Trojaner-Board - Nicht zu entfernende Werbung im Firefox.

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-12-2015
durchgeführt von Manuel (2015-12-05 17:42:27)
Gestartet von C:\Users\Manuel\Downloads
Windows 10 Home (X64) (2015-12-04 05:35:20)
Start-Modus: Normal
==========================================================

==================== Konten: =============================

Administrator (S-1-5-21-1273145720-561992726-3298081300-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1273145720-561992726-3298081300-503 - Limited - Disabled)
Gast (S-1-5-21-1273145720-561992726-3298081300-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1273145720-561992726-3298081300-1003 - Limited - Enabled)
Manuel (S-1-5-21-1273145720-561992726-3298081300-1001 - Administrator - Enabled) => C:\Users\Manuel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.09.2002.1 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.103.2020.202 - Alps Electric)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{1B906F85-EA56-5379-F10B-1BA6530240DC}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.4.4.2 - AppEx Networks)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
calibre 64bit (HKLM\...\{A80512D3-A72D-4DAF-B7DF-3804F9FAB1CE}) (Version: 2.44.1 - Kovid Goyal)
Canon iP4300 (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4300) (Version: - )
Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.14.0.0 - Canon Inc.)
Canon Utilities EOS Sample Music (HKLM-x32\...\EOS Sample Music) (Version: 1.0.1.1 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.0.0 - Canon Inc.)
Canon Utilities ImageBrowser EX (HKLM-x32\...\ImageBrowser EX) (Version: 1.5.2.8 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.14.0.0 - Canon Inc.)
ClipGrab 3.5.5 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - Philipp Schmieder Medien)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.4 - Ellora Assets Corporation)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Melody Assistant (HKLM-x32\...\Melody Assistant) (Version: 7.6.3i - Myriad SARL)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
MIDI Pianist 1.30 (HKLM-x32\...\{2669B2D8-3420-4930-AA5A-D70C0726D46F}) (Version: - Guenther Goerg)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
Norton Online Backup (HKLM-x32\...\{E625FCA0-E43E-4D3B-92FF-4851308A0366}) (Version: 2.8.0.44 - Symantec Corporation)
Norton Online Backup (x32 Version: 4.5.0.9 - Symantec Corporation) Hidden
OEM Application Profile (HKLM-x32\...\{276FD4A2-030F-8A24-7DFE-9B1384131BCD}) (Version: 1.00.0000 - Ihr Firmenname)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 33.0.1990.113 (HKLM-x32\...\Opera 33.0.1990.113) (Version: 33.0.1990.113 - Opera Software)
Perfect Effects Free 9 (HKLM-x32\...\Perfect Effects Free 9) (Version: 9.5.0 - on1)
PhotoFiltre 7 (HKU\S-1-5-21-1273145720-561992726-3298081300-1001\...\PhotoFiltre 7) (Version: - )
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version: - )
Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.10.0 - Synaptics Incorporated)
Synthesia (HKLM-x32\...\Synthesia) (Version: 10.2 - Synthesia LLC)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Web Companion (HKLM-x32\...\{dad73a7c-3d7f-4194-89d9-92714902acbb}) (Version: 2.1.1199.2443 - Lavasoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
XW-DJ1 v2.26.0 (HKLM-x32\...\XW-DJ1 v2.26.0) (Version: 2.26.0 - Casio)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1273145720-561992726-3298081300-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Manuel\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

05-12-2015 06:43:35 Windows Update

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2015-09-05 18:58 - 00000856 ____A C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.1 mssplus.mcafee.com

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0583DAA9-8CCD-4611-847D-229A256D908D} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {0EB7BC5A-6A35-4529-B30B-8E6255C4F704} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {1044DF59-7DF2-49DE-806C-F242CE7B4B58} - System32\Tasks\{D6F067B6-DC67-4EA0-BCBB-5CF0DD427DBE} => pcalua.exe -a "C:\Program Files (x86)\OLBPre\updater\updater.exe" -c -uninstall="MyPC Backup "
Task: {18188656-F548-43A4-BEF7-0892D9B112EC} - System32\Tasks\{E49DE93D-3C2D-4E1A-A749-025F78238EEF} => pcalua.exe -a "C:\Program Files\WNEn\WWE_uninstall.exe"
Task: {1EBF23DF-21FC-4DD8-B731-817F8B77EE58} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {1F30D7A3-F649-4211-9326-A685814F8AF0} - System32\Tasks\gte3014 => C:\PROGRA~2\FAST-S~1\gte3014.exe <==== ACHTUNG
Task: {29D1A7C4-8C65-49DF-AF57-6492251C2E27} - \Start Driver Reviver Schedule -> Keine Datei <==== ACHTUNG
Task: {36C6E7DD-4572-422D-A9A1-D345574869D6} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {3BD8A3C6-9448-456D-924A-F36F112B9582} - \Form Bus -> Keine Datei <==== ACHTUNG
Task: {3FE981C1-B198-4003-AA79-5C42D0C6E090} - System32\Tasks\Kinafaeheufok => C:\ProgramData\Kinafaeheufok\1.0.6.1\imeibauk.exe
Task: {51B4A8C0-A606-4CA5-9A68-7FE931D5FFE6} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {711B438A-7FA4-418A-A5C7-58D79E27A7CE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {77AE1EF2-3FC9-4126-8A73-E69DBE956A86} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {784FED1A-E1BE-4025-9189-74AF98C450CE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-13] (Microsoft Corporation)
Task: {8CB1EEEB-F046-4445-9B67-ED3EB58CC2F2} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {955D0AAF-8ADF-428C-8D3A-67B003C6F6A9} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
Task: {9D0C96A7-64B7-40D4-96CD-D5C28A91391E} - System32\Tasks\Opera scheduled Autoupdate 1448721735 => C:\Program Files (x86)\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {9D1B6A36-A029-4B78-A226-A78B1E354BC6} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-03] (Acer Incorporate)
Task: {9DF2F485-CE47-4201-9809-14EB8207E70A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {A69CB606-0D34-4F3E-B7F4-2F05B9F76B07} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {AB467F6A-1B52-42C7-BF58-0690CB40EF27} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {AE6CA2EE-3ADB-43F5-98B0-6D75686607BB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {CD2B74C1-B603-42A2-A6F4-8744262795F2} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)
Task: {CEE41AE5-AB08-4134-9C32-C05C715C3C93} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {CF4654BB-0740-4BC8-877C-D68E7137BEE3} - System32\Tasks\Dolby Selector => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {DA0CE66D-8A3C-42D1-BE38-9FA352195A2A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DAFE209B-C28F-490E-82C4-87125500905A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {DB43CDAD-1D7A-49E7-85A6-B117A6662845} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\\Ara.exe [2013-08-07] (Symantec Corporation)
Task: {E48832EA-24FA-4EB2-B6C3-28740C5C7D92} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E63F2B99-274B-4014-A1A9-E989BBFA6B28} - System32\Tasks\qPHwMWksY9eT0WjIbKxar => C:\Users\Manuel\AppData\Roaming\qPHwMWksY9eT0WjIbKxar.exe <==== ACHTUNG
Task: {EDEF0AE6-833E-44B5-B124-BB4510DB0639} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {F4B3E856-1B33-43DD-B604-16F4F3117964} - \Start Driver Reviver Update -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\qPHwMWksY9eT0WjIbKxar.job => C:\Users\Manuel\AppData\Roaming\qPHwMWksY9eT0WjIbKxar.exe <==== ACHTUNG

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-08-21 22:09 - 2015-08-21 22:09 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 02652784 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 02652784 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-02-23 13:29 - 2013-07-30 18:11 - 00110152 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2015-12-04 09:45 - 2015-12-04 09:45 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-10-30 08:17 - 2015-10-30 08:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 08005632 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-26 18:25 - 2014-12-10 17:35 - 00323584 _____ () C:\Program Files\Casio\XW-DJ1\CasioCplApp.exe
2015-05-26 13:59 - 2015-02-10 14:08 - 00069120 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
2015-08-21 22:09 - 2015-08-21 22:09 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-12-02 23:05 - 2015-11-24 19:12 - 01971528 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libglesv2.dll
2015-12-02 23:05 - 2015-11-24 19:12 - 00093512 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libegl.dll
2015-12-02 23:05 - 2015-11-24 19:13 - 28864328 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\PepperFlash\pepflashplayer.dll
2015-12-04 09:45 - 2015-12-04 09:45 - 00152064 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-12-04 09:45 - 2015-12-04 09:45 - 18906624 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-11-26 18:25 - 2014-12-10 17:35 - 00196608 _____ () C:\Program Files\Casio\XW-DJ1\casioxwdj1api.dll
2015-05-26 13:59 - 2015-02-18 13:11 - 00112128 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1273145720-561992726-3298081300-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1273145720-561992726-3298081300-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1273145720-561992726-3298081300-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Manuel\AppData\Roaming\Microsoft\Windows Live Photo Gallery\Fotogalerie-Hintergrundbild.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run32: => "abDocsDllLoader"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{ABC17DEB-AFF0-4233-AF53-6FDD0E9181F2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [UDP Query User{6BED0674-75D7-4D26-B041-CD9C980D7162}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe
FirewallRules: [TCP Query User{ED9AFED8-CF80-4DBC-A58B-5C4D323B0CFC}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe
FirewallRules: [UDP Query User{CCB92935-EBEB-461C-8318-99F6926D6441}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe
FirewallRules: [TCP Query User{4FD7E02F-FEAC-42C3-9598-06B35A774BA8}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe
FirewallRules: [UDP Query User{CAD18D84-2CC4-4E09-8549-3C31A25BBD59}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe
FirewallRules: [TCP Query User{9C82D168-C2BA-4248-8902-9B0170A05383}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe
FirewallRules: [UDP Query User{D2DC7C77-59C7-4282-9D61-316E741AF736}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [TCP Query User{887129DB-E03C-491D-8843-72B13F8C676A}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [{4B2A7357-FF55-4CB8-B363-F977294B82AB}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{E6D550E0-AC2A-46ED-9255-24E868F9D04B}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{C1C89701-7265-4208-A7B4-1C15652609AF}] => (Allow) LPort=1900
FirewallRules: [{BAD26974-E6DB-473E-8DB7-1D75F7BAE82F}] => (Allow) LPort=2869
FirewallRules: [{FBE49B43-8402-4BAB-A26F-AB80964B8523}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{4876EEAD-F807-48A3-B931-B99EFEB302D7}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{64D7479C-3C3C-4D42-A27B-E15F15E7B548}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{B95B132A-2E53-4833-99D9-0B7D9C47F2E1}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{31AB3515-7EA3-4C0F-BA6D-F709FC49863F}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{D07F9650-EAF0-40D0-9B4F-B9BF26A5390D}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{B63C3024-2751-4470-8F44-D6C3C682E6EA}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{22517AD3-B5AC-4DF5-BD42-771B5D3DB22C}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{72C7FCF0-AE51-4DDC-93A8-7F9D1E0FC9E3}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{EA4BB18B-DF91-41D8-8C6F-23B4A8D6A1E8}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{0C61735D-2E4F-42BD-A6AF-34168991A9A6}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{502E2D48-C599-436A-89EC-1AC7890CEF1E}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{3002CEB4-0180-4633-AD68-9D0D1A2F857C}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{25EA8523-99EA-4160-9CC6-C6AC0FC70FA7}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{BAB6188B-70A1-46B7-AAAC-CC17A0037049}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{65BCBAF9-613D-4FCF-9159-7E1894477D2C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{F751B177-0B59-46C0-B378-D127FCF67393}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{43C31AA2-A188-4931-85A4-80DE8558C461}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{F402FD03-8938-4B89-9814-7E0BE2C4964A}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{9D07CA7C-3832-480E-96EB-FDDCE51DF2C5}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{66E3D7ED-0B30-441D-AD61-3C4DAE82D85C}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{10962F37-9BF2-4030-AD47-05FF9B3BC135}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{9A886F88-FFB5-4C39-BB45-657A9A317E54}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{ED3E4370-5A57-498C-B383-CC0FBFF2B571}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{8F1DE802-D847-4253-9317-02BA5FDD1AD4}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{36C9CF3D-D297-47BC-9673-8A3F2E4DB7EE}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{CE4A058D-5763-415E-9908-77C90EDEA8CD}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{ECE2B27C-57C5-4F28-8CEE-BD30883B8FC0}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{59975B08-6428-460A-B33F-FC3518CB26C8}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{989EE3D5-D5AE-456E-AEE6-CCD6E3339443}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{60D27AC3-4C34-4F8A-838B-C65ABC0A374F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{54E5EC12-7730-447F-B0CF-58F99411340C}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{3CC5D384-DE4E-4A6F-B517-0FA83A563D33}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{027F6AD4-BADA-4A00-8ED3-B1B9F620A73A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{3CD89CEB-9AB7-4D45-B8FE-441FD86468A1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{0CD5F393-7DC8-4FBD-8CF4-0CF5E472E1A3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{7F2C0592-4451-4A03-A63D-782668F6E868}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{5ADA1914-E9E0-4155-AE4D-1CE70DE11AA7}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{44B08DA1-B9F4-44D9-AF38-59BB8FD79547}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{FB4F2C30-F7EF-4D02-B146-9DD40930C9DF}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{3C91E43C-2F3B-488F-B927-79BDE08FFE46}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/05/2015 06:43:58 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (12/04/2015 07:14:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 07:14:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 06:42:03 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 06:40:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 06:39:39 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 06:39:37 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 06:39:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 06:34:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (12/04/2015 03:19:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Systemfehler:
=============
Error: (12/05/2015 03:17:41 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.

Error: (12/05/2015 03:10:43 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (12/05/2015 02:38:16 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.

Error: (12/05/2015 02:13:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (12/05/2015 12:15:35 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.

Error: (12/05/2015 06:32:24 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.

Error: (12/04/2015 09:44:46 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (12/04/2015 07:24:15 PM) (Source: DCOM) (EventID: 10016) (User: Manu)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}ManuManuelS-1-5-21-1273145720-561992726-3298081300-1001LocalHost (unter Verwendung von LRPC)Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157

Error: (12/04/2015 07:13:04 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (12/04/2015 07:08:09 PM) (Source: DCOM) (EventID: 10010) (User: Manu)
Description: {0002DF02-0000-0000-C000-000000000046}

CodeIntegrity:
===================================
Date: 2015-12-05 12:15:41.476
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:50.873
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:50.816
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:50.735
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:50.157
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:49.047
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:48.916
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:48.626
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:48.575
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-05 07:02:48.362
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen ===========================

Prozessor: AMD A10-5757M APU with Radeon(tm) HD Graphics
Prozentuale Nutzung des RAM: 69%
Installierter physikalischer RAM: 5578.27 MB
Verfügbarer physikalischer RAM: 1725.25 MB
Summe virtueller Speicher: 7178.27 MB
Verfügbarer virtueller Speicher: 1473.48 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:446.8 GB) (Free:358.54 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 5B2447D6)

Partition: GPT.

==================== Ende von Addition.txt ============================
FRST Logfile:

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-12-2015

durchgeführt von Manuel (Administrator) auf MANU (05-12-2015 17:40:30)

Gestartet von C:\Users\Manuel\Downloads

Geladene Profile: Manuel (Verfügbare Profile: Manuel)

Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: Edge)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(AMD) C:\Windows\System32\atiesrxx.exe

(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe

(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe

(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe

() C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe

() C:\Program Files\Casio\XW-DJ1\CasioCplApp.exe

() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

(Farbar) C:\Users\Manuel\Downloads\FRST64 (3).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944648 2015-06-12] (Synaptics Incorporated)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc.)

HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe

HKLM\...\Policies\Explorer: [NoFolderOptions] 0

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKU\S-1-5-21-1273145720-561992726-3298081300-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55349888 2015-09-04] (Skype Technologies S.A.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Casio Control Panel Autostart.lnk [2015-11-26]

ShortcutTarget: Casio Control Panel Autostart.lnk -> C:\Program Files\Casio\XW-DJ1\CasioCplApp.exe ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk [2015-11-22]

ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe ()
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Hosts: 0.0.0.1        mssplus.mcafee.com

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2

Tcpip\..\Interfaces\{8d538c83-dc46-4aef-84b9-eff1c3096ba4}: [DhcpNameServer] 192.168.0.1 192.168.0.2
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130930216073929093&GUID=05B5E2C7-6E6C-AA0A-4F3F-7F47FE4E0B66

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com

HKU\S-1-5-21-1273145720-561992726-3298081300-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130930216073945408&GUID=05B5E2C7-6E6C-AA0A-4F3F-7F47FE4E0B66

SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}

SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)

BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)

Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)

Toolbar: HKU\S-1-5-21-1273145720-561992726-3298081300-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
 

FireFox:

========

FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\ep28g06x.default

FF SelectedSearchEngine: Bing®

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()

FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [Keine Datei]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)

FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [Keine Datei]

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Extension: Outrageous Deal - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\ep28g06x.default\Extensions\{9f151910-c7b7-4060-98b3-333fd4cbc434}.xpi [2015-11-26] [ist nicht signiert]

FF Extension: Adblock Plus - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\ep28g06x.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-27]

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden

FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!70ACDE8C77C274EF19CEF2F3A8DE5D6270AC.js [2015-11-18]
 

Chrome: 

=======

CHR NewTab: Default -> "chrome-extension://akhmefomaihbclfehodbdmoaeoodjjdo/newtab/newtab-hp.html"

CHR Profile: C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Slides) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-02]

CHR Extension: (Easy Screenshot) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhmefomaihbclfehodbdmoaeoodjjdo [2015-12-04]

CHR Extension: (Google Docs) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-02]

CHR Extension: (Google Drive) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-02]

CHR Extension: (YouTube) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-02]

CHR Extension: (Google Search) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-02]

CHR Extension: (Google Sheets) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-02]

CHR Extension: (SiteAdvisor) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-12-02]

CHR Extension: (Google Docs Offline) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-04]

CHR Extension: (Chrome Web Store Payments) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-02]

CHR Extension: (Gmail) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-02]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]

R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)

R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-04-24] (Freemake) [Datei ist nicht signiert]

R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2015-11-25] (Lavasoft Limited)

R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4278112 2013-08-01] (Symantec Corporation)

R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-06-12] (Synaptics Incorporated)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)

R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (AppEx Networks Corporation)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)

S3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0405000.009\ccSetx64.sys [150104 2013-07-30] (Symantec Corporation)

R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)

R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)

R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)

R3 SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver_AMDASF.sys [42184 2015-06-12] (Synaptics Incorporated)

S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)

R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)

R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-05 17:38 - 2015-12-05 17:39 - 02369024 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (3).exe

2015-12-05 17:38 - 2015-12-05 17:38 - 02369024 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (4).exe

2015-12-05 13:28 - 2015-12-05 13:28 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-12-04 09:09 - 2015-12-04 09:09 - 00002395 _____ C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-12-04 09:07 - 2015-12-04 09:07 - 00000000 ____D C:\ProgramData\ATI

2015-12-04 09:05 - 2015-12-04 09:05 - 00000000 ____D C:\Users\Manuel\AppData\Local\ActiveSync

2015-12-04 09:02 - 2015-12-04 09:02 - 00000020 ___SH C:\Users\Manuel\ntuser.ini

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Vorlagen

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Startmenü

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2015-12-04 06:24 - 2015-12-04 19:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-12-04 06:13 - 2015-12-04 06:13 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default\AppData\Local\ATI

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI

2015-12-04 06:08 - 2015-12-04 06:15 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-12-04 06:06 - 2015-12-04 19:09 - 00000000 ____D C:\Users\Manuel

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Vorlagen

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Startmenü

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Netzwerkumgebung

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Lokale Einstellungen

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Eigene Dateien

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Druckumgebung

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Videos

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Musik

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Bilder

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Verlauf

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Anwendungsdaten

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Anwendungsdaten

2015-12-04 06:02 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\AMD

2015-12-04 06:02 - 2015-12-04 06:02 - 00646947 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____H C:\ProgramData\DP45977C.lfl

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____D C:\Program Files\Common Files\Atheros

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____D C:\Program Files\ATI Technologies

2015-12-04 06:01 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\Package Cache

2015-12-04 06:01 - 2015-12-04 06:09 - 00000000 ____D C:\Program Files (x86)\ATI Technologies

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_AMDASF_01011.Wdf

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\Synaptics

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\Realtek

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\AMD

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 _____ C:\WINDOWS\ativpsrm.bin

2015-12-04 06:00 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-12-04 05:57 - 2015-12-04 06:16 - 00218048 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-12-04 05:56 - 2015-12-04 12:00 - 00000000 ___DC C:\WINDOWS\Panther

2015-12-04 05:51 - 2015-12-04 05:51 - 24603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 13376512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 13017088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 12120064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2015-12-04 05:51 - 2015-12-04 05:51 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2015-12-04 05:51 - 2015-12-04 05:51 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01998848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2015-12-04 05:51 - 2015-12-04 05:51 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2015-12-04 05:51 - 2015-12-04 05:51 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00000000 ____D C:\Windows.old

2015-12-04 05:49 - 2015-12-04 05:49 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files\MSBuild

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-12-04 05:44 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-12-04 05:44 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-12-04 05:44 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-12-04 05:44 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-12-04 05:44 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-12-04 05:44 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-12-03 21:48 - 2015-12-03 21:48 - 14193160 _____ (Native Instruments GmbH) C:\Users\Manuel\Downloads\Alicias_Keys_Downloader (2).exe

2015-12-03 21:27 - 2015-12-03 21:27 - 14193160 _____ (Native Instruments GmbH) C:\Users\Manuel\Downloads\Alicias_Keys_Downloader (1).exe

2015-12-03 21:26 - 2015-12-03 21:51 - 00000000 ____D C:\Users\Manuel\Downloads\_nidownload_7fc60d8813c881f07538bc113254dc9524dd2724

2015-12-03 21:26 - 2015-12-03 21:48 - 00043376 _____ C:\Users\Manuel\Downloads\_nidownload_Alicias_Keys.toc

2015-12-03 21:25 - 2015-12-03 21:25 - 14193160 _____ (Native Instruments GmbH) C:\Users\Manuel\Downloads\Alicias_Keys_Downloader.exe

2015-12-03 21:05 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab

2015-12-03 21:05 - 2015-12-03 21:05 - 00001040 _____ C:\Users\Public\Desktop\ClipGrab.lnk

2015-12-03 21:05 - 2015-12-03 21:05 - 00000000 ____D C:\Program Files (x86)\ClipGrab

2015-12-03 21:03 - 2015-12-03 21:04 - 22178792 _____ (Philipp Schmieder Medien ) C:\Users\Manuel\Downloads\clipgrab-3.5.5.exe

2015-12-02 23:05 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-12-02 23:05 - 2015-12-02 23:05 - 00002288 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-12-02 23:03 - 2015-12-02 23:04 - 00929872 _____ (Google Inc.) C:\Users\Manuel\Downloads\ChromeSetup.exe

2015-12-02 22:49 - 2015-12-02 22:49 - 00000000 ____D C:\Users\Manuel\AppData\Local\AOP SDK

2015-12-02 21:09 - 2015-12-02 21:10 - 01736704 _____ C:\Users\Manuel\Downloads\AdwCleaner_5.023.exe

2015-12-02 08:25 - 2015-12-02 08:29 - 00253582 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.25.03_log.txt

2015-12-02 08:23 - 2015-12-02 08:24 - 00252680 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.23.06_log.txt

2015-12-02 08:18 - 2015-12-02 08:18 - 02350080 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (2).exe

2015-12-02 08:15 - 2015-12-02 08:15 - 02350080 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (1).exe

2015-12-02 08:09 - 2015-12-02 08:11 - 00252826 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.09.53_log.txt

2015-12-02 08:09 - 2015-12-02 08:09 - 00000560 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.09.44_log.txt

2015-12-02 08:04 - 2015-12-02 08:20 - 00058743 _____ C:\Users\Manuel\Downloads\Addition.txt

2015-12-02 08:03 - 2015-12-05 17:41 - 00015820 _____ C:\Users\Manuel\Downloads\FRST.txt

2015-12-02 08:01 - 2015-12-02 08:03 - 02350080 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64.exe

2015-12-01 23:43 - 2015-12-01 23:49 - 00252680 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_23.43.03_log.txt

2015-12-01 23:42 - 2015-12-01 23:43 - 04398264 _____ (Kaspersky Lab ZAO) C:\Users\Manuel\Downloads\tdsskiller.exe

2015-12-01 23:26 - 2015-12-01 23:28 - 00252680 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_23.26.38_log.txt

2015-12-01 23:25 - 2015-12-01 23:25 - 00048382 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_23.25.21_log.txt

2015-12-01 22:08 - 2015-12-01 22:10 - 00252846 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_22.08.56_log.txt

2015-12-01 21:43 - 2015-12-01 21:43 - 00000000 ____D C:\Program Files (x86)\Native Instruments

2015-12-01 12:43 - 2015-12-01 12:43 - 00000000 _____ C:\Users\Manuel\defogger_reenable

2015-11-30 16:12 - 2015-12-01 14:16 - 00000000 ____D C:\Users\Manuel\Documents\REAPER Media

2015-11-30 16:09 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)

2015-11-30 16:09 - 2015-11-30 16:09 - 00000873 _____ C:\Users\Public\Desktop\REAPER (x64).lnk

2015-11-30 16:09 - 2015-11-30 16:09 - 00000000 ____D C:\Program Files\REAPER (x64)

2015-11-28 15:42 - 2015-12-04 06:24 - 00003294 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1448721735

2015-11-28 15:42 - 2015-11-28 15:42 - 00001208 _____ C:\Users\Public\Desktop\Opera.lnk

2015-11-28 15:42 - 2015-11-28 15:42 - 00001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

2015-11-27 21:18 - 2015-11-27 23:37 - 00000000 ____D C:\Users\Manuel\Desktop\b

2015-11-27 19:53 - 2015-11-27 23:36 - 00000000 ____D C:\Users\Manuel\Desktop\november

2015-11-27 17:47 - 2015-11-27 17:47 - 00000000 ____D C:\Users\Manuel\Desktop\JRT_NewerVersion

2015-11-27 11:51 - 2015-11-27 11:52 - 00257212 _____ C:\TDSSKiller.3.1.0.6_27.11.2015_11.51.00_log.txt

2015-11-27 11:49 - 2015-11-27 11:49 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\AVG

2015-11-27 11:48 - 2015-11-27 11:48 - 00000000 ____D C:\Users\Manuel\AppData\Local\Avg

2015-11-27 11:47 - 2015-11-27 11:49 - 00000000 ____D C:\ProgramData\AVG

2015-11-27 11:14 - 2015-11-27 11:14 - 00000000 ____D C:\Users\Manuel\Desktop\RECORDER

2015-11-27 10:34 - 2015-11-27 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft

2015-11-26 18:25 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Casio

2015-11-26 18:25 - 2015-11-26 18:25 - 00000000 ____D C:\Program Files\Casio

2015-11-26 15:01 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REAPER

2015-11-26 15:01 - 2015-11-26 15:01 - 00001052 _____ C:\Users\Manuel\Desktop\REAPER.lnk

2015-11-26 15:01 - 2015-11-26 15:01 - 00000000 ____D C:\Program Files (x86)\REAPER

2015-11-26 14:58 - 2015-11-30 16:28 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\REAPER

2015-11-26 14:55 - 2015-11-26 14:55 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software

2015-11-26 09:26 - 2015-11-26 09:26 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\PianoBooster

2015-11-26 09:20 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Piano Booster

2015-11-26 09:20 - 2015-11-26 09:20 - 00000000 ____D C:\Program Files (x86)\Piano Booster

2015-11-25 16:16 - 2015-11-25 16:17 - 00001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia.lnk

2015-11-25 16:02 - 2015-11-25 16:17 - 00001974 _____ C:\Users\Public\Desktop\Synthesia.lnk

2015-11-25 16:02 - 2015-11-25 16:16 - 00000000 ____D C:\Program Files (x86)\Synthesia

2015-11-25 16:02 - 2015-11-25 16:02 - 00000000 ____D C:\Users\Manuel\Documents\Synthesia Music

2015-11-25 15:48 - 2015-11-25 15:48 - 00000000 ____D C:\Users\Manuel\Documents\Myriad Documents

2015-11-25 15:47 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Melody Assistant

2015-11-25 15:47 - 2015-11-25 15:48 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\ACAMPREF

2015-11-25 15:47 - 2015-11-25 15:47 - 00001160 _____ C:\Users\Manuel\Desktop\Melody Assistant.lnk

2015-11-25 15:47 - 2015-11-25 15:47 - 00000000 ____D C:\Program Files (x86)\Melody Assistant

2015-11-25 10:31 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2

2015-11-25 10:31 - 2015-11-25 14:41 - 00001166 _____ C:\Users\Manuel\Desktop\ASIO4ALL v2 Anleitung.lnk

2015-11-25 10:31 - 2015-11-25 14:41 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2

2015-11-25 10:09 - 2015-12-04 19:09 - 00002912 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini

2015-11-25 10:09 - 2015-12-04 19:09 - 00002912 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini

2015-11-25 10:09 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft

2015-11-25 10:09 - 2015-11-27 17:48 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Lavasoft

2015-11-25 10:09 - 2015-11-25 10:09 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll

2015-11-25 10:09 - 2015-11-25 10:09 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll

2015-11-25 10:09 - 2015-11-25 10:09 - 00000000 ____D C:\Users\Manuel\AppData\Local\Lavasoft

2015-11-25 10:08 - 2015-11-27 17:48 - 00000000 ____D C:\ProgramData\Lavasoft

2015-11-25 10:08 - 2015-11-25 10:08 - 00000000 ____D C:\Program Files (x86)\Lavasoft

2015-11-23 11:37 - 2015-11-30 11:27 - 00305598 _____ C:\Users\Manuel\Documents\Bewerbung_Maler_und_Lackierer.doc2.neu.odt

2015-11-21 18:18 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MIDI Pianist

2015-11-21 18:18 - 2015-11-22 18:50 - 00002024 _____ C:\Users\Manuel\Desktop\MIDI Pianist.lnk

2015-11-21 18:18 - 2015-11-21 18:18 - 00000010 ___SH C:\Users\Manuel\AppData\Roaming\user_database.dat

2015-11-21 18:18 - 2015-11-21 18:18 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\winregistry_001

2015-11-21 18:18 - 2015-11-21 18:18 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\mip

2015-11-21 18:18 - 2015-11-21 18:18 - 00000000 ____D C:\Program Files (x86)\MIDI Pianist

2015-11-21 18:13 - 2015-11-25 10:11 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\dlg

2015-11-21 15:39 - 2015-11-21 15:39 - 00039884 _____ C:\mbam.txt

2015-11-21 14:32 - 2015-12-02 21:28 - 00000000 ____D C:\AdwCleaner

2015-11-21 13:44 - 2015-11-21 14:34 - 00513740 _____ C:\TDSSKiller.3.1.0.6_21.11.2015_13.44.40_log.txt

2015-11-21 13:42 - 2015-12-05 17:40 - 00000000 ____D C:\FRST

2015-11-19 17:21 - 2015-11-19 17:21 - 00000000 ____D C:\Users\Manuel\AppData\Local\CEF

2015-11-19 16:39 - 2015-12-04 06:24 - 00002302 _____ C:\WINDOWS\System32\Tasks\{D6F067B6-DC67-4EA0-BCBB-5CF0DD427DBE}

2015-11-19 15:22 - 2015-12-04 10:56 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-11-19 15:22 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-11-19 15:22 - 2015-11-22 18:51 - 00001169 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-11-19 15:22 - 2015-11-19 15:22 - 00000000 ____D C:\ProgramData\Malwarebytes

2015-11-19 15:22 - 2015-11-19 15:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-11-19 15:22 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys

2015-11-19 15:22 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys

2015-11-19 15:22 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys

2015-11-19 14:43 - 2015-11-19 14:43 - 00000000 _____ C:\autoexec.bat

2015-11-18 22:37 - 2015-12-04 06:24 - 00002604 _____ C:\WINDOWS\System32\Tasks\Kinafaeheufok

2015-11-18 21:39 - 2015-12-04 06:24 - 00002224 _____ C:\WINDOWS\System32\Tasks\{E49DE93D-3C2D-4E1A-A749-025F78238EEF}

2015-11-18 21:07 - 2015-12-04 21:07 - 00001028 _____ C:\WINDOWS\Tasks\qPHwMWksY9eT0WjIbKxar.job

2015-11-18 21:07 - 2015-12-04 06:24 - 00003640 _____ C:\WINDOWS\System32\Tasks\qPHwMWksY9eT0WjIbKxar

2015-11-18 21:06 - 2015-11-21 12:14 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7

2015-11-18 21:05 - 2015-12-04 06:24 - 00002222 _____ C:\WINDOWS\System32\Tasks\gte3014

2015-11-18 21:02 - 2015-09-05 18:58 - 00000856 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak

2015-11-18 19:26 - 2015-11-18 19:49 - 00000000 ____D C:\Users\Manuel\Desktop\^piano

2015-11-18 19:05 - 2015-11-18 19:22 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Synthesia

2015-11-18 18:26 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\WINDOWS\SysWOW64\dhRichClient3.dll

2015-11-18 18:26 - 2011-03-25 20:42 - 00338432 _____ C:\WINDOWS\SysWOW64\sqlite36_engine.dll

2015-11-16 19:39 - 2015-11-16 19:45 - 00000000 ____D C:\Users\Manuel\AppData\Local\calibre-cache

2015-11-16 19:38 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management

2015-11-16 19:38 - 2015-11-22 18:51 - 00000997 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk

2015-11-16 19:38 - 2015-11-18 21:49 - 00000000 ____D C:\Program Files\Calibre2

2015-11-16 19:38 - 2015-11-16 19:45 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\calibre

2015-11-16 19:38 - 2015-11-16 19:44 - 00000000 ____D C:\Users\Manuel\Documents\Calibre-Bibliothek

2015-11-15 17:52 - 2015-11-18 21:58 - 00000000 ____D C:\ProgramData\eMule

2015-11-07 13:11 - 2015-12-02 22:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-05 17:38 - 2015-05-09 14:44 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-12-05 12:44 - 2015-04-24 21:30 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{01E50813-C029-43AD-83B0-C8875C1F6992}

2015-12-05 12:19 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat

2015-12-05 12:19 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat

2015-12-05 12:19 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF

2015-12-05 12:19 - 2015-08-22 04:14 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-12-05 12:16 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-12-05 06:45 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-12-05 06:37 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps

2015-12-05 06:37 - 2015-04-24 21:27 - 00000000 ____D C:\Users\Manuel\AppData\Local\Packages

2015-12-05 06:35 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat

2015-12-04 19:08 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2015-12-04 19:08 - 2015-10-30 07:28 - 00000000 ____D C:\Windows

2015-12-04 19:08 - 2015-08-22 04:05 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin

2015-12-04 14:59 - 2015-05-05 18:33 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\vlc

2015-12-04 09:21 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow

2015-12-04 09:09 - 2015-08-22 05:54 - 00000000 ___RD C:\Users\Manuel\OneDrive

2015-12-04 09:06 - 2015-05-17 19:31 - 00004186 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-12-04 09:06 - 2015-05-17 19:31 - 00003954 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-12-04 09:06 - 2015-05-17 19:31 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-12-04 09:06 - 2015-05-17 19:31 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-12-04 09:04 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-12-04 09:04 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-12-04 09:03 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-12-04 09:03 - 2015-04-24 20:51 - 00000000 __RHD C:\Users\Public\AccountPictures

2015-12-04 06:36 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache

2015-12-04 06:34 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT

2015-12-04 06:34 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-12-04 06:34 - 2015-08-22 03:11 - 00019053 _____ C:\WINDOWS\diagwrn.xml

2015-12-04 06:34 - 2015-08-22 03:11 - 00019053 _____ C:\WINDOWS\diagerr.xml

2015-12-04 06:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration

2015-12-04 06:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-12-04 06:25 - 2015-08-22 04:19 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-12-04 06:25 - 2015-02-23 13:28 - 00002736 _____ C:\WINDOWS\System32\Tasks\Norton Online Backup ARA

2015-12-04 06:24 - 2015-07-20 12:48 - 00002564 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent

2015-12-04 06:24 - 2015-05-09 14:44 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-12-04 06:24 - 2015-04-24 21:33 - 00002938 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1273145720-561992726-3298081300-1001

2015-12-04 06:24 - 2015-02-23 13:25 - 00002248 _____ C:\WINDOWS\System32\Tasks\Power Management

2015-12-04 06:24 - 2015-02-23 13:10 - 00002032 _____ C:\WINDOWS\System32\Tasks\Dolby Selector

2015-12-04 06:24 - 2015-02-23 12:32 - 00002876 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1273145720-561992726-3298081300-500

2015-12-04 06:24 - 2014-01-16 16:11 - 00003752 _____ C:\WINDOWS\System32\Tasks\ALUAgent

2015-12-04 06:24 - 2014-01-16 16:11 - 00002780 _____ C:\WINDOWS\System32\Tasks\ALU

2015-12-04 06:24 - 2014-01-16 16:11 - 00002238 _____ C:\WINDOWS\System32\Tasks\Launch Manager

2015-12-04 06:23 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries

2015-12-04 06:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Help

2015-12-04 06:15 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2015-12-04 06:15 - 2015-10-21 19:16 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1

2015-12-04 06:15 - 2015-10-13 18:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2015-12-04 06:15 - 2015-10-13 18:31 - 00000000 ____D C:\WINDOWS\de

2015-12-04 06:15 - 2015-08-12 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-12-04 06:15 - 2015-07-29 08:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4300

2015-12-04 06:15 - 2015-06-23 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7

2015-12-04 06:15 - 2015-05-05 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-12-04 06:15 - 2015-05-05 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake

2015-12-04 06:15 - 2015-04-25 15:41 - 00000000 ____D C:\Program Files\Common Files\logishrd

2015-12-04 06:15 - 2015-02-23 13:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup

2015-12-04 06:15 - 2015-02-23 13:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e

2015-12-04 06:15 - 2015-02-23 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream

2015-12-04 06:15 - 2014-01-16 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer

2015-12-04 06:15 - 2014-01-16 16:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-12-04 06:13 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-12-04 06:11 - 2015-06-23 21:41 - 00000000 ____D C:\WINDOWS\SysWOW64\spool

2015-12-04 06:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-12-04 06:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-12-04 06:09 - 2015-09-26 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-12-04 06:09 - 2015-07-29 08:00 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information

2015-12-04 06:09 - 2015-06-23 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software

2015-12-04 06:09 - 2015-05-26 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-12-04 06:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS

2015-12-04 06:05 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-12-04 06:01 - 2015-08-22 03:52 - 00000000 ____D C:\AMD

2015-12-04 05:57 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles

2015-12-04 05:56 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-12-04 05:51 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-12-04 05:51 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-12-04 05:51 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning

2015-12-04 05:51 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-12-04 05:51 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-12-04 05:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2015-12-04 05:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI

2015-12-04 05:30 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT

2015-12-02 23:43 - 2015-05-17 19:31 - 00000000 ____D C:\Users\Manuel\AppData\Local\Google

2015-12-02 23:04 - 2015-05-17 19:31 - 00000000 ____D C:\Program Files (x86)\Google

2015-12-02 23:00 - 2015-04-25 13:51 - 00000000 ____D C:\Users\Manuel\AppData\Local\CrashDumps

2015-12-02 22:50 - 2014-01-16 16:01 - 00000000 ____D C:\Program Files (x86)\WildTangent Games

2015-12-02 22:49 - 2015-06-13 10:43 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\WildTangent

2015-12-02 22:49 - 2014-01-16 16:01 - 00000000 ____D C:\ProgramData\WildTangent

2015-12-02 22:48 - 2015-04-24 21:29 - 00000000 ____D C:\Users\Manuel\AppData\Local\clear.fi

2015-12-02 22:48 - 2014-01-16 16:11 - 00000000 ____D C:\Program Files (x86)\Acer

2015-12-02 13:15 - 2014-01-16 15:04 - 00000000 ___HD C:\OEM

2015-12-02 12:38 - 2015-10-10 19:47 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\DVDVideoSoft

2015-11-30 21:14 - 2015-07-27 18:26 - 664977556 _____ C:\WINDOWS\MEMORY.DMP

2015-11-28 15:42 - 2015-05-05 17:37 - 00000000 ____D C:\Program Files (x86)\Opera

2015-11-27 18:04 - 2015-04-25 05:13 - 00000000 ____D C:\Users\Public\OEM

2015-11-22 18:52 - 2015-10-13 18:31 - 00001370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk

2015-11-22 18:52 - 2015-09-15 11:00 - 00002225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk

2015-11-22 18:52 - 2015-06-04 07:52 - 00001439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk

2015-11-22 18:52 - 2015-06-03 21:23 - 00000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk

2015-11-22 18:52 - 2015-02-23 13:27 - 00001978 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk

2015-11-22 18:52 - 2015-02-23 13:17 - 00001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotify.lnk

2015-11-22 18:51 - 2015-10-21 19:16 - 00001126 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk

2015-11-22 18:51 - 2015-07-30 22:55 - 00001995 _____ C:\Users\Public\Desktop\abMedia.lnk

2015-11-22 18:51 - 2015-06-23 21:42 - 00002163 _____ C:\Users\Public\Desktop\Perfect Effects Free 9.lnk

2015-11-22 18:51 - 2015-05-26 13:59 - 00001206 _____ C:\Users\Public\Desktop\ImageBrowser EX.lnk

2015-11-22 18:51 - 2015-05-26 13:56 - 00001211 _____ C:\Users\Public\Desktop\Picture Style Editor.lnk

2015-11-22 18:51 - 2015-05-26 13:56 - 00001081 _____ C:\Users\Public\Desktop\EOS Utility.lnk

2015-11-22 18:51 - 2015-05-26 13:55 - 00001146 _____ C:\Users\Public\Desktop\Digital Photo Professional.lnk

2015-11-22 18:51 - 2015-05-05 18:32 - 00001080 _____ C:\Users\Public\Desktop\VLC media player.lnk

2015-11-22 18:51 - 2015-05-05 17:35 - 00001346 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk

2015-11-22 18:51 - 2015-04-25 16:09 - 00002636 _____ C:\Users\Public\Desktop\Skype.lnk

2015-11-22 18:51 - 2015-02-23 14:01 - 00001680 _____ C:\Users\Public\Desktop\Online kaufen.lnk

2015-11-22 18:51 - 2015-02-23 13:28 - 00002127 _____ C:\Users\Public\Desktop\Norton Online Backup.lnk

2015-11-22 18:50 - 2015-06-23 21:01 - 00001078 _____ C:\Users\Manuel\Desktop\PhotoFiltre 7.lnk

2015-11-22 18:50 - 2015-05-03 17:52 - 00001444 _____ C:\Users\Manuel\Desktop\amazon.de.lnk

2015-11-21 17:03 - 2015-04-25 16:09 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Skype

2015-11-19 16:22 - 2013-08-22 14:25 - 00000226 _____ C:\WINDOWS\win.ini

2015-11-13 14:54 - 2015-04-30 22:02 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-11-13 14:51 - 2015-04-30 22:01 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\Manuel\AppData\Roaming\qPHwMWksY9eT0WjIbKxar

2015-11-21 18:18 - 2015-11-21 18:18 - 0000010 ___SH () C:\Users\Manuel\AppData\Roaming\user_database.dat

2015-07-26 15:55 - 2015-07-26 15:55 - 0001520 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel

2015-12-04 06:02 - 2015-12-04 06:02 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert

C:\WINDOWS\explorer.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert

C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert

C:\WINDOWS\system32\services.exe => Datei ist digital signiert

C:\WINDOWS\system32\User32.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert

C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert

C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-12-04 05:56
 

==================== Ende von FRST.txt ============================

--- --- ---

FRST Logfile:

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-12-2015

durchgeführt von Manuel (Administrator) auf MANU (07-12-2015 18:58:27)

Gestartet von C:\Users\Manuel\Downloads

Geladene Profile: Manuel (Verfügbare Profile: Manuel)

Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: Edge)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(AMD) C:\Windows\System32\atiesrxx.exe

(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe

(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe

(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

() C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe

(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe

() C:\Program Files\Casio\XW-DJ1\CasioCplApp.exe

() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Canon INC.) C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1201.10020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

(Farbar) C:\Users\Manuel\Downloads\FRST64 (5).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944648 2015-06-12] (Synaptics Incorporated)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc.)

HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe

HKLM\...\Policies\Explorer: [NoFolderOptions] 0

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKU\S-1-5-21-1273145720-561992726-3298081300-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55349888 2015-09-04] (Skype Technologies S.A.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Casio Control Panel Autostart.lnk [2015-11-26]

ShortcutTarget: Casio Control Panel Autostart.lnk -> C:\Program Files\Casio\XW-DJ1\CasioCplApp.exe ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk [2015-11-22]

ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe ()

Startup: C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2015-12-06]

ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.)
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Hosts: 0.0.0.1        mssplus.mcafee.com

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2

Tcpip\..\Interfaces\{8d538c83-dc46-4aef-84b9-eff1c3096ba4}: [DhcpNameServer] 192.168.0.1 192.168.0.2
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130930216073929093&GUID=05B5E2C7-6E6C-AA0A-4F3F-7F47FE4E0B66

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com

HKU\S-1-5-21-1273145720-561992726-3298081300-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130930216073945408&GUID=05B5E2C7-6E6C-AA0A-4F3F-7F47FE4E0B66

SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}

SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)

BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)

Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)

Toolbar: HKU\S-1-5-21-1273145720-561992726-3298081300-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
 

FireFox:

========

FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\ep28g06x.default

FF SelectedSearchEngine: Bing®

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()

FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [Keine Datei]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)

FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [Keine Datei]

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Extension: Outrageous Deal - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\ep28g06x.default\Extensions\{9f151910-c7b7-4060-98b3-333fd4cbc434}.xpi [2015-11-26] [ist nicht signiert]

FF Extension: Adblock Plus - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\ep28g06x.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-27]

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden

FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!70ACDE8C77C274EF19CEF2F3A8DE5D6270AC.js [2015-11-18]
 

Chrome: 

=======

CHR NewTab: Default -> "chrome-extension://akhmefomaihbclfehodbdmoaeoodjjdo/newtab/newtab-hp.html"

CHR Profile: C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Slides) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-02]

CHR Extension: (Easy Screenshot) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhmefomaihbclfehodbdmoaeoodjjdo [2015-12-04]

CHR Extension: (Google Docs) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-02]

CHR Extension: (Google Drive) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-02]

CHR Extension: (YouTube) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-02]

CHR Extension: (Google Search) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-02]

CHR Extension: (Google Sheets) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-02]

CHR Extension: (SiteAdvisor) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-12-02]

CHR Extension: (Google Docs Offline) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-04]

CHR Extension: (Chrome Web Store Payments) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-02]

CHR Extension: (Gmail) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-02]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]

R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)

S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-04-24] (Freemake) [Datei ist nicht signiert]

R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2015-11-25] (Lavasoft Limited)

R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4278112 2013-08-01] (Symantec Corporation)

R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-06-12] (Synaptics Incorporated)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)

R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (AppEx Networks Corporation)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)

R3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0405000.009\ccSetx64.sys [150104 2013-07-30] (Symantec Corporation)

R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)

R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)

R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)

R3 SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver_AMDASF.sys [42184 2015-06-12] (Synaptics Incorporated)

S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)

R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)

R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-07 18:57 - 2015-12-07 18:58 - 02369024 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (5).exe

2015-12-05 17:38 - 2015-12-05 17:39 - 02369024 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (3).exe

2015-12-05 17:38 - 2015-12-05 17:38 - 02369024 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (4).exe

2015-12-05 13:28 - 2015-12-05 13:28 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-12-04 11:02 - 2015-11-22 10:56 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-12-04 11:02 - 2015-11-22 10:43 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-12-04 11:01 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-12-04 11:01 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 11:01 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-12-04 11:01 - 2015-11-22 11:41 - 01284960 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-12-04 11:01 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2015-12-04 11:01 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll

2015-12-04 11:01 - 2015-11-22 11:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-12-04 11:01 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll

2015-12-04 11:01 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys

2015-12-04 11:01 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll

2015-12-04 11:01 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll

2015-12-04 11:01 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-12-04 11:01 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2015-12-04 11:01 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll

2015-12-04 11:01 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll

2015-12-04 11:01 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2015-12-04 11:01 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2015-12-04 11:01 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2015-12-04 11:01 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2015-12-04 11:01 - 2015-11-22 10:57 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2015-12-04 11:01 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll

2015-12-04 11:01 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll

2015-12-04 11:01 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys

2015-12-04 11:01 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2015-12-04 11:01 - 2015-11-22 10:52 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-12-04 11:01 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll

2015-12-04 11:01 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2015-12-04 11:01 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe

2015-12-04 11:01 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2015-12-04 11:01 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll

2015-12-04 11:01 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2015-12-04 11:01 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2015-12-04 11:01 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll

2015-12-04 11:01 - 2015-11-22 10:47 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll

2015-12-04 11:01 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-12-04 11:01 - 2015-11-22 10:46 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-12-04 11:01 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2015-12-04 11:01 - 2015-11-22 10:45 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2015-12-04 11:01 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-12-04 11:01 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2015-12-04 11:01 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll

2015-12-04 11:01 - 2015-11-22 10:44 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-12-04 11:01 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll

2015-12-04 11:01 - 2015-11-22 10:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-12-04 11:01 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll

2015-12-04 11:01 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-12-04 11:01 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll

2015-12-04 11:01 - 2015-11-22 10:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-12-04 11:01 - 2015-11-22 10:42 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-12-04 11:01 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-12-04 11:01 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll

2015-12-04 11:01 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll

2015-12-04 11:01 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll

2015-12-04 11:01 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll

2015-12-04 11:01 - 2015-11-22 10:41 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-12-04 11:01 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll

2015-12-04 11:01 - 2015-11-22 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-12-04 11:01 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2015-12-04 11:01 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2015-12-04 11:01 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll

2015-12-04 11:01 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2015-12-04 11:01 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-12-04 11:01 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-12-04 11:01 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2015-12-04 11:01 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll

2015-12-04 11:01 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll

2015-12-04 11:01 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2015-12-04 11:01 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-12-04 11:01 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-12-04 11:01 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll

2015-12-04 11:01 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll

2015-12-04 11:01 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll

2015-12-04 11:01 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2015-12-04 11:01 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-12-04 11:01 - 2015-11-22 10:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-12-04 11:01 - 2015-11-22 10:33 - 13380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-12-04 11:01 - 2015-11-22 10:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-12-04 11:01 - 2015-11-22 10:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-12-04 11:01 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll

2015-12-04 11:01 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll

2015-12-04 11:01 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-12-04 11:01 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-12-04 11:01 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll

2015-12-04 11:01 - 2015-11-22 10:30 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-12-04 11:01 - 2015-11-22 10:30 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-12-04 11:01 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2015-12-04 11:01 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll

2015-12-04 11:01 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-12-04 11:01 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2015-12-04 11:01 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2015-12-04 11:01 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll

2015-12-04 11:01 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll

2015-12-04 11:01 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll

2015-12-04 11:01 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-12-04 11:01 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-12-04 11:01 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll

2015-12-04 11:01 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-12-04 11:01 - 2015-11-22 10:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-12-04 11:01 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-12-04 11:01 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-12-04 11:01 - 2015-11-22 10:24 - 12124672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-12-04 11:01 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-12-04 11:01 - 2015-11-22 10:24 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-12-04 11:01 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-12-04 11:01 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-12-04 11:01 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll

2015-12-04 11:01 - 2015-11-22 10:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-12-04 11:01 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-12-04 11:01 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-12-04 11:01 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll

2015-12-04 11:01 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-12-04 11:01 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-12-04 11:01 - 2015-11-22 10:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll

2015-12-04 11:01 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-12-04 11:00 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll

2015-12-04 11:00 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll

2015-12-04 11:00 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll

2015-12-04 11:00 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll

2015-12-04 11:00 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll

2015-12-04 11:00 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll

2015-12-04 11:00 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2015-12-04 11:00 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll

2015-12-04 11:00 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll

2015-12-04 11:00 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll

2015-12-04 11:00 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll

2015-12-04 11:00 - 2015-11-22 10:55 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll

2015-12-04 11:00 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-12-04 11:00 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll

2015-12-04 11:00 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2015-12-04 11:00 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll

2015-12-04 11:00 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll

2015-12-04 11:00 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll

2015-12-04 11:00 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll

2015-12-04 11:00 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll

2015-12-04 11:00 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll

2015-12-04 11:00 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll

2015-12-04 11:00 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll

2015-12-04 11:00 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll

2015-12-04 11:00 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll

2015-12-04 11:00 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll

2015-12-04 11:00 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll

2015-12-04 11:00 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll

2015-12-04 11:00 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll

2015-12-04 11:00 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll

2015-12-04 11:00 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2015-12-04 11:00 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll

2015-12-04 11:00 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll

2015-12-04 11:00 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll

2015-12-04 11:00 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll

2015-12-04 11:00 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll

2015-12-04 11:00 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2015-12-04 11:00 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll

2015-12-04 11:00 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll

2015-12-04 11:00 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll

2015-12-04 11:00 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll

2015-12-04 09:09 - 2015-12-04 09:09 - 00002395 _____ C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-12-04 09:07 - 2015-12-04 09:07 - 00000000 ____D C:\ProgramData\ATI

2015-12-04 09:05 - 2015-12-04 09:05 - 00000000 ____D C:\Users\Manuel\AppData\Local\ActiveSync

2015-12-04 09:02 - 2015-12-04 09:02 - 00000020 ___SH C:\Users\Manuel\ntuser.ini

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Vorlagen

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Startmenü

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2015-12-04 06:34 - 2015-12-04 06:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2015-12-04 06:24 - 2015-12-06 03:32 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-12-04 06:13 - 2015-12-04 06:13 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default\AppData\Local\ATI

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki

2015-12-04 06:13 - 2015-12-04 06:13 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI

2015-12-04 06:08 - 2015-12-04 06:15 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-12-04 06:06 - 2015-12-06 03:30 - 00000000 ____D C:\Users\Manuel

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Vorlagen

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Startmenü

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Netzwerkumgebung

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Lokale Einstellungen

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Eigene Dateien

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Druckumgebung

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Videos

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Musik

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Bilder

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Verlauf

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Anwendungsdaten

2015-12-04 06:06 - 2015-12-04 06:06 - 00000000 _SHDL C:\Users\Manuel\Anwendungsdaten

2015-12-04 06:02 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\AMD

2015-12-04 06:02 - 2015-12-04 06:02 - 00646947 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____H C:\ProgramData\DP45977C.lfl

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____D C:\Program Files\Common Files\Atheros

2015-12-04 06:02 - 2015-12-04 06:02 - 00000000 ____D C:\Program Files\ATI Technologies

2015-12-04 06:01 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\Package Cache

2015-12-04 06:01 - 2015-12-04 06:09 - 00000000 ____D C:\Program Files (x86)\ATI Technologies

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_AMDASF_01011.Wdf

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\Synaptics

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\Realtek

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 ____D C:\Program Files\AMD

2015-12-04 06:01 - 2015-12-04 06:01 - 00000000 _____ C:\WINDOWS\ativpsrm.bin

2015-12-04 06:00 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-12-04 05:57 - 2015-12-04 06:16 - 00218048 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-12-04 05:56 - 2015-12-04 12:00 - 00000000 ___DC C:\WINDOWS\Panther

2015-12-04 05:51 - 2015-12-04 05:51 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2015-12-04 05:51 - 2015-12-04 05:51 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2015-12-04 05:51 - 2015-12-04 05:51 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys

2015-12-04 05:51 - 2015-12-04 05:51 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe

2015-12-04 05:51 - 2015-12-04 05:51 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2015-12-04 05:51 - 2015-12-04 05:51 - 00000000 ____D C:\Windows.old

2015-12-04 05:49 - 2015-12-04 05:49 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files\MSBuild

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-12-04 05:45 - 2015-12-04 05:45 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-12-04 05:44 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-12-04 05:44 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-12-04 05:44 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-12-04 05:44 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-12-04 05:44 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-12-04 05:44 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-12-03 21:48 - 2015-12-03 21:48 - 14193160 _____ (Native Instruments GmbH) C:\Users\Manuel\Downloads\Alicias_Keys_Downloader (2).exe

2015-12-03 21:27 - 2015-12-03 21:27 - 14193160 _____ (Native Instruments GmbH) C:\Users\Manuel\Downloads\Alicias_Keys_Downloader (1).exe

2015-12-03 21:26 - 2015-12-03 21:51 - 00000000 ____D C:\Users\Manuel\Downloads\_nidownload_7fc60d8813c881f07538bc113254dc9524dd2724

2015-12-03 21:26 - 2015-12-03 21:48 - 00043376 _____ C:\Users\Manuel\Downloads\_nidownload_Alicias_Keys.toc

2015-12-03 21:25 - 2015-12-03 21:25 - 14193160 _____ (Native Instruments GmbH) C:\Users\Manuel\Downloads\Alicias_Keys_Downloader.exe

2015-12-03 21:05 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab

2015-12-03 21:05 - 2015-12-03 21:05 - 00001040 _____ C:\Users\Public\Desktop\ClipGrab.lnk

2015-12-03 21:05 - 2015-12-03 21:05 - 00000000 ____D C:\Program Files (x86)\ClipGrab

2015-12-03 21:03 - 2015-12-03 21:04 - 22178792 _____ (Philipp Schmieder Medien ) C:\Users\Manuel\Downloads\clipgrab-3.5.5.exe

2015-12-02 23:05 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-12-02 23:05 - 2015-12-02 23:05 - 00002288 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-12-02 23:03 - 2015-12-02 23:04 - 00929872 _____ (Google Inc.) C:\Users\Manuel\Downloads\ChromeSetup.exe

2015-12-02 22:49 - 2015-12-02 22:49 - 00000000 ____D C:\Users\Manuel\AppData\Local\AOP SDK

2015-12-02 21:09 - 2015-12-02 21:10 - 01736704 _____ C:\Users\Manuel\Downloads\AdwCleaner_5.023.exe

2015-12-02 08:25 - 2015-12-02 08:29 - 00253582 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.25.03_log.txt

2015-12-02 08:23 - 2015-12-02 08:24 - 00252680 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.23.06_log.txt

2015-12-02 08:18 - 2015-12-02 08:18 - 02350080 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (2).exe

2015-12-02 08:15 - 2015-12-02 08:15 - 02350080 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64 (1).exe

2015-12-02 08:09 - 2015-12-02 08:11 - 00252826 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.09.53_log.txt

2015-12-02 08:09 - 2015-12-02 08:09 - 00000560 _____ C:\TDSSKiller.3.1.0.7_02.12.2015_08.09.44_log.txt

2015-12-02 08:04 - 2015-12-05 17:44 - 00045482 _____ C:\Users\Manuel\Downloads\Addition.txt

2015-12-02 08:03 - 2015-12-07 18:58 - 00016324 _____ C:\Users\Manuel\Downloads\FRST.txt

2015-12-02 08:01 - 2015-12-02 08:03 - 02350080 _____ (Farbar) C:\Users\Manuel\Downloads\FRST64.exe

2015-12-01 23:43 - 2015-12-01 23:49 - 00252680 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_23.43.03_log.txt

2015-12-01 23:42 - 2015-12-01 23:43 - 04398264 _____ (Kaspersky Lab ZAO) C:\Users\Manuel\Downloads\tdsskiller.exe

2015-12-01 23:26 - 2015-12-01 23:28 - 00252680 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_23.26.38_log.txt

2015-12-01 23:25 - 2015-12-01 23:25 - 00048382 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_23.25.21_log.txt

2015-12-01 22:08 - 2015-12-01 22:10 - 00252846 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_22.08.56_log.txt

2015-12-01 21:43 - 2015-12-01 21:43 - 00000000 ____D C:\Program Files (x86)\Native Instruments

2015-12-01 12:43 - 2015-12-01 12:43 - 00000000 _____ C:\Users\Manuel\defogger_reenable

2015-11-30 16:12 - 2015-12-01 14:16 - 00000000 ____D C:\Users\Manuel\Documents\REAPER Media

2015-11-30 16:09 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)

2015-11-30 16:09 - 2015-11-30 16:09 - 00000873 _____ C:\Users\Public\Desktop\REAPER (x64).lnk

2015-11-30 16:09 - 2015-11-30 16:09 - 00000000 ____D C:\Program Files\REAPER (x64)

2015-11-28 15:42 - 2015-12-04 06:24 - 00003294 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1448721735

2015-11-28 15:42 - 2015-11-28 15:42 - 00001208 _____ C:\Users\Public\Desktop\Opera.lnk

2015-11-28 15:42 - 2015-11-28 15:42 - 00001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

2015-11-27 21:18 - 2015-11-27 23:37 - 00000000 ____D C:\Users\Manuel\Desktop\b

2015-11-27 19:53 - 2015-11-27 23:36 - 00000000 ____D C:\Users\Manuel\Desktop\november

2015-11-27 17:47 - 2015-11-27 17:47 - 00000000 ____D C:\Users\Manuel\Desktop\JRT_NewerVersion

2015-11-27 11:51 - 2015-11-27 11:52 - 00257212 _____ C:\TDSSKiller.3.1.0.6_27.11.2015_11.51.00_log.txt

2015-11-27 11:49 - 2015-11-27 11:49 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\AVG

2015-11-27 11:48 - 2015-11-27 11:48 - 00000000 ____D C:\Users\Manuel\AppData\Local\Avg

2015-11-27 11:47 - 2015-11-27 11:49 - 00000000 ____D C:\ProgramData\AVG

2015-11-27 11:14 - 2015-11-27 11:14 - 00000000 ____D C:\Users\Manuel\Desktop\RECORDER

2015-11-27 10:34 - 2015-11-27 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft

2015-11-26 18:25 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Casio

2015-11-26 18:25 - 2015-11-26 18:25 - 00000000 ____D C:\Program Files\Casio

2015-11-26 15:01 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REAPER

2015-11-26 15:01 - 2015-11-26 15:01 - 00001052 _____ C:\Users\Manuel\Desktop\REAPER.lnk

2015-11-26 15:01 - 2015-11-26 15:01 - 00000000 ____D C:\Program Files (x86)\REAPER

2015-11-26 14:58 - 2015-11-30 16:28 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\REAPER

2015-11-26 14:55 - 2015-11-26 14:55 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software

2015-11-26 09:26 - 2015-11-26 09:26 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\PianoBooster

2015-11-26 09:20 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Piano Booster

2015-11-26 09:20 - 2015-11-26 09:20 - 00000000 ____D C:\Program Files (x86)\Piano Booster

2015-11-25 16:16 - 2015-11-25 16:17 - 00001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia.lnk

2015-11-25 16:02 - 2015-11-25 16:17 - 00001974 _____ C:\Users\Public\Desktop\Synthesia.lnk

2015-11-25 16:02 - 2015-11-25 16:16 - 00000000 ____D C:\Program Files (x86)\Synthesia

2015-11-25 16:02 - 2015-11-25 16:02 - 00000000 ____D C:\Users\Manuel\Documents\Synthesia Music

2015-11-25 15:48 - 2015-11-25 15:48 - 00000000 ____D C:\Users\Manuel\Documents\Myriad Documents

2015-11-25 15:47 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Melody Assistant

2015-11-25 15:47 - 2015-11-25 15:48 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\ACAMPREF

2015-11-25 15:47 - 2015-11-25 15:47 - 00001160 _____ C:\Users\Manuel\Desktop\Melody Assistant.lnk

2015-11-25 15:47 - 2015-11-25 15:47 - 00000000 ____D C:\Program Files (x86)\Melody Assistant

2015-11-25 10:31 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2

2015-11-25 10:31 - 2015-11-25 14:41 - 00001166 _____ C:\Users\Manuel\Desktop\ASIO4ALL v2 Anleitung.lnk

2015-11-25 10:31 - 2015-11-25 14:41 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2

2015-11-25 10:09 - 2015-12-04 19:09 - 00002912 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini

2015-11-25 10:09 - 2015-12-04 19:09 - 00002912 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini

2015-11-25 10:09 - 2015-12-04 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft

2015-11-25 10:09 - 2015-11-27 17:48 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Lavasoft

2015-11-25 10:09 - 2015-11-25 10:09 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll

2015-11-25 10:09 - 2015-11-25 10:09 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll

2015-11-25 10:09 - 2015-11-25 10:09 - 00000000 ____D C:\Users\Manuel\AppData\Local\Lavasoft

2015-11-25 10:08 - 2015-11-27 17:48 - 00000000 ____D C:\ProgramData\Lavasoft

2015-11-25 10:08 - 2015-11-25 10:08 - 00000000 ____D C:\Program Files (x86)\Lavasoft

2015-11-23 11:37 - 2015-11-30 11:27 - 00305598 _____ C:\Users\Manuel\Documents\Bewerbung_Maler_und_Lackierer.doc2.neu.odt

2015-11-21 18:18 - 2015-12-04 06:15 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MIDI Pianist

2015-11-21 18:18 - 2015-11-22 18:50 - 00002024 _____ C:\Users\Manuel\Desktop\MIDI Pianist.lnk

2015-11-21 18:18 - 2015-11-21 18:18 - 00000010 ___SH C:\Users\Manuel\AppData\Roaming\user_database.dat

2015-11-21 18:18 - 2015-11-21 18:18 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\winregistry_001

2015-11-21 18:18 - 2015-11-21 18:18 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\mip

2015-11-21 18:18 - 2015-11-21 18:18 - 00000000 ____D C:\Program Files (x86)\MIDI Pianist

2015-11-21 18:13 - 2015-11-25 10:11 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\dlg

2015-11-21 15:39 - 2015-11-21 15:39 - 00039884 _____ C:\mbam.txt

2015-11-21 14:32 - 2015-12-02 21:28 - 00000000 ____D C:\AdwCleaner

2015-11-21 13:44 - 2015-11-21 14:34 - 00513740 _____ C:\TDSSKiller.3.1.0.6_21.11.2015_13.44.40_log.txt

2015-11-21 13:42 - 2015-12-07 18:58 - 00000000 ____D C:\FRST

2015-11-19 17:21 - 2015-11-19 17:21 - 00000000 ____D C:\Users\Manuel\AppData\Local\CEF

2015-11-19 16:39 - 2015-12-04 06:24 - 00002302 _____ C:\WINDOWS\System32\Tasks\{D6F067B6-DC67-4EA0-BCBB-5CF0DD427DBE}

2015-11-19 15:22 - 2015-12-04 10:56 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-11-19 15:22 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-11-19 15:22 - 2015-11-22 18:51 - 00001169 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-11-19 15:22 - 2015-11-19 15:22 - 00000000 ____D C:\ProgramData\Malwarebytes

2015-11-19 15:22 - 2015-11-19 15:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-11-19 15:22 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys

2015-11-19 15:22 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys

2015-11-19 15:22 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys

2015-11-19 14:43 - 2015-11-19 14:43 - 00000000 _____ C:\autoexec.bat

2015-11-18 22:37 - 2015-12-04 06:24 - 00002604 _____ C:\WINDOWS\System32\Tasks\Kinafaeheufok

2015-11-18 21:39 - 2015-12-04 06:24 - 00002224 _____ C:\WINDOWS\System32\Tasks\{E49DE93D-3C2D-4E1A-A749-025F78238EEF}

2015-11-18 21:07 - 2015-12-06 21:07 - 00001028 _____ C:\WINDOWS\Tasks\qPHwMWksY9eT0WjIbKxar.job

2015-11-18 21:07 - 2015-12-04 06:24 - 00003640 _____ C:\WINDOWS\System32\Tasks\qPHwMWksY9eT0WjIbKxar

2015-11-18 21:06 - 2015-11-21 12:14 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7

2015-11-18 21:05 - 2015-12-04 06:24 - 00002222 _____ C:\WINDOWS\System32\Tasks\gte3014

2015-11-18 21:02 - 2015-09-05 18:58 - 00000856 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak

2015-11-18 19:26 - 2015-11-18 19:49 - 00000000 ____D C:\Users\Manuel\Desktop\^piano

2015-11-18 19:05 - 2015-11-18 19:22 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Synthesia

2015-11-18 18:26 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\WINDOWS\SysWOW64\dhRichClient3.dll

2015-11-18 18:26 - 2011-03-25 20:42 - 00338432 _____ C:\WINDOWS\SysWOW64\sqlite36_engine.dll

2015-11-16 19:39 - 2015-11-16 19:45 - 00000000 ____D C:\Users\Manuel\AppData\Local\calibre-cache

2015-11-16 19:38 - 2015-12-04 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management

2015-11-16 19:38 - 2015-11-22 18:51 - 00000997 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk

2015-11-16 19:38 - 2015-11-18 21:49 - 00000000 ____D C:\Program Files\Calibre2

2015-11-16 19:38 - 2015-11-16 19:45 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\calibre

2015-11-16 19:38 - 2015-11-16 19:44 - 00000000 ____D C:\Users\Manuel\Documents\Calibre-Bibliothek

2015-11-15 17:52 - 2015-11-18 21:58 - 00000000 ____D C:\ProgramData\eMule

2015-11-07 13:11 - 2015-12-02 22:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-07 18:39 - 2015-04-24 21:30 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{01E50813-C029-43AD-83B0-C8875C1F6992}

2015-12-07 18:38 - 2015-05-09 14:44 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-12-06 09:36 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat

2015-12-06 09:36 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat

2015-12-06 09:36 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF

2015-12-06 09:36 - 2015-08-22 04:14 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-12-06 09:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-12-06 03:32 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2015-12-06 03:32 - 2015-08-22 04:05 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin

2015-12-06 03:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-12-05 22:53 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-12-05 17:43 - 2015-10-30 07:28 - 00000000 ____D C:\Windows

2015-12-05 06:37 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps

2015-12-05 06:37 - 2015-04-24 21:27 - 00000000 ____D C:\Users\Manuel\AppData\Local\Packages

2015-12-05 06:35 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat

2015-12-04 14:59 - 2015-05-05 18:33 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\vlc

2015-12-04 09:21 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow

2015-12-04 09:09 - 2015-08-22 05:54 - 00000000 ___RD C:\Users\Manuel\OneDrive

2015-12-04 09:06 - 2015-05-17 19:31 - 00004186 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-12-04 09:06 - 2015-05-17 19:31 - 00003954 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-12-04 09:06 - 2015-05-17 19:31 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-12-04 09:06 - 2015-05-17 19:31 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-12-04 09:04 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-12-04 09:04 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-12-04 09:03 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-12-04 09:03 - 2015-04-24 20:51 - 00000000 __RHD C:\Users\Public\AccountPictures

2015-12-04 06:36 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache

2015-12-04 06:34 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT

2015-12-04 06:34 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-12-04 06:34 - 2015-08-22 03:11 - 00019053 _____ C:\WINDOWS\diagwrn.xml

2015-12-04 06:34 - 2015-08-22 03:11 - 00019053 _____ C:\WINDOWS\diagerr.xml

2015-12-04 06:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration

2015-12-04 06:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-12-04 06:25 - 2015-08-22 04:19 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-12-04 06:25 - 2015-02-23 13:28 - 00002736 _____ C:\WINDOWS\System32\Tasks\Norton Online Backup ARA

2015-12-04 06:24 - 2015-07-20 12:48 - 00002564 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent

2015-12-04 06:24 - 2015-05-09 14:44 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-12-04 06:24 - 2015-04-24 21:33 - 00002938 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1273145720-561992726-3298081300-1001

2015-12-04 06:24 - 2015-02-23 13:25 - 00002248 _____ C:\WINDOWS\System32\Tasks\Power Management

2015-12-04 06:24 - 2015-02-23 13:10 - 00002032 _____ C:\WINDOWS\System32\Tasks\Dolby Selector

2015-12-04 06:24 - 2015-02-23 12:32 - 00002876 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1273145720-561992726-3298081300-500

2015-12-04 06:24 - 2014-01-16 16:11 - 00003752 _____ C:\WINDOWS\System32\Tasks\ALUAgent

2015-12-04 06:24 - 2014-01-16 16:11 - 00002780 _____ C:\WINDOWS\System32\Tasks\ALU

2015-12-04 06:24 - 2014-01-16 16:11 - 00002238 _____ C:\WINDOWS\System32\Tasks\Launch Manager

2015-12-04 06:23 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries

2015-12-04 06:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Help

2015-12-04 06:15 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2015-12-04 06:15 - 2015-10-21 19:16 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1

2015-12-04 06:15 - 2015-10-13 18:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2015-12-04 06:15 - 2015-10-13 18:31 - 00000000 ____D C:\WINDOWS\de

2015-12-04 06:15 - 2015-08-12 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-12-04 06:15 - 2015-07-29 08:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4300

2015-12-04 06:15 - 2015-06-23 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7

2015-12-04 06:15 - 2015-05-05 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-12-04 06:15 - 2015-05-05 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake

2015-12-04 06:15 - 2015-04-25 15:41 - 00000000 ____D C:\Program Files\Common Files\logishrd

2015-12-04 06:15 - 2015-02-23 13:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup

2015-12-04 06:15 - 2015-02-23 13:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e

2015-12-04 06:15 - 2015-02-23 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream

2015-12-04 06:15 - 2014-01-16 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer

2015-12-04 06:15 - 2014-01-16 16:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-12-04 06:13 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-12-04 06:11 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-12-04 06:11 - 2015-06-23 21:41 - 00000000 ____D C:\WINDOWS\SysWOW64\spool

2015-12-04 06:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-12-04 06:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate

2015-12-04 06:09 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-12-04 06:09 - 2015-09-26 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-12-04 06:09 - 2015-07-29 08:00 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information

2015-12-04 06:09 - 2015-06-23 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software

2015-12-04 06:09 - 2015-05-26 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-12-04 06:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS

2015-12-04 06:05 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-12-04 06:01 - 2015-08-22 03:52 - 00000000 ____D C:\AMD

2015-12-04 05:57 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles

2015-12-04 05:56 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-12-04 05:51 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-12-04 05:51 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning

2015-12-04 05:51 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-12-04 05:51 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-12-04 05:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2015-12-04 05:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI

2015-12-04 05:30 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT

2015-12-02 23:43 - 2015-05-17 19:31 - 00000000 ____D C:\Users\Manuel\AppData\Local\Google

2015-12-02 23:04 - 2015-05-17 19:31 - 00000000 ____D C:\Program Files (x86)\Google

2015-12-02 23:00 - 2015-04-25 13:51 - 00000000 ____D C:\Users\Manuel\AppData\Local\CrashDumps

2015-12-02 22:50 - 2014-01-16 16:01 - 00000000 ____D C:\Program Files (x86)\WildTangent Games

2015-12-02 22:49 - 2015-06-13 10:43 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\WildTangent

2015-12-02 22:49 - 2014-01-16 16:01 - 00000000 ____D C:\ProgramData\WildTangent

2015-12-02 22:48 - 2015-04-24 21:29 - 00000000 ____D C:\Users\Manuel\AppData\Local\clear.fi

2015-12-02 22:48 - 2014-01-16 16:11 - 00000000 ____D C:\Program Files (x86)\Acer

2015-12-02 13:15 - 2014-01-16 15:04 - 00000000 ___HD C:\OEM

2015-12-02 12:38 - 2015-10-10 19:47 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\DVDVideoSoft

2015-11-30 21:14 - 2015-07-27 18:26 - 664977556 _____ C:\WINDOWS\MEMORY.DMP

2015-11-28 15:42 - 2015-05-05 17:37 - 00000000 ____D C:\Program Files (x86)\Opera

2015-11-27 18:04 - 2015-04-25 05:13 - 00000000 ____D C:\Users\Public\OEM

2015-11-22 18:52 - 2015-10-13 18:31 - 00001370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk

2015-11-22 18:52 - 2015-09-15 11:00 - 00002225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk

2015-11-22 18:52 - 2015-06-04 07:52 - 00001439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk

2015-11-22 18:52 - 2015-06-03 21:23 - 00000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk

2015-11-22 18:52 - 2015-02-23 13:27 - 00001978 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk

2015-11-22 18:52 - 2015-02-23 13:17 - 00001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotify.lnk

2015-11-22 18:51 - 2015-10-21 19:16 - 00001126 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk

2015-11-22 18:51 - 2015-07-30 22:55 - 00001995 _____ C:\Users\Public\Desktop\abMedia.lnk

2015-11-22 18:51 - 2015-06-23 21:42 - 00002163 _____ C:\Users\Public\Desktop\Perfect Effects Free 9.lnk

2015-11-22 18:51 - 2015-05-26 13:59 - 00001206 _____ C:\Users\Public\Desktop\ImageBrowser EX.lnk

2015-11-22 18:51 - 2015-05-26 13:56 - 00001211 _____ C:\Users\Public\Desktop\Picture Style Editor.lnk

2015-11-22 18:51 - 2015-05-26 13:56 - 00001081 _____ C:\Users\Public\Desktop\EOS Utility.lnk

2015-11-22 18:51 - 2015-05-26 13:55 - 00001146 _____ C:\Users\Public\Desktop\Digital Photo Professional.lnk

2015-11-22 18:51 - 2015-05-05 18:32 - 00001080 _____ C:\Users\Public\Desktop\VLC media player.lnk

2015-11-22 18:51 - 2015-05-05 17:35 - 00001346 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk

2015-11-22 18:51 - 2015-04-25 16:09 - 00002636 _____ C:\Users\Public\Desktop\Skype.lnk

2015-11-22 18:51 - 2015-02-23 14:01 - 00001680 _____ C:\Users\Public\Desktop\Online kaufen.lnk

2015-11-22 18:51 - 2015-02-23 13:28 - 00002127 _____ C:\Users\Public\Desktop\Norton Online Backup.lnk

2015-11-22 18:50 - 2015-06-23 21:01 - 00001078 _____ C:\Users\Manuel\Desktop\PhotoFiltre 7.lnk

2015-11-22 18:50 - 2015-05-03 17:52 - 00001444 _____ C:\Users\Manuel\Desktop\amazon.de.lnk

2015-11-21 17:03 - 2015-04-25 16:09 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Skype

2015-11-19 16:22 - 2013-08-22 14:25 - 00000226 _____ C:\WINDOWS\win.ini

2015-11-13 14:54 - 2015-04-30 22:02 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-11-13 14:51 - 2015-04-30 22:01 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\Manuel\AppData\Roaming\qPHwMWksY9eT0WjIbKxar

2015-11-21 18:18 - 2015-11-21 18:18 - 0000010 ___SH () C:\Users\Manuel\AppData\Roaming\user_database.dat

2015-07-26 15:55 - 2015-07-26 15:55 - 0001520 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel

2015-12-04 06:02 - 2015-12-04 06:02 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert

C:\WINDOWS\explorer.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert

C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert

C:\WINDOWS\system32\services.exe => Datei ist digital signiert

C:\WINDOWS\system32\User32.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert

C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert

C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-12-04 05:56
 

==================== Ende von FRST.txt ============================

--- --- ---