install\MSWorks\instmsia.exe -d F:\Install\MSWorks

Task: {53850F7A-520A-47EA-B529-8C072FDECE95} - System32\Tasks\{0BA4CF15-E44F-408D-B738-AB1B8533BB61} => pcalua.exe -a "C:\Users\Eddy\Desktop\Neuer Ordner (2)\Malefiz\unins000.exe" -d "C:\Users\Eddy\Desktop\Neuer Ordner (2)\Malefiz"

Task: {54A6D775-D31C-43CA-815C-E71ABC8D3BB8} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2014-01-09] (Enigma Software Group USA, LLC.)

Task: {59D1455D-16FD-4E46-89D5-81BD23284DED} - System32\Tasks\{817180F0-BF3D-4575-B585-E91F29A18462} => pcalua.exe -a "C:\Program Files (x86)\Mobile Partner\uninst.exe"

Task: {5AC1DC49-B73C-4CAF-B7C6-785E96099358} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6af359499f7e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {5F1EF2D1-77BA-4839-9B9F-9ECD56ACC59C} - System32\Tasks\{C39D68A3-4562-4A71-A2BE-0AA9798E4AD1} => pcalua.exe -a C:\PROGRA~2\TWOWOR~1\UNWISE.EXE -c C:\PROGRA~2\TWOWOR~1\INSTALL.LOG

Task: {6EAFF1D8-0F49-496A-8549-725B0FFA59EC} - System32\Tasks\clear.fi => C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe [2011-08-24] (Acer Incorporated)

Task: {7CAE43F5-FE4A-4E52-8E83-E202045A3603} - System32\Tasks\GoogleUpdateTaskMachineUA1cfff27e964e0f2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {872EDAE5-70DD-447B-80D6-EE5F8AF6498B} - System32\Tasks\{64473CF1-63C3-4D6B-ACE3-433653082C5A} => pcalua.exe -a C:\Users\Eddy\Desktop\Anno1503_Setup.part2\_setup\setup.exe -d C:\Users\Eddy\Desktop\Anno1503_Setup.part2\_setup

Task: {87563B0C-C677-4754-AD37-6C44E7F499E2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe

Task: {8FD1B092-ECD1-4F4A-8D6C-B03C70BEEC9D} - System32\Tasks\{82A423FA-EED4-4FA0-B021-2F717CF2F446} => pcalua.exe -a C:\Users\Eddy\Downloads\Domination_install_1.1.1.1.exe -d C:\Users\Eddy\Downloads

Task: {9F6F7603-5CD2-4494-B50D-4496D08D02B5} - \ProtectedSearch\Protected Search -> Keine Datei <==== ACHTUNG

Task: {A0C1C0AD-4961-4E81-BC7F-D6FFA61FDEA9} - System32\Tasks\{A4E863F4-54DF-4E68-BC1F-335541B0E5AC} => C:\Program Files (x86)\Steganos Safe 12\Safe.exe [2010-10-12] (Steganos Software GmbH)

Task: {A2872A04-2E69-45FF-A071-F360456699CD} - System32\Tasks\Norton Security Scan for Eddy => C:\Program Files (x86)\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-07-07] (Symantec Corporation)

Task: {A6F0128F-6CED-4A67-B3B4-A691CC41B0B1} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe

Task: {AFE3DBE1-FD61-4F04-B018-A00F84ED1BC3} - System32\Tasks\{11CBD83F-FCBD-4281-9D32-E60C5D4B10EF} => pcalua.exe -a C:\Users\Eddy\Desktop\GTAINSTALLER\SETUP.EXE -d C:\Users\Eddy\Desktop\GTAINSTALLER

Task: {B33F03D6-C360-4DD5-AC9C-C7CBF7CC4E98} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)

Task: {B49D7484-858F-4A80-8AFC-C227A5366A12} - System32\Tasks\{300507F1-F024-4A1B-8408-357B9ED6BC94} => pcalua.exe -a C:\Users\Eddy\Downloads\AdAware115WebInstaller.exe -d C:\Users\Eddy\Downloads

Task: {C6F3F1B1-421B-4EDF-9B3F-39080BDDCBF3} - System32\Tasks\DMREngine => C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe [2011-08-24] (CyberLink)

Task: {D2F0044F-2B99-4934-A6CF-57E5D6FF44D8} - System32\Tasks\clear.fiAgent => C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe [2011-08-24] (CyberLink Corp.)

Task: {D5C4F39A-684C-48EB-B0E7-29BE27638498} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe

Task: {DF7B0862-B5F5-4F61-91B0-B5E7A6792E8C} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2011-08-10] (Acer)

Task: {E3E2790B-E2C3-46AD-92A3-1CF2FD7087E2} - System32\Tasks\{307AD743-5378-4593-A10E-D80FF6B1A765} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly

Task: {E617619A-D397-4240-93A3-08859835D94A} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf9bdad3d0b7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {ECF235D5-0689-40E9-8DFE-A5D8AADECB29} - System32\Tasks\GoogleUpdateTaskMachineUA1d041e08c2292bc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {F1FFC2A4-24CE-47CF-8A04-ADCC0C6B6C87} - System32\Tasks\GoogleUpdateTaskMachineUA1cfebabdbadb893 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {FF1F88B8-845D-45B0-87DF-BC05DBABA4DE} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2015-09-18] (Microsoft Corporation)
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf6af359499f7e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfebabdbadb893.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfff27e964e0f2.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d041e08c2292bc.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf9bdad3d0b7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\Norton Security Scan for Eddy.job => C:\PROGRA~2\NORTON~2\Engine\430~1.43\Nss.exe
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
 

2015-07-15 12:50 - 2015-07-15 12:50 - 01588224 _____ () C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll

2014-10-17 09:52 - 2014-10-17 09:52 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9b1cac8d98bd69d3e56a26ff2f96f266\IsdiInterop.ni.dll

2011-10-20 10:18 - 2011-01-13 02:56 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

2015-10-17 13:08 - 2015-10-17 13:08 - 17599688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
 

AlternateDataStreams: C:\ProgramData\Temp:6D635C5B

AlternateDataStreams: C:\ProgramData\Temp:9DBB5163

AlternateDataStreams: C:\ProgramData\Temp:D4B9AC7B

AlternateDataStreams: C:\ProgramData\Temp:E07230CC

AlternateDataStreams: C:\ProgramData\Temp:F2958F3A
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
 

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
 
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 
 

==================== Andere Bereiche ============================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Eddy\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.2.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

MSCONFIG\startupreg: 2E67A395 => C:\Users\Eddy\AppData\Roaming\Rzrcn\slnzbnwzmc.exe

MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount

MSCONFIG\startupreg: ApnUpdater => "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
 

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [{56FD1BD5-F6D0-4AFE-A412-15BEBDCEB113}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [{8AC469C7-FB13-4AF2-9FBD-41373226DD28}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{DE312465-1B28-42EB-A3C2-BC11CA863D1A}] => (Allow) LPort=2869

FirewallRules: [{F6B33FAD-DE9D-46DA-9878-3D2D9228C87C}] => (Allow) LPort=1900

FirewallRules: [{66B0C3D7-6A90-416C-AB88-FDB6C51642FE}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

FirewallRules: [{33F5DFC4-ECDC-4533-91C1-07FEB8B2C61B}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe

FirewallRules: [{ED29706C-C8F5-41CD-80F1-EDF31A4931A4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe

FirewallRules: [{16623568-4298-4F33-99F7-EB056A31ABC8}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

FirewallRules: [{29953037-DAE6-4076-935A-5ADCC6A0FCFF}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\CLML\CLMLSvc.exe

FirewallRules: [{0D952D3C-F798-47E2-848B-7EF89194C515}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

FirewallRules: [{DA693785-F592-4CF0-B721-B91BF4603C91}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

FirewallRules: [{EF213E3E-3650-4831-B705-4B7B43137280}] => (Block) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

FirewallRules: [{F346830A-99C2-47F9-B84D-BE0DA7515A78}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\Movie\TouchMovie.exe

FirewallRules: [{8C3F3088-1D53-4228-A190-11675EBFB6E9}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\Movie\TouchMovieService.exe

FirewallRules: [{549D2BFF-4D6F-4A72-86DC-B94E0A171C5A}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{4BC1A0B2-CF2E-4BF9-BFC8-66BB21782D4B}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{63EB1E3A-D9C6-483F-9B45-FEF6991AA496}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{D70FEAA4-E61C-4DE5-99FE-92CA3F3C52DC}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{D12D7B7A-F856-4CE8-8673-6782EE587361}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe

FirewallRules: [{03BAA337-02AC-426E-BA60-B86B22E1C494}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe

FirewallRules: [{AEE76894-8AB3-4FDB-9DAB-12C43E56D033}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe

FirewallRules: [{44A6241A-1561-406C-A6A5-C5E7381ED5F9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe

FirewallRules: [{7889B03B-F921-43B3-B6FF-7A612C90C83B}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe

FirewallRules: [{F0D60C67-786F-41CE-A405-2598FC1B761F}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe

FirewallRules: [{31C0C53F-4041-468D-8DE7-45725DE10D48}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

FirewallRules: [{55A8CF77-16EE-427D-98C0-691B828BAE44}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

FirewallRules: [{2725BD32-9870-4214-B0D0-58A4A8237891}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{575F877B-E929-4015-B7D1-CE428D1CC858}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{CEFA8A6B-67CC-4F13-8B39-F620F7FBD396}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities In Motion\Cities In Motion.exe

FirewallRules: [{B4A9DC2A-7E61-4F60-9053-09D4E0066A83}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities In Motion\Cities In Motion.exe

FirewallRules: [{02759900-4EBB-49E0-AE98-B319F07DD89F}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA Manager 13\Manager13.exe

FirewallRules: [{5AA4DC6C-F8A5-4133-928E-FD5135D60536}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA Manager 13\Manager13.exe

FirewallRules: [{E63DD7ED-41E3-43EB-9006-FFC80954026B}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{FE89A0C6-CECA-4E01-8B80-AF4B63357936}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{20FBB0B2-C0FC-4551-A508-07A6C50A614D}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{F4CBA201-B801-4475-B41B-24C41EF2CD13}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{7F0B8E51-8BF8-435B-A4EA-84A6FE470BBB}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{34883A57-45C2-485B-B412-FDF79947011D}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{712CC05C-6355-436E-9886-12EEB7C9EFEA}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{9020DC35-EE57-4B29-B422-2DE4D556E6BE}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{02D0E990-7463-416E-B66A-6D47CE70F656}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{5E997BDB-F45C-41C7-9757-B987983523F1}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{9D7F1A9B-5B2E-4467-9F34-ED2A13D69022}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{2AE413DA-11FC-4E6D-BF37-19F5AE950B0D}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{DC686AF4-CEAC-4644-8165-538E07716449}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{9EDAD415-DAD6-4F31-BC11-536825FBFAC3}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{F4388680-5A5F-437E-A1B3-0068D6935BB2}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{BAA82951-7F94-4D7B-B556-B8EC0AB856D7}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{2CD90F93-7325-4656-A4A1-DFCDDD7B7854}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{3766216C-6517-4EA2-B6C0-D7A16DBFA442}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{A19E8F53-08D4-44F9-B991-96D7E3EDA795}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{8C675755-2494-4BC1-81AD-E86ED9E11202}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{DB171209-25D4-4339-B89D-3734163518F1}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{5675E120-41F1-4ADE-8DC9-2E69DB125E6F}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{C47CCDA1-AFB8-4209-8FD0-CD116391C131}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{E98ADA7E-865B-42B0-8E83-EB22B77E93BB}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{4186205E-BF49-4143-9CA6-9F5338FE3244}] => (Allow) C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\dtUser.exe

FirewallRules: [{FA45B979-6B13-4156-B0AC-6A88CA2BC82E}] => (Allow) C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\dtUser.exe

FirewallRules: [{F9BEB92B-6CCB-4E3B-A6BE-24E80EC508FC}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

FirewallRules: [{9E256555-6D35-47E1-85EB-CF377739A87C}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

FirewallRules: [{61C17895-8B85-45BE-B980-21FF0BEC41B7}] => (Allow) %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

FirewallRules: [{EDD8F4F1-8B90-4409-ACF1-86022A77060A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{6BAA0133-C853-451D-8BF7-16C8EDCD028A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{64D5CC1D-2E51-4C4B-8D1B-E74E3AA3A960}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{EB727160-7E3A-4689-9CAC-E1735FE3453F}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{641395A3-1072-4A2F-AD9F-A4AED333188C}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{8F0FC1CA-2C6F-480C-B65C-A2C1F94F0C83}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{9D034CB0-8C34-4DE7-89DC-F8C6995F3AAA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{C98EDA4C-2DA4-4116-924B-A20ECE227A9C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{AA6E6FF4-FB4B-4271-BDBE-8C3E837B8545}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 

==================== Fehlerhafte Geräte im Gerätemanager =============
 

Name: Teredo Tunneling Pseudo-Interface

Description: Microsoft-Teredo-Tunneling-Adapter

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: tunnel

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 

==================== Fehlereinträge in der Ereignisanzeige: =========================
 

Applikationsfehler:

==================

Error: (10/18/2015 10:54:30 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/18/2015 10:29:36 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/17/2015 11:22:11 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/16/2015 06:05:21 PM) (Source: MsiInstaller) (EventID: 1024) (User: Zauberkiste)

Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F094E6500}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
 

Error: (10/16/2015 08:46:27 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 10:14:31 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 09:45:13 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 01:43:54 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 08:52:50 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/13/2015 09:18:15 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 

Systemfehler:

=============

Error: (10/18/2015 12:51:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
 

Error: (10/18/2015 11:37:19 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
 

Error: (10/18/2015 11:04:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (10/18/2015 11:04:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (10/18/2015 11:04:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Client Virtualization Handler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "StarWind AE Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Application Virtualization Service Agent" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "NTI IScheduleSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 
 

==================== Speicherinformationen =========================== 
 

Prozessor: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz

Prozentuale Nutzung des RAM: 36%

Installierter physikalischer RAM: 8173.86 MB

Verfügbarer physikalischer RAM: 5229.86 MB

Summe virtueller Speicher: 16345.93 MB

Verfügbarer virtueller Speicher: 13272.4 MB
 

==================== Laufwerke ================================
 

Drive c: (Acer) (Fixed) (Total:95.69 GB) (Free:5.87 GB) NTFS

Drive d: (DATA) (Fixed) (Total:698.63 GB) (Free:76.98 GB) NTFS

Drive e: (BEST_OF_FC_BAYERN_DVD1) (CDROM) (Total:5.76 GB) (Free:0 GB) UDF
 

==================== MBR & Partitionstabelle ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 960CB0DC)

Partition 1: (Not Active) - (Size=16 GB) - (Type=27)

Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=95.7 GB) - (Type=07 NTFS)
 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 960CB0EA)

Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
 

==================== Ende von Addition.txt ============================

FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

U3 ae5e1tjh; C:\Windows\System32\Drivers\ae5e1tjh.sys [0 ] (Advanced Micro Devices) <==== ACHTUNG

Task: {01E4795C-4535-4A44-BDD8-85C2A49DFBD5} - \Browser Updater\Browser Updater -> Keine Datei <==== ACHTUNG

Task: {9F6F7603-5CD2-4494-B50D-4496D08D02B5} - \ProtectedSearch\Protected Search -> Keine Datei <==== ACHTUNG

EmptyTemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Das versteh ich jetzt nicht.

Ich hab den Text in das leere Textdokument kopiert, aber wie kann ich das jetzt auf dem Desktop speichern ?

Also auf dem Desktop hab ich es jetzt aber wenn ich FRST starte schreibt er das die Fixlist.txt nicht vorliegt.

Speichern unter?? => Desktop :D

Auf dem Desktop ist sie ja nun, aber das Tool schreibt das die Datei nicht vorhanden ist.

Zitat:

Gestartet von C:\Users\Eddy\Downloads

Weil du FRST nicht auf dem Desktop hast...

Ich glaub ich hab jetzt etwas auf der Leitung gestanden...:crazy: :-D

Code:

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-10-2015

durchgeführt von Eddy (2015-10-18 15:07:00) Run:1

Gestartet von C:\Users\Eddy\Desktop

Geladene Profile: Eddy (Verfügbare Profile: Eddy)

Start-Modus: Normal

==============================================
 

fixlist Inhalt:

*****************
 

*****************
 
 

==== Ende von Fixlog 15:07:00 ====

Jetzt musst du diese Textdatei nur noch mit meinem Inhalt vor dem Fix füllen :p (und den Fix wiederholen)

Ich hoffe das es jetzt richtig ist. Ist schon blöd wenn man nicht viel Ahnung hat...

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-10-2015

durchgeführt von Eddy (Administrator) auf ZAUBERKISTE (18-10-2015 15:33:44)

Gestartet von C:\Users\Eddy\Desktop

Geladene Profile: Eddy (Verfügbare Profile: Eddy)

Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe

(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.6.1180.0\McCSPServiceHost.exe

(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(www.rene-zeidler.de) C:\Users\Eddy\Desktop\Installationen\Snipping Tool Plus.exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2280232 2010-07-29] (Synaptics Incorporated)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12673128 2011-08-16] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2277480 2011-08-16] (Realtek Semiconductor)

HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)

HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-02-08] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)

HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)

HKLM-x32\...\Run: [ArcadeMovieService] => C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-08-26] (CyberLink Corp.)

HKLM-x32\...\Run: [SAFE12 HotKeys] => C:\Program Files (x86)\Steganos Safe 12\SteganosHotKeyService.exe [83456 2010-10-12] (Steganos Software GmbH)

HKLM-x32\...\Run: [SAFE12 File Redirection Starter] => C:\Program Files (x86)\Steganos Safe 12\fredirstarter.exe [17408 2010-10-12] (Steganos Software GmbH)

HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [933888 2013-12-17] (AVM Berlin)

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKLM\...\Policies\Explorer: [NoFolderOptions] 0

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-09-21] (Sandboxie Holdings, LLC)

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Run: [winClient] => C:\Program Files (x86)\mobilcom-debitel cloud\md cloud.exe [8192512 2015-07-16] ()

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Policies\Explorer: [NoFolderOptions] 0

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Policies\Explorer: [NoControlPanel] 0

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: F - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {0697b47b-bf20-11e2-9943-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {0697b48a-bf20-11e2-9943-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {0697b4a0-bf20-11e2-9943-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {180dbe36-48a1-11e5-94ad-dc0ea117d7cb} - F:\pushinst.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {404a39eb-9281-11e4-83f2-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc7fa-c80b-11e4-b449-9439e575c14b} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc808-c80b-11e4-b449-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc815-c80b-11e4-b449-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {5dfcc823-c80b-11e4-b449-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {631ba6d5-be30-11e2-872c-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {631ba6fe-be30-11e2-872c-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {7b859413-8e91-11e3-9bef-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {86adbbe7-c8f6-11e4-a470-9439e575c14b} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {942cb90a-2e74-11e4-80e8-9439e575c14b} - F:\setup_vmc_lite.exe /checkApplicationPresence

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {c40524bb-64b7-11e2-9bab-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\MountPoints2: {c40524ca-64b7-11e2-9bab-dc0ea117d7cb} - F:\AutoRun.exe

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\es.scr [2968064 2010-12-21] ()

Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

ShellIconOverlayIdentifiers: ["11CloudOverlayIcon"] -> {7287689B-8C79-4D52-A8C7-CC11D4D8ECE3} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["12CloudOverlayIcon"] -> {75804F50-7528-4089-91DC-ABD7144EC960} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["13CloudOverlayIcon"] -> {8B680D9E-7971-4ED5-BC1D-C0B7CA89B5A6} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["14CloudOverlayIcon"] -> {2FFEFB84-A51D-4FAC-B125-17E44C87BC84} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["15CloudOverlayIcon"] -> {D0F0E8F3-5536-4A04-80A1-40FB42B296EC} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

ShellIconOverlayIdentifiers: ["16CloudOverlayIcon"] -> {5B3DEF8D-36B5-4A0C-AF95-BB774BE05E8F} => C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll [2015-07-15] ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-08-03]

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe (McAfee, Inc.)
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Hosts: 0.0.0.1        mssplus.mcafee.com

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1

Tcpip\..\Interfaces\{203C3DCC-E305-446D-912C-0B363EB21E9D}: [NameServer] 193.189.244.206 193.189.244.225

Tcpip\..\Interfaces\{523918AC-DF71-49FB-B539-0DF001A2E37C}: [DhcpNameServer] 192.168.9.1 192.168.9.1

Tcpip\..\Interfaces\{6FB089AB-478C-4DAD-BA8C-4D2BC4B06275}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Tcpip\..\Interfaces\{8B0F37F6-C332-4D6A-922C-0B5A25087487}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Tcpip\..\Interfaces\{E4C74C11-8C6D-4D41-8E7A-4F36FE51FB83}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Tcpip\..\Interfaces\{F92DE5EC-65DF-44BB-ACE9-97856A9203E7}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Tcpip\..\Interfaces\{FA06C5A3-8B60-42F4-9E59-7AEEA3307B47}: [NameServer] 193.189.244.206 193.189.244.225
 

Internet Explorer:

==================

HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}

SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}

SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)

BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)

BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)

Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-09-22] (McAfee, Inc.)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-08-21] (McAfee, Inc.)

Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-08-21] (McAfee, Inc.)
 

FireFox:

========

FF ProfilePath: C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil

FF DefaultSearchUrl: hxxp://www.google.de/search?hl=de&gl=de&lr=&ie=UTF-8&oe=UTF-8&meta=lr=lang_de&q=

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()

FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-08-21] ()

FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll [2014-04-15] (Adobe Systems, Inc.)

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2012-04-14] (Google)

FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)

FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-08-21] ()

FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\12\NP_wtapp.dll [2015-01-04] ()

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF SearchPlugin: C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\searchplugins\google-images.xml [2014-10-02]

FF SearchPlugin: C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\searchplugins\google-maps.xml [2014-10-02]

FF Extension: Amazon-Icon - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\amazon-icon@giga.de [2014-01-11] [ist nicht signiert]

FF Extension: Flagfox - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\info@flagfox.net [2013-05-14] [ist nicht signiert]

FF Extension: FoxyDeal - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-09-28] [ist nicht signiert]

FF Extension: ICQ Sparberater - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\ciuvo-extension@icq.de.xpi [2012-03-13] [ist nicht signiert]

FF Extension: Adblock Plus - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\zvps7knb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-03-08] [ist nicht signiert]

FF Extension: Amazon-Icon - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\amazon-icon@giga.de [2014-01-11] [ist nicht signiert]

FF Extension: Click&Clean - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\clickclean@hotcleaner.com [2012-05-04] [ist nicht signiert]

FF Extension: Facebook Disconnect - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\facebook@disconnect.me.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Kein Name - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Long URL Please - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\longurlplease@darragh.curran.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Stealthy - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\stealthyextension@gmail.com.xpi [2012-05-04] [ist nicht signiert]

FF Extension: PrivacyChoice TrackerBlock - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\trackerblock@privacychoice.org.xpi [2012-05-04] [ist nicht signiert]

FF Extension: NoScript - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Adblock Plus - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\vw36353t.tarnfox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Amazon-Icon - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\Extensions\amazon-icon@giga.de [2014-01-11] [ist nicht signiert]

FF Extension: Kein Name - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\Extensions\cliqz@cliqz.com.xpi [2014-10-02] [ist nicht signiert]

FF Extension: Kein Name - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-05-04] [ist nicht signiert]

FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com [2015-10-03] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-09-25]

FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 => nicht gefunden

FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 12\pfplugin => nicht gefunden

FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2011-10-20] [ist nicht signiert]

FF HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Eddy\AppData\Roaming\Mozilla\Firefox\Profiles\i7su4pxk.Eddy Firefox Profil\extensions\cliqz@cliqz.com => nicht gefunden
 

Chrome: 

=======

CHR Profile: C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (SiteAdvisor) - C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2012-07-09]

CHR Extension: (Google Wallet) - C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-24]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-09-25]

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-09-25]
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S2 CLKMSVC10_34E30CCC; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [245744 2011-05-06] (CyberLink)

S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-02-13] (WildTangent)

R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [157928 2015-09-22] (McAfee, Inc.)

R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [782608 2015-08-21] (McAfee, Inc.)

S3 McAWFwk; c:\Program Files\mcafee\msc\McAWFwk.exe [224704 2011-03-09] (McAfee, Inc.)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [289256 2015-07-31] (McAfee, Inc.)

R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe [1694152 2015-09-01] (McAfee, Inc.)

R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [639456 2015-07-17] (McAfee, Inc.)

S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.)

R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc.)

R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.)

S2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()

S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [246112 2015-03-11] ()

R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)

S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)

S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4518008 2013-05-01] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]

S2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)

S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [177800 2015-09-21] (Sandboxie Holdings, LLC)

S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)

S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Datei ist nicht signiert]

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2013-12-17] (AVM Berlin)

S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-08-30] (Broadcom Corporation.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)

R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-09-04] (Symantec Corporation)

R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()

S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()

S3 fwlanusb6; C:\Windows\System32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH)

R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-10-04] (GFI Software)

S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)

R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-07-24] (AnchorFree Inc.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)

R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.)

R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.)

R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.)

R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.)

R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)

S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)

R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37960 2015-09-22] (McAfee, Inc.)

R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.)

R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [191624 2015-09-21] (Sandboxie Holdings, LLC)

R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )

R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2012-03-12] () [Datei ist nicht signiert]

R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)

U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

U3 ae5e1tjh; C:\Windows\System32\Drivers\ae5e1tjh.sys [0 ] (Advanced Micro Devices) <==== ACHTUNG (Null Byte Datei/Ordner)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-10-18 15:33 - 2015-10-18 15:33 - 00027920 _____ C:\Users\Eddy\Desktop\FRST.txt

2015-10-18 15:06 - 2015-10-17 20:04 - 02196992 _____ (Farbar) C:\Users\Eddy\Desktop\FRST64.exe

2015-10-18 14:43 - 2015-10-18 15:33 - 00000000 ____D C:\Users\Eddy\Desktop\Fixlist.txt

2015-10-18 14:25 - 2015-10-18 14:26 - 02196992 _____ (Farbar) C:\Users\Eddy\Downloads\FRST64(2).exe

2015-10-18 13:59 - 2015-10-18 13:59 - 00007644 _____ C:\mbam 4.txt

2015-10-18 13:59 - 2015-10-18 13:59 - 00001287 _____ C:\Users\Eddy\Desktop\mbam 3.txt

2015-10-18 11:13 - 2015-10-18 11:13 - 02196992 _____ (Farbar) C:\Users\Eddy\Downloads\FRST64(1).exe

2015-10-18 11:09 - 2015-10-18 11:09 - 00002994 _____ C:\Users\Eddy\Desktop\JRT.txt

2015-10-18 11:02 - 2015-10-18 11:02 - 01798976 _____ (Malwarebytes) C:\Users\Eddy\Downloads\JRT.exe

2015-10-18 11:02 - 2015-10-05 23:26 - 01801288 _____ (Malwarebytes) C:\Users\Eddy\Desktop\JRT.exe

2015-10-18 11:00 - 2015-10-18 11:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee

2015-10-18 10:52 - 2015-10-18 10:53 - 00000000 ____D C:\AdwCleaner

2015-10-18 10:47 - 2015-10-18 10:47 - 01682432 _____ C:\Users\Eddy\Downloads\AdwCleaner_5.013.exe

2015-10-18 10:43 - 2015-10-18 10:43 - 00007644 _____ C:\Users\Eddy\Desktop\mbam 2.txt

2015-10-18 10:42 - 2015-10-18 10:42 - 00007644 _____ C:\mbam 2.txt

2015-10-18 10:42 - 2015-10-18 10:42 - 00001022 _____ C:\Users\Eddy\Desktop\mbam.txt

2015-10-18 10:38 - 2015-10-18 10:40 - 00001022 _____ C:\mbam.txt

2015-10-18 09:34 - 2015-10-18 09:34 - 00001066 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-10-18 09:33 - 2015-10-18 09:34 - 22908888 _____ (Malwarebytes ) C:\Users\Eddy\Downloads\mbam-setup-2.2.0.1024.exe

2015-10-17 20:43 - 2015-10-17 20:43 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Eddy\Downloads\revosetup95.exe

2015-10-17 20:43 - 2015-10-17 20:43 - 00001228 _____ C:\Users\Eddy\Desktop\Revo Uninstaller.lnk

2015-10-17 20:43 - 2015-10-17 20:43 - 00000000 ____D C:\Program Files (x86)\VS Revo Group

2015-10-17 20:07 - 2015-10-18 14:27 - 00049690 _____ C:\Users\Eddy\Downloads\Addition.txt

2015-10-17 20:06 - 2015-10-18 15:33 - 00000000 ____D C:\FRST

2015-10-17 20:06 - 2015-10-18 14:27 - 00073026 _____ C:\Users\Eddy\Downloads\FRST.txt

2015-10-17 20:03 - 2015-10-17 20:04 - 02196992 _____ (Farbar) C:\Users\Eddy\Downloads\FRST64.exe

2015-10-16 22:12 - 2015-10-16 22:13 - 00000000 ____D C:\Users\Eddy\Desktop\Flic Flac

2015-10-15 13:43 - 2015-10-15 13:43 - 00277960 _____ C:\Windows\Minidump\101515-11606-01.dmp

2015-10-15 09:00 - 2015-09-18 21:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2015-10-15 09:00 - 2015-09-18 21:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2015-10-15 09:00 - 2015-09-18 21:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2015-10-15 09:00 - 2015-09-18 21:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2015-10-14 10:21 - 2015-09-18 21:31 - 00391784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-10-14 10:21 - 2015-09-18 20:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-10-14 10:21 - 2015-09-16 06:48 - 25851904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-10-14 10:21 - 2015-09-16 06:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-10-14 10:21 - 2015-09-16 06:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2015-10-14 10:21 - 2015-09-16 06:22 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-10-14 10:21 - 2015-09-16 06:21 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-10-14 10:21 - 2015-09-16 06:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2015-10-14 10:21 - 2015-09-16 06:14 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-10-14 10:21 - 2015-09-16 06:13 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-10-14 10:21 - 2015-09-16 06:10 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-10-14 10:21 - 2015-09-16 06:09 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-10-14 10:21 - 2015-09-16 06:08 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-10-14 10:21 - 2015-09-16 06:08 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-10-14 10:21 - 2015-09-16 06:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-10-14 10:21 - 2015-09-16 06:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2015-10-14 10:21 - 2015-09-16 06:01 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-10-14 10:21 - 2015-09-16 05:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-10-14 10:21 - 2015-09-16 05:58 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-10-14 10:21 - 2015-09-16 05:50 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2015-10-14 10:21 - 2015-09-16 05:46 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-10-14 10:21 - 2015-09-16 05:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-10-14 10:21 - 2015-09-16 05:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-10-14 10:21 - 2015-09-16 05:43 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-10-14 10:21 - 2015-09-16 05:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-10-14 10:21 - 2015-09-16 05:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-10-14 10:21 - 2015-09-16 05:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-10-14 10:21 - 2015-09-16 05:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-10-14 10:21 - 2015-09-16 05:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2015-10-14 10:21 - 2015-09-16 05:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-10-14 10:21 - 2015-09-16 05:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2015-10-14 10:21 - 2015-09-16 05:29 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-10-14 10:21 - 2015-09-16 05:29 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-10-14 10:21 - 2015-09-16 05:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-10-14 10:21 - 2015-09-16 05:28 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-10-14 10:21 - 2015-09-16 05:26 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-10-14 10:21 - 2015-09-16 05:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-10-14 10:21 - 2015-09-16 05:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-10-14 10:21 - 2015-09-16 05:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-10-14 10:21 - 2015-09-16 05:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-10-14 10:21 - 2015-09-16 05:22 - 14458368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-10-14 10:21 - 2015-09-16 05:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-10-14 10:21 - 2015-09-16 05:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2015-10-14 10:21 - 2015-09-16 05:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-10-14 10:21 - 2015-09-16 05:11 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-10-14 10:21 - 2015-09-16 05:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2015-10-14 10:21 - 2015-09-16 05:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-10-14 10:21 - 2015-09-16 05:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-10-14 10:21 - 2015-09-16 05:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-10-14 10:21 - 2015-09-16 05:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-10-14 10:21 - 2015-09-16 05:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-10-14 10:21 - 2015-09-16 04:59 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-10-14 10:21 - 2015-09-16 04:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-10-14 10:21 - 2015-09-16 04:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-10-14 10:21 - 2015-09-16 04:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-10-14 10:21 - 2015-09-16 04:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-10-14 10:21 - 2015-09-16 04:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-10-14 10:21 - 2015-09-16 04:48 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-10-14 10:21 - 2015-09-16 04:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-10-14 10:21 - 2015-09-16 04:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-10-14 10:21 - 2015-09-16 04:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-10-14 09:36 - 2015-08-06 20:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-10-14 09:36 - 2015-08-06 20:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2015-10-14 09:36 - 2015-08-06 19:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-10-14 09:36 - 2015-08-06 19:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll

2015-10-14 09:32 - 2015-10-01 20:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2015-10-14 09:32 - 2015-10-01 20:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2015-10-14 09:32 - 2015-10-01 20:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2015-10-14 09:32 - 2015-10-01 20:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2015-10-14 09:32 - 2015-10-01 20:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2015-10-14 09:32 - 2015-10-01 20:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2015-10-14 09:32 - 2015-10-01 20:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2015-10-14 09:32 - 2015-10-01 19:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll

2015-10-14 09:32 - 2015-10-01 19:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2015-10-14 09:32 - 2015-09-29 05:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-10-14 09:32 - 2015-09-29 05:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2015-10-14 09:32 - 2015-09-29 05:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2015-10-14 09:32 - 2015-09-29 05:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2015-10-14 09:32 - 2015-09-29 05:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-10-14 09:32 - 2015-09-29 05:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2015-10-14 09:32 - 2015-09-29 05:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2015-10-14 09:32 - 2015-09-29 05:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-10-14 09:32 - 2015-09-29 05:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2015-10-14 09:32 - 2015-09-29 05:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2015-10-14 09:32 - 2015-09-29 05:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-10-14 09:32 - 2015-09-29 05:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-10-14 09:32 - 2015-09-29 05:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2015-10-14 09:32 - 2015-09-29 04:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2015-10-14 09:32 - 2015-09-29 04:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2015-10-14 09:32 - 2015-09-29 04:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll

2015-10-14 09:32 - 2015-09-29 04:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2015-10-14 09:32 - 2015-09-29 04:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2015-10-14 09:32 - 2015-09-29 04:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2015-10-14 09:32 - 2015-09-29 04:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-10-14 09:32 - 2015-09-29 04:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2015-10-14 09:32 - 2015-09-29 03:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2015-10-14 09:32 - 2015-09-29 03:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2015-10-14 09:32 - 2015-09-29 03:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2015-10-14 09:32 - 2015-09-29 03:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2015-10-14 09:32 - 2015-09-29 03:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2015-10-14 09:32 - 2015-09-29 03:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-10-14 09:32 - 2015-09-25 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-10-14 09:32 - 2015-09-25 20:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-10-14 09:32 - 2015-09-25 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2015-10-14 09:32 - 2015-09-25 20:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-10-14 09:32 - 2015-09-25 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-10-14 09:32 - 2015-09-25 19:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-10-14 09:32 - 2015-09-25 19:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-10-14 09:32 - 2015-09-15 20:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-10-14 09:32 - 2015-09-15 20:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-10-14 09:32 - 2015-09-15 20:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-10-14 09:32 - 2015-09-15 20:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-10-14 09:32 - 2015-09-15 20:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-10-14 09:32 - 2015-09-15 19:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-10-14 09:32 - 2015-09-15 19:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-10-14 09:32 - 2015-09-15 19:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-10-14 09:32 - 2015-09-15 19:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2015-10-14 09:31 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2015-10-03 14:00 - 2015-10-17 11:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-09-25 20:04 - 2015-09-25 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie

2015-09-25 11:33 - 2015-09-25 11:58 - 00000000 ___RD C:\Users\Eddy\Desktop\MM

2015-09-25 11:13 - 2015-09-25 11:14 - 00000000 ____D C:\Users\Eddy\Desktop\Eddy

2015-09-25 10:47 - 2015-09-25 11:10 - 00000000 ____D C:\Users\Eddy\Desktop\München

2015-09-22 08:43 - 2015-09-22 08:43 - 00000000 ____D C:\Users\Eddy\Desktop\Frankreich

2015-09-19 22:45 - 2015-10-06 14:12 - 00000836 _____ C:\Users\Eddy\Desktop\Gruissan - Verknüpfung.lnk

2015-09-19 22:44 - 2015-10-06 14:12 - 00000836 _____ C:\Users\Eddy\Desktop\Fun Pics - Verknüpfung.lnk

2015-09-19 22:42 - 2015-10-06 14:12 - 00000864 _____ C:\Users\Eddy\Desktop\Kamera Handy - Verknüpfung.lnk
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-10-18 15:01 - 2015-07-16 09:48 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf9bdad3d0b7.job

2015-10-18 15:01 - 2012-07-09 19:54 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-10-18 14:56 - 2014-12-27 23:22 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-10-18 14:54 - 2014-05-08 21:26 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf6af359499f7e.job

2015-10-18 14:53 - 2015-02-06 09:43 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d041e08c2292bc.job

2015-10-18 14:48 - 2014-11-13 11:55 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfff27e964e0f2.job

2015-10-18 14:04 - 2011-12-26 06:01 - 01530750 _____ C:\Windows\WindowsUpdate.log

2015-10-18 13:58 - 2014-12-31 12:55 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-10-18 13:20 - 2015-08-05 13:11 - 00000000 ___RD C:\Users\Eddy\Desktop\F.I

2015-10-18 12:54 - 2009-07-14 06:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-10-18 12:54 - 2009-07-14 06:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-10-18 12:52 - 2011-12-26 14:51 - 00700134 _____ C:\Windows\system32\perfh007.dat

2015-10-18 12:52 - 2011-12-26 14:51 - 00149984 _____ C:\Windows\system32\perfc007.dat

2015-10-18 12:52 - 2009-07-14 07:13 - 01622300 _____ C:\Windows\system32\PerfStringBackup.INI

2015-10-18 10:54 - 2013-10-03 07:47 - 00320894 _____ C:\Windows\PFRO.log

2015-10-18 10:54 - 2013-10-03 07:47 - 00086709 _____ C:\Windows\setupact.log

2015-10-18 10:54 - 2012-03-08 22:29 - 00000000 ____D C:\ProgramData\clear.fi

2015-10-18 10:54 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-10-18 10:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help

2015-10-18 10:17 - 2014-05-17 04:00 - 00000450 ____H C:\Windows\Tasks\Norton Security Scan for Eddy.job

2015-10-18 09:34 - 2014-12-31 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-10-18 09:34 - 2014-12-31 12:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-10-17 13:50 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp

2015-10-17 13:09 - 2014-08-22 07:57 - 00000000 ____D C:\Users\Eddy\AppData\Local\Adobe

2015-10-17 13:08 - 2014-12-27 23:22 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2015-10-17 13:08 - 2014-12-27 23:22 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2015-10-17 13:08 - 2014-12-27 23:22 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2015-10-17 11:22 - 2012-10-20 10:38 - 00002328 _____ C:\Windows\Sandboxie.ini

2015-10-17 11:21 - 2012-05-02 15:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-10-17 11:21 - 2011-10-20 11:04 - 00000000 ____D C:\Program Files (x86)\McAfee

2015-10-16 22:10 - 2012-03-08 22:20 - 00000000 ____D C:\Users\Eddy\AppData\Roaming\vlc

2015-10-16 18:05 - 2015-07-02 13:46 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-10-16 18:05 - 2014-12-29 12:01 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

2015-10-16 14:32 - 2012-07-03 09:27 - 00001102 _____ C:\Windows\wininit.ini

2015-10-15 22:37 - 2014-12-10 08:00 - 00000000 ____D C:\Windows\system32\appraiser

2015-10-15 22:37 - 2014-05-07 00:18 - 00000000 ___SD C:\Windows\system32\CompatTel

2015-10-15 19:45 - 2015-02-12 09:53 - 00000000 ____D C:\Windows\rescache

2015-10-15 13:43 - 2012-03-23 08:16 - 00000000 ____D C:\Windows\Minidump

2015-10-15 00:19 - 2013-08-08 06:21 - 00000000 ____D C:\Windows\system32\MRT

2015-10-15 00:14 - 2012-03-13 06:40 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-10-13 13:22 - 2012-03-12 19:20 - 00039262 _____ C:\Users\Eddy\AppData\Roaming\wklnhst.dat

2015-10-09 18:37 - 2012-03-09 18:08 - 00000000 ____D C:\Users\Eddy\AppData\Roaming\UseNeXT

2015-10-09 08:37 - 2015-04-04 22:40 - 00000000 ___SD C:\Windows\system32\GWX

2015-10-09 00:01 - 2015-04-04 22:40 - 00000000 ___SD C:\Windows\SysWOW64\GWX

2015-10-05 09:50 - 2014-12-31 12:54 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-10-05 09:50 - 2014-12-31 12:54 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-10-05 09:50 - 2014-12-31 12:54 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2011-01-12 02:00 - 2011-01-12 02:00 - 0146944 _____ () C:\Program Files (x86)\Common Files\dsfFLACDecoder.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0221184 _____ () C:\Program Files (x86)\Common Files\dsfFLACEncoder.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0204800 _____ () C:\Program Files (x86)\Common Files\dsfNativeFLACSource.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0195584 _____ () C:\Program Files (x86)\Common Files\dsfOggDemux2.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0240128 _____ () C:\Program Files (x86)\Common Files\dsfVorbisDecoder.dll

2009-07-11 23:08 - 2009-07-11 23:08 - 0001860 _____ () C:\Program Files (x86)\Common Files\Microsoft.VC90.CRT.manifest

2011-04-18 22:51 - 2011-04-18 22:51 - 0569680 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\MSVCP90.dll

2011-04-18 22:51 - 2011-04-18 22:51 - 0653136 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\MSVCR90.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0412672 _____ (Google) C:\Program Files (x86)\Common Files\vp8decoder.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0701440 _____ (Google) C:\Program Files (x86)\Common Files\vp8encoder.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0302592 _____ (Google) C:\Program Files (x86)\Common Files\webmmux.dll

2010-12-16 21:39 - 2010-12-16 21:39 - 0292352 _____ (Google) C:\Program Files (x86)\Common Files\webmsplit.dll

2011-01-12 02:00 - 2011-01-12 02:00 - 0030208 _____ () C:\Program Files (x86)\Common Files\wmpinfo.dll

2012-03-12 19:20 - 2015-10-13 13:22 - 0039262 _____ () C:\Users\Eddy\AppData\Roaming\wklnhst.dat

2014-12-14 11:38 - 2014-12-14 11:38 - 0000218 _____ () C:\Users\Eddy\AppData\Local\recently-used.xbel

2012-09-18 20:53 - 2013-03-12 22:33 - 0017408 _____ () C:\Users\Eddy\AppData\Local\WebpageIcons.db

2011-12-26 06:19 - 2011-12-26 06:21 - 0015635 _____ () C:\ProgramData\ArcadeDeluxe5.log
 

Einige Dateien in TEMP:

====================

C:\Users\Eddy\AppData\Local\Temp\2949bed4-2a1e-4dff-9381-53fec5dcdc56.exe

C:\Users\Eddy\AppData\Local\Temp\8faf27c8-f37e-4e3c-becd-8c21d9764108.exe

C:\Users\Eddy\AppData\Local\Temp\9b092af6-5a05-4f45-9f52-a715e16627ce.exe

C:\Users\Eddy\AppData\Local\Temp\amazonicon_v3.exe

C:\Users\Eddy\AppData\Local\Temp\amazoninstallernircmdc.exe

C:\Users\Eddy\AppData\Local\Temp\gsm3sys32.exe

C:\Users\Eddy\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe

C:\Users\Eddy\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe

C:\Users\Eddy\AppData\Local\Temp\jre-8u31-windows-au.exe

C:\Users\Eddy\AppData\Local\Temp\Quarantine.exe

C:\Users\Eddy\AppData\Local\Temp\SandboxieInstall.exe

C:\Users\Eddy\AppData\Local\Temp\sdanircmdc.exe

C:\Users\Eddy\AppData\Local\Temp\sdapskill.exe

C:\Users\Eddy\AppData\Local\Temp\SHSetup.exe

C:\Users\Eddy\AppData\Local\Temp\sqlite3.dll

C:\Users\Eddy\AppData\Local\Temp\vlc-2.1.2-win32.exe

C:\Users\Eddy\AppData\Local\Temp\vlc-2.1.3-win32.exe

C:\Users\Eddy\AppData\Local\Temp\vlc-2.1.5-win32.exe

C:\Users\Eddy\AppData\Local\Temp\vlc-2.2.1-win32.exe

C:\Users\Eddy\AppData\Local\Temp\wgs3_tzt.dll
 
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\Windows\system32\winlogon.exe => Datei ist digital signiert

C:\Windows\system32\wininit.exe => Datei ist digital signiert

C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert

C:\Windows\explorer.exe => Datei ist digital signiert

C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert

C:\Windows\system32\svchost.exe => Datei ist digital signiert

C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert

C:\Windows\system32\services.exe => Datei ist digital signiert

C:\Windows\system32\User32.dll => Datei ist digital signiert

C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert

C:\Windows\system32\userinit.exe => Datei ist digital signiert

C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert

C:\Windows\system32\rpcss.dll => Datei ist digital signiert

C:\Windows\system32\dnsapi.dll => Datei ist digital signiert

C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-10-11 10:39
 

==================== Ende von FRST.txt ============================

FRST Additions Logfile:

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-10-2015

durchgeführt von Eddy (2015-10-18 15:34:09)

Gestartet von C:\Users\Eddy\Desktop

Windows 7 Home Premium Service Pack 1 (X64) (2012-03-08 19:00:44)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-3918896019-351383226-3202211127-500 - Administrator - Disabled)

Eddy (S-1-5-21-3918896019-351383226-3202211127-1000 - Administrator - Enabled) => C:\Users\Eddy

fbwuser (S-1-5-21-3918896019-351383226-3202211127-1003 - Limited - Enabled)

Gast (S-1-5-21-3918896019-351383226-3202211127-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3918896019-351383226-3202211127-1002 - Limited - Enabled)
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}

FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.99 - NTI Corporation)

Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 1.0.1904 - CyberLink Corp.)

Acer Crystal Eye Webcam (x32 Version: 1.0.1904 - CyberLink Corp.) Hidden

Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3008 - Acer Incorporated)

Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3504 - Acer Incorporated)

Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)

Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3504 - Acer Incorporated)

Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0913.2011 - Acer Incorporated)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)

Adobe Bridge 1.0 (HKLM-x32\...\{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}) (Version: 1.0.1.1 - Adobe Systems)

Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)

Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden

Alien Intruders (HKLM-x32\...\11-com.novelgames.flashgames.invaders) (Version: 1.7.0 - Novel Games Limited)

Alien Intruders (x32 Version: 1.7.0 - Novel Games Limited) Hidden

ANNO 1503 GOLD (HKLM-x32\...\{DB833EF9-A198-49BE-970A-BD46F30BFBB4}) (Version: 1.05.00 - )

Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)

ATI Catalyst Install Manager (HKLM\...\{1D72BF42-E249-4EB7-CC4C-8CC09DAB180B}) (Version: 3.0.812.0 - ATI Technologies, Inc.)

Aurora 3D Animation Maker version 13.06.24 (HKLM-x32\...\{4F6B6582-B9F6-42B2-AAFC-48G097D07837}_is1) (Version: 13.06.24 - Aurora3D Software)

AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 1.2.0.0 - AVM Berlin)

Backup Manager V3 (x32 Version: 3.0.0.99 - NTI Corporation) Hidden

BarMix (HKLM-x32\...\BarMix) (Version: 1.3.18.441 - )

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

BEWERBUNGSMASTER (HKLM-x32\...\ST6UNST #1) (Version:  - )

Bing Bar (HKLM-x32\...\{C28D96C0-6A90-459E-A077-A6706F4EC0FC}) (Version: 7.0.765.0 - Microsoft Corporation)

bwin Download Casino (HKLM-x32\...\bwinCasino) (Version:  - bwin)

ccc-core-static (x32 Version: 2011.0208.2202.39516 - Ihr Firmenname) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.03 - Piriform)

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5067 - CDBurnerXP)

Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Cities in Motion (HKLM-x32\...\Steam App 73010) (Version:  - )

clear.fi (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 1.0.2024.00 - CyberLink Corp.)

clear.fi (x32 Version: 1.0.1517_36458 - CyberLink Corp.) Hidden

clear.fi (x32 Version: 1.0.2024.00 - CyberLink Corp.) Hidden

clear.fi (x32 Version: 9.0.8026 - CyberLink Corp.) Hidden

clear.fi Client (HKLM-x32\...\{43AAE145-83CF-4C96-9A5E-756CEFCE879F}) (Version: 1.00.3500 - Acer Incorporated)

COMPUTERBILD Alles-Öffner (HKLM-x32\...\{777C64A3-5909-4DBC-B917-F5AD8DFB9B09}) (Version: 1.0.8 - J3S)

COMPUTERBILD Alles-Öffner (x32 Version: 1.0.8 - J3S) Hidden

Crazy Chicken Kart 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Dartuoso (HKLM-x32\...\Dartuoso) (Version:  - )

Der Planer 1 (HKLM-x32\...\Der Planer 1) (Version:  - )

Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)

Download Protect (HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version:  - Download Protect)

Dream Builder - Erlebnispark 1.0 (HKLM-x32\...\Dream Builder - Erlebnispark 1.0) (Version: 1.0 - BigFish)

Driving Speed 2.0 (HKLM-x32\...\Driving Speed 2_is1) (Version:  - WheelSpin Studios)

eBay Worldwide (HKLM-x32\...\{D3E5A972-9A15-427D-AE78-8181A5FD943C}) (Version: 2.2.0409 - OEM)

Electric Sheep 2.7b29 (HKLM-x32\...\Electric Sheep) (Version: 2.7b29 - Electricsheep)

EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)

Evernote v. 4.5.1 (HKLM-x32\...\{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}) (Version: 4.5.1.5451 - Evernote Corp.)

Farmington Tales 1.00 (HKLM-x32\...\Farmington Tales 1.00) (Version: 1.00 - BigFish)

FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden

Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden

Fooz Kids (HKLM-x32\...\FoozKids) (Version: 3.0.8 - FUHU, Inc.)

Fooz Kids (x32 Version: 3.0.8 - FUHU, Inc.) Hidden

Fooz Kids Platform (HKLM-x32\...\{8D68CE08-9A14-4B7B-9857-3C646A2F34C7}) (Version: 2.1 - FUHU, Inc.)

Formatwandler 2013 (HKLM-x32\...\{98C7891F-4BA8-48D3-0001-D4DD055B2886}) (Version: 5.0.12.625 - S.A.D.)

Formatwandler 4 Demo (HKLM-x32\...\{5D2BAB14-B050-43CB-0001-CCB79085A90A}) (Version: 4.0.12.224 - S.A.D.)

Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

FotoMorph version 13.9.1 (HKLM-x32\...\{87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1) (Version: 13.9.1 - Digital Photo Software)

Free Audio Converter version 5.0.45.806 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.45.806 - DVDVideoSoft Ltd.)

Free MP4 Video Converter version 5.0.45.806 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.45.806 - DVDVideoSoft Ltd.)

Free Studio version 5.3.4 (HKLM-x32\...\Free Studio_is1) (Version: 5.3.4 - DVDVideoSoft Ltd.)

Free YouTube Download version 3.2.43.806 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.43.806 - DVDVideoSoft Ltd.)

FUSSBALL MANAGER 13 (HKLM-x32\...\{80AF0300-866F-400F-A350-D53E3C3E34E0}) (Version: 1.0.2.0 - Electronic Arts)

Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.)

Google Earth (HKLM-x32\...\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}) (Version: 6.2.2.6613 - Google)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden

GPL Ghostscript (HKLM\...\GPL Ghostscript 9.15) (Version: 9.15 - Artifex Software Inc.)

Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)

ICQ7.7 (HKLM-x32\...\{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}) (Version: 7.7 - ICQ)

Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)

ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)

Inkscape 0.48.5 (HKLM-x32\...\Inkscape) (Version: 0.48.5 - )

Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)

Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)

JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)

Jewel Match 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden

Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden

John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

K-Lite Codec Pack 7.0.0 (Standard) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )

Launch Manager (HKLM-x32\...\LManager) (Version: 5.1.7 - Acer Inc.)

MAGIX FunPix Maker 1.0.0.0 (D) (HKLM-x32\...\MAGIX FunPix Maker D) (Version: 1.0.0.0 - MAGIX AG)

Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

McAfee Internet Security Suite (HKLM-x32\...\MSC) (Version: 14.0.4121 - McAfee, Inc.)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.167 - McAfee, Inc.)

md Cloud Desktop (HKU\S-1-5-21-3918896019-351383226-3202211127-1000\...\md Cloud Desktop) (Version: 1.00.00.56 - mobilcom-debitel cloud)

MegaCasino (HKLM-x32\...\MegaCasino) (Version:  - )

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.5128.5002 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Works (HKLM-x32\...\{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}) (Version: 08.05.0822 - Microsoft Corporation)

Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.14.00.03 - Huawei Technologies Co.,Ltd)

Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 21.005.15.00.705 - Huawei Technologies Co.,Ltd)

Mozilla Firefox 41.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)

Mozilla Thunderbird 31.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.3.0 (x86 de)) (Version: 31.3.0 - Mozilla)

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden

MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden

MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden

MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)

MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) Hidden

newsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)

newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) Hidden

Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)

Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.3.0.43 - Symantec Corporation)

Open Freely (HKLM\...\{1BF14E04-85DE-480C-9A04-EB36744C66C3}_is1) (Version: 1.0 - Download Freely, LLC)

OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)

Origin (HKLM-x32\...\Origin) (Version: 9.0.11.77 - Electronic Arts, Inc.)

Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden

Personal ID (HKLM-x32\...\{F722209B-739E-40E4-ADB1-062BD032A0DB}) (Version: 1.8.5 - coolspot AG)

Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden

Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)

PokerTH (HKLM-x32\...\PokerTH 1.1.1) (Version: 1.1.1 - www.pokerth.net)

Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden

Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden

Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

RAPTOR-GAMING LG2 (HKLM-x32\...\{1BE44FFC-45D1-4817-B235-370FA823C78D}) (Version: 1.00.0000 - My Company Name)

RarZilla Free Unrar (HKLM-x32\...\RarZilla Free Unrar) (Version: 4.19 - Philipp Winterberg)

ratDVD 0.78.1444 (HKLM-x32\...\ratDVD) (Version: 0.78.1444 - ratDVD)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6438 - Realtek Semiconductor Corp.)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30123 - Realtek Semiconductor Corp.)

Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)

Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden

Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)

Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14024.11 - Samsung Electronics Co., Ltd.)

Samsung Kies3 (x32 Version: 3.2.14024.11 - Samsung Electronics Co., Ltd.) Hidden

Samsung Mobile Modem Device Software (HKLM\...\Samsung Mobile Modem Device) (Version:  - )

SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )

Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version:  - )

SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )

SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)

SAMSUNG USB Mobile Device Software (HKLM\...\SAMSUNG USB Mobile Device) (Version:  - )

Sandboxie 5.04 (64-bit) (HKLM\...\Sandboxie) (Version: 5.04 - Sandboxie Holdings, LLC)

Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)

Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)

Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden

Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden

simfy (HKLM-x32\...\Simfy) (Version: 1.7.6 - simfy AG)

simfy (x32 Version: 1.7.6 - simfy AG) Hidden

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)

Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Smart View 2.0 (HKLM-x32\...\{FBAAAFAE-08A8-4C63-87EA-4AEA9DEE53E1}) (Version: 1.0.0.0 - Samsung)

SopCast 3.5.0 (HKLM-x32\...\SopCast) (Version: 3.5.0 - www.sopcast.com)

SpyHunter (HKLM\...\{1F7E4FF9-D2E5-4258-9AE1-E16E6CB3252A}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)

Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)

Steganos Safe 12 (HKLM-x32\...\{D9EB1AF1-5A27-49E7-B83B-D3AB9FF407DD}) (Version: 12.0 - Steganos Software GmbH)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.6.0 - Synaptics Incorporated)

Terminplaner .Net (HKLM-x32\...\{AFC4FEEE-6E08-4CC9-815E-5CEDF2C15E2E}_is1) (Version:  - Ronny Decke)

Torchlight (x32 Version: 2.2.0.97 - WildTangent) Hidden

TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)

Two Worlds Pinball (HKLM-x32\...\Two Worlds Pinball) (Version:  - )

Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)

Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)

Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden

UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version:  - Tangysoft Ltd.)

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden

VirtualDJ 8 (HKLM-x32\...\{85E12659-D3A1-4583-BA1C-95DF53C3C632}) (Version: 8.0.2087.0 - Atomix Productions)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden

Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3504 - Acer Incorporated)

WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.2200 - Broadcom Corporation)

WildTangent Games App (x32 Version: 4.0.11.2 - WildTangent) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)

WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)

Wir-feiern-Finale.de Torwandschießen (HKLM-x32\...\DMM-Torwand3D) (Version: 1.0D - Anders und Seim Neue Medien AG)

XMedia Recode Version 3.1.5.8 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.5.8 - XMedia Recode)

Zattoo4 4.0.5 (HKLM-x32\...\Zattoo4) (Version: 4.0.5 - Zattoo Inc.)

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden

Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Wiederherstellungspunkte =========================
 

18-10-2015 11:03:22 JRT Pre-Junkware Removal
 

==================== Hosts Inhalt: ===============================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2009-07-14 04:34 - 2015-09-06 22:40 - 00000856 ____N C:\Windows\system32\Drivers\etc\hosts
 

0.0.0.1        mssplus.mcafee.com
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {01E4795C-4535-4A44-BDD8-85C2A49DFBD5} - \Browser Updater\Browser Updater -> Keine Datei <==== ACHTUNG

Task: {2616A0BD-2D61-4DB2-BB5A-50A73F4A1EC5} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe

Task: {31872A18-7D58-4576-AEF9-5E839ECCDA69} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)

Task: {34ACE63B-7FB2-4671-BEA4-CF3BA9B64E26} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {4FC56446-9B35-4FF4-BDA9-4286F456D288} - System32\Tasks\{919B8F1D-4F13-4FEA-92F6-91B2D6F26E1C} => pcalua.exe -a F:\Install\MSWorks\instmsia.exe -d F:\Install\MSWorks

Task: {53850F7A-520A-47EA-B529-8C072FDECE95} - System32\Tasks\{0BA4CF15-E44F-408D-B738-AB1B8533BB61} => pcalua.exe -a "C:\Users\Eddy\Desktop\Neuer Ordner (2)\Malefiz\unins000.exe" -d "C:\Users\Eddy\Desktop\Neuer Ordner (2)\Malefiz"

Task: {54A6D775-D31C-43CA-815C-E71ABC8D3BB8} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2014-01-09] (Enigma Software Group USA, LLC.)

Task: {59D1455D-16FD-4E46-89D5-81BD23284DED} - System32\Tasks\{817180F0-BF3D-4575-B585-E91F29A18462} => pcalua.exe -a "C:\Program Files (x86)\Mobile Partner\uninst.exe"

Task: {5AC1DC49-B73C-4CAF-B7C6-785E96099358} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6af359499f7e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {5F1EF2D1-77BA-4839-9B9F-9ECD56ACC59C} - System32\Tasks\{C39D68A3-4562-4A71-A2BE-0AA9798E4AD1} => pcalua.exe -a C:\PROGRA~2\TWOWOR~1\UNWISE.EXE -c C:\PROGRA~2\TWOWOR~1\INSTALL.LOG

Task: {6EAFF1D8-0F49-496A-8549-725B0FFA59EC} - System32\Tasks\clear.fi => C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe [2011-08-24] (Acer Incorporated)

Task: {7CAE43F5-FE4A-4E52-8E83-E202045A3603} - System32\Tasks\GoogleUpdateTaskMachineUA1cfff27e964e0f2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {872EDAE5-70DD-447B-80D6-EE5F8AF6498B} - System32\Tasks\{64473CF1-63C3-4D6B-ACE3-433653082C5A} => pcalua.exe -a C:\Users\Eddy\Desktop\Anno1503_Setup.part2\_setup\setup.exe -d C:\Users\Eddy\Desktop\Anno1503_Setup.part2\_setup

Task: {87563B0C-C677-4754-AD37-6C44E7F499E2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe

Task: {8FD1B092-ECD1-4F4A-8D6C-B03C70BEEC9D} - System32\Tasks\{82A423FA-EED4-4FA0-B021-2F717CF2F446} => pcalua.exe -a C:\Users\Eddy\Downloads\Domination_install_1.1.1.1.exe -d C:\Users\Eddy\Downloads

Task: {9F6F7603-5CD2-4494-B50D-4496D08D02B5} - \ProtectedSearch\Protected Search -> Keine Datei <==== ACHTUNG

Task: {A0C1C0AD-4961-4E81-BC7F-D6FFA61FDEA9} - System32\Tasks\{A4E863F4-54DF-4E68-BC1F-335541B0E5AC} => C:\Program Files (x86)\Steganos Safe 12\Safe.exe [2010-10-12] (Steganos Software GmbH)

Task: {A2872A04-2E69-45FF-A071-F360456699CD} - System32\Tasks\Norton Security Scan for Eddy => C:\Program Files (x86)\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-07-07] (Symantec Corporation)

Task: {A6F0128F-6CED-4A67-B3B4-A691CC41B0B1} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe

Task: {AFE3DBE1-FD61-4F04-B018-A00F84ED1BC3} - System32\Tasks\{11CBD83F-FCBD-4281-9D32-E60C5D4B10EF} => pcalua.exe -a C:\Users\Eddy\Desktop\GTAINSTALLER\SETUP.EXE -d C:\Users\Eddy\Desktop\GTAINSTALLER

Task: {B33F03D6-C360-4DD5-AC9C-C7CBF7CC4E98} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)

Task: {B49D7484-858F-4A80-8AFC-C227A5366A12} - System32\Tasks\{300507F1-F024-4A1B-8408-357B9ED6BC94} => pcalua.exe -a C:\Users\Eddy\Downloads\AdAware115WebInstaller.exe -d C:\Users\Eddy\Downloads

Task: {C6F3F1B1-421B-4EDF-9B3F-39080BDDCBF3} - System32\Tasks\DMREngine => C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe [2011-08-24] (CyberLink)

Task: {D2F0044F-2B99-4934-A6CF-57E5D6FF44D8} - System32\Tasks\clear.fiAgent => C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe [2011-08-24] (CyberLink Corp.)

Task: {D5C4F39A-684C-48EB-B0E7-29BE27638498} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe

Task: {DF7B0862-B5F5-4F61-91B0-B5E7A6792E8C} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2011-08-10] (Acer)

Task: {E3E2790B-E2C3-46AD-92A3-1CF2FD7087E2} - System32\Tasks\{307AD743-5378-4593-A10E-D80FF6B1A765} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly

Task: {E617619A-D397-4240-93A3-08859835D94A} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf9bdad3d0b7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {ECF235D5-0689-40E9-8DFE-A5D8AADECB29} - System32\Tasks\GoogleUpdateTaskMachineUA1d041e08c2292bc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {F1FFC2A4-24CE-47CF-8A04-ADCC0C6B6C87} - System32\Tasks\GoogleUpdateTaskMachineUA1cfebabdbadb893 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {FF1F88B8-845D-45B0-87DF-BC05DBABA4DE} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2015-09-18] (Microsoft Corporation)
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf6af359499f7e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfebabdbadb893.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfff27e964e0f2.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d041e08c2292bc.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf9bdad3d0b7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\Norton Security Scan for Eddy.job => C:\PROGRA~2\NORTON~2\Engine\430~1.43\Nss.exe
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
 

2015-07-15 12:50 - 2015-07-15 12:50 - 01588224 _____ () C:\Program Files (x86)\mobilcom-debitel cloud\64\CloudIconOverlay.dll

2010-06-10 11:31 - 2010-06-10 11:31 - 00219648 _____ () C:\Program Files (x86)\Steganos Safe 12\ShellExtension.dll

2009-01-21 17:45 - 2009-01-21 17:45 - 01401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll

2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll

2012-03-10 00:13 - 2012-02-17 21:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll

2014-10-17 09:52 - 2014-10-17 09:52 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9b1cac8d98bd69d3e56a26ff2f96f266\IsdiInterop.ni.dll

2011-10-20 10:18 - 2011-01-13 02:56 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
 

AlternateDataStreams: C:\ProgramData\Temp:6D635C5B

AlternateDataStreams: C:\ProgramData\Temp:9DBB5163

AlternateDataStreams: C:\ProgramData\Temp:D4B9AC7B

AlternateDataStreams: C:\ProgramData\Temp:E07230CC

AlternateDataStreams: C:\ProgramData\Temp:F2958F3A
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
 

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
 
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 
 

==================== Andere Bereiche ============================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKU\S-1-5-21-3918896019-351383226-3202211127-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Eddy\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.2.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

MSCONFIG\startupreg: 2E67A395 => C:\Users\Eddy\AppData\Roaming\Rzrcn\slnzbnwzmc.exe

MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount

MSCONFIG\startupreg: ApnUpdater => "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
 

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [{56FD1BD5-F6D0-4AFE-A412-15BEBDCEB113}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [{8AC469C7-FB13-4AF2-9FBD-41373226DD28}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{DE312465-1B28-42EB-A3C2-BC11CA863D1A}] => (Allow) LPort=2869

FirewallRules: [{F6B33FAD-DE9D-46DA-9878-3D2D9228C87C}] => (Allow) LPort=1900

FirewallRules: [{66B0C3D7-6A90-416C-AB88-FDB6C51642FE}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

FirewallRules: [{33F5DFC4-ECDC-4533-91C1-07FEB8B2C61B}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe

FirewallRules: [{ED29706C-C8F5-41CD-80F1-EDF31A4931A4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe

FirewallRules: [{16623568-4298-4F33-99F7-EB056A31ABC8}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

FirewallRules: [{29953037-DAE6-4076-935A-5ADCC6A0FCFF}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\CLML\CLMLSvc.exe

FirewallRules: [{0D952D3C-F798-47E2-848B-7EF89194C515}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

FirewallRules: [{DA693785-F592-4CF0-B721-B91BF4603C91}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

FirewallRules: [{EF213E3E-3650-4831-B705-4B7B43137280}] => (Block) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

FirewallRules: [{F346830A-99C2-47F9-B84D-BE0DA7515A78}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\Movie\TouchMovie.exe

FirewallRules: [{8C3F3088-1D53-4228-A190-11675EBFB6E9}] => (Allow) C:\Program Files (x86)\Acer\clear.fi\Movie\TouchMovieService.exe

FirewallRules: [{549D2BFF-4D6F-4A72-86DC-B94E0A171C5A}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{4BC1A0B2-CF2E-4BF9-BFC8-66BB21782D4B}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{63EB1E3A-D9C6-483F-9B45-FEF6991AA496}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{D70FEAA4-E61C-4DE5-99FE-92CA3F3C52DC}] => (Allow) C:\Program Files (x86)\ICQ7.7\ICQ.exe

FirewallRules: [{D12D7B7A-F856-4CE8-8673-6782EE587361}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe

FirewallRules: [{03BAA337-02AC-426E-BA60-B86B22E1C494}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe

FirewallRules: [{AEE76894-8AB3-4FDB-9DAB-12C43E56D033}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe

FirewallRules: [{44A6241A-1561-406C-A6A5-C5E7381ED5F9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe

FirewallRules: [{7889B03B-F921-43B3-B6FF-7A612C90C83B}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe

FirewallRules: [{F0D60C67-786F-41CE-A405-2598FC1B761F}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe

FirewallRules: [{31C0C53F-4041-468D-8DE7-45725DE10D48}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

FirewallRules: [{55A8CF77-16EE-427D-98C0-691B828BAE44}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

FirewallRules: [{2725BD32-9870-4214-B0D0-58A4A8237891}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{575F877B-E929-4015-B7D1-CE428D1CC858}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{CEFA8A6B-67CC-4F13-8B39-F620F7FBD396}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities In Motion\Cities In Motion.exe

FirewallRules: [{B4A9DC2A-7E61-4F60-9053-09D4E0066A83}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities In Motion\Cities In Motion.exe

FirewallRules: [{02759900-4EBB-49E0-AE98-B319F07DD89F}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA Manager 13\Manager13.exe

FirewallRules: [{5AA4DC6C-F8A5-4133-928E-FD5135D60536}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA Manager 13\Manager13.exe

FirewallRules: [{E63DD7ED-41E3-43EB-9006-FFC80954026B}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{FE89A0C6-CECA-4E01-8B80-AF4B63357936}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{20FBB0B2-C0FC-4551-A508-07A6C50A614D}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{F4CBA201-B801-4475-B41B-24C41EF2CD13}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{7F0B8E51-8BF8-435B-A4EA-84A6FE470BBB}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{34883A57-45C2-485B-B412-FDF79947011D}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{712CC05C-6355-436E-9886-12EEB7C9EFEA}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{9020DC35-EE57-4B29-B422-2DE4D556E6BE}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{02D0E990-7463-416E-B66A-6D47CE70F656}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{5E997BDB-F45C-41C7-9757-B987983523F1}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{9D7F1A9B-5B2E-4467-9F34-ED2A13D69022}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{2AE413DA-11FC-4E6D-BF37-19F5AE950B0D}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{DC686AF4-CEAC-4644-8165-538E07716449}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{9EDAD415-DAD6-4F31-BC11-536825FBFAC3}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe

FirewallRules: [{F4388680-5A5F-437E-A1B3-0068D6935BB2}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{BAA82951-7F94-4D7B-B556-B8EC0AB856D7}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll

FirewallRules: [{2CD90F93-7325-4656-A4A1-DFCDDD7B7854}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{3766216C-6517-4EA2-B6C0-D7A16DBFA442}] => (Allow) C:\SoloApp\SoloApp.exe

FirewallRules: [{A19E8F53-08D4-44F9-B991-96D7E3EDA795}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{8C675755-2494-4BC1-81AD-E86ED9E11202}] => (Allow) C:\SoloApp\WebDriver.dll

FirewallRules: [{DB171209-25D4-4339-B89D-3734163518F1}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{5675E120-41F1-4ADE-8DC9-2E69DB125E6F}] => (Allow) C:\SoloApp\chromedriver.exe

FirewallRules: [{C47CCDA1-AFB8-4209-8FD0-CD116391C131}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{E98ADA7E-865B-42B0-8E83-EB22B77E93BB}] => (Allow) C:\SoloApp\IEDriverServer.exe

FirewallRules: [{4186205E-BF49-4143-9CA6-9F5338FE3244}] => (Allow) C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\dtUser.exe

FirewallRules: [{FA45B979-6B13-4156-B0AC-6A88CA2BC82E}] => (Allow) C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\dtUser.exe

FirewallRules: [{F9BEB92B-6CCB-4E3B-A6BE-24E80EC508FC}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

FirewallRules: [{9E256555-6D35-47E1-85EB-CF377739A87C}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

FirewallRules: [{61C17895-8B85-45BE-B980-21FF0BEC41B7}] => (Allow) %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

FirewallRules: [{EDD8F4F1-8B90-4409-ACF1-86022A77060A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{6BAA0133-C853-451D-8BF7-16C8EDCD028A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{64D5CC1D-2E51-4C4B-8D1B-E74E3AA3A960}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{EB727160-7E3A-4689-9CAC-E1735FE3453F}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{641395A3-1072-4A2F-AD9F-A4AED333188C}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{8F0FC1CA-2C6F-480C-B65C-A2C1F94F0C83}] => (Allow) C:\Program Files (x86)\SmartView2\Smart View 2.0.exe

FirewallRules: [{9D034CB0-8C34-4DE7-89DC-F8C6995F3AAA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{C98EDA4C-2DA4-4116-924B-A20ECE227A9C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{AA6E6FF4-FB4B-4271-BDBE-8C3E837B8545}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 

==================== Fehlerhafte Geräte im Gerätemanager =============
 

Name: Teredo Tunneling Pseudo-Interface

Description: Microsoft-Teredo-Tunneling-Adapter

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: tunnel

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 

==================== Fehlereinträge in der Ereignisanzeige: =========================
 

Applikationsfehler:

==================

Error: (10/18/2015 03:26:45 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 41.0.2.5765, Zeitstempel: 0x561ef9f1

Name des fehlerhaften Moduls: mozglue.dll, Version: 41.0.2.5765, Zeitstempel: 0x561ee53f

Ausnahmecode: 0x80000003

Fehleroffset: 0x0000ec91

ID des fehlerhaften Prozesses: 0x13bc

Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0

Pfad der fehlerhaften Anwendung: plugin-container.exe1

Pfad des fehlerhaften Moduls: plugin-container.exe2

Berichtskennung: plugin-container.exe3
 

Error: (10/18/2015 10:54:30 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/18/2015 10:29:36 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/17/2015 11:22:11 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/16/2015 06:05:21 PM) (Source: MsiInstaller) (EventID: 1024) (User: Zauberkiste)

Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F094E6500}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
 

Error: (10/16/2015 08:46:27 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 10:14:31 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 09:45:13 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 01:43:54 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (10/15/2015 08:52:50 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 

Systemfehler:

=============

Error: (10/18/2015 12:51:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
 

Error: (10/18/2015 11:37:19 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
 

Error: (10/18/2015 11:04:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (10/18/2015 11:04:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (10/18/2015 11:04:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Client Virtualization Handler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "StarWind AE Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "Application Virtualization Service Agent" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (10/18/2015 11:04:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "NTI IScheduleSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 
 

==================== Speicherinformationen =========================== 
 

Prozessor: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz

Prozentuale Nutzung des RAM: 28%

Installierter physikalischer RAM: 8173.86 MB

Verfügbarer physikalischer RAM: 5817.85 MB

Summe virtueller Speicher: 16345.93 MB

Verfügbarer virtueller Speicher: 13939.75 MB
 

==================== Laufwerke ================================
 

Drive c: (Acer) (Fixed) (Total:95.69 GB) (Free:5.86 GB) NTFS

Drive d: (DATA) (Fixed) (Total:698.63 GB) (Free:76.98 GB) NTFS

Drive e: (BEST_OF_FC_BAYERN_DVD1) (CDROM) (Total:5.76 GB) (Free:0 GB) UDF
 

==================== MBR & Partitionstabelle ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 960CB0DC)

Partition 1: (Not Active) - (Size=16 GB) - (Type=27)

Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=95.7 GB) - (Type=07 NTFS)
 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 960CB0EA)

Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
 

==================== Ende von Addition.txt ============================

--- --- ---

Möööööp :D :zunge:

Du musst den Fix völlig nochmal machen weil du keinen Text (also den von mir genannten) in die Fixlist reingeschrieben hast