Trojaner-Board - TR/patched.Ren.Gen2

Trojaner-Board (https://www.trojaner-board.de/)

- Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)

- - TR/patched.Ren.Gen2 (https://www.trojaner-board.de/174474-tr-patched-ren-gen2.html)

TR/patched.Ren.Gen2

Hallo,

Ich weiss, dass es dieses Thema schon gibt, aber da ja jeder seine eigenen Protokolle und Berichte hat, möchte ich es der Übersichlichkeit hier für mich eröffnen.

Ich hatte mit TR/Patched.Ren.Gen2 unter Win 8.1 schon Probleme und die konten gelöst werden.

Seit ca 4 Wochen habe ich win 10 und quäle mich seit diesem Zeitpunkt mit diesem Trojaner.

Ich habe im abgesicherten Modus schon den PC als Admin durchsucht und dort 2-4 mal diesen Virus entfernt der sich immer in C:Windows/Temp/.../ in verschiedenen tmp Nummer versteckt.
Aber sobald ich im normalen Modus wieder bin geht nach einer gewissen Zeit der Avira Sicherheitshinweis auf, dass der die Datei mit dem Virus blockiert wurde.
IdR findet er dann wieder 2-4 mal diesen in verchiedenen Temp-Ordnern.

Über Hilfe wäre ich sehr dankbar

Das war mein letzter Bericht aus dem abgesicherten Modus von Avira (kostenlose Version) und Malewarebytes (Vollversion)

Code:



Free Antivirus

Erstellungsdatum der Reportdatei: Donnerstag, 24. Dezember 2015  20:43
 
 

Das Programm läuft als uneingeschränkte Vollversion.

Online-Dienste stehen zur Verfügung.
 

Lizenznehmer   : Free

Seriennummer   : 0000149996-AVHOE-0000001

Plattform      : Windows 10 Home

Windowsversion : (plain)  [10.0.10586]

Boot Modus     : Abgesicherter Modus mit Netzwerk Support

Benutzername   : manfred

Computername   : MANNIKR
 

Versionsinformationen:

build.dat      : 15.0.15.129    93076 Bytes  03.12.2015 15:25:00

AVSCAN.EXE     : 15.0.15.122  1203832 Bytes  01.12.2015 13:02:25

AVSCANRC.DLL   : 15.0.15.106    67688 Bytes  01.12.2015 13:02:25

LUKE.DLL       : 15.0.15.106    69248 Bytes  01.12.2015 13:02:30

AVSCPLR.DLL    : 15.0.15.122   106352 Bytes  01.12.2015 13:02:25

REPAIR.DLL     : 15.0.15.106   493608 Bytes  01.12.2015 13:02:24

repair.rdf     : 1.0.13.18    1412088 Bytes  22.12.2015 09:02:12

AVREG.DLL      : 15.0.15.106   346312 Bytes  01.12.2015 13:02:24

avlode.dll     : 15.0.15.106   701680 Bytes  01.12.2015 13:02:24

avlode.rdf     : 14.0.5.18      88653 Bytes  09.12.2015 15:01:55

XBV00003.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00004.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00005.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00006.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00007.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00008.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00009.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00010.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00011.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00012.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00013.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00014.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00015.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00016.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00017.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00018.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00019.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00020.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00021.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00022.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00023.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00024.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00025.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00026.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00027.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00028.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00029.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00030.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00031.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00032.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:57

XBV00033.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00034.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00035.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00036.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00037.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00038.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00039.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00040.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00041.VDF   : 8.12.37.66      2048 Bytes  17.12.2015 13:07:58

XBV00112.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00113.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00114.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00115.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00116.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00117.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00118.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:07

XBV00119.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00120.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00121.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00122.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00123.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00124.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00125.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00126.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00127.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00128.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00129.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00130.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00131.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00132.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00133.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00134.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00135.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00136.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00137.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00138.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00139.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00140.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00141.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00142.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00143.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00144.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00145.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00146.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00147.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00148.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00149.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00150.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00151.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00152.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00153.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:08

XBV00154.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00155.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00156.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00157.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00158.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00159.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00160.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00161.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00162.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00163.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00164.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00165.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00166.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00167.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00168.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00169.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00170.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00171.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00172.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00173.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00174.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00175.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00176.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00177.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00178.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:09

XBV00179.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00180.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00181.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00182.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00183.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00184.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00185.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00186.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00187.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00188.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00189.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00190.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00191.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00192.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00193.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00194.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00195.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00196.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00197.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00198.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00199.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00200.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00201.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00202.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00203.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00204.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00205.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00206.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00207.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:10

XBV00208.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00209.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00210.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00211.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00212.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00213.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00214.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00215.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00216.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00217.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00218.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00219.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00220.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00221.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00222.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00223.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00224.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00225.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00226.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00227.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00228.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00229.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00230.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00231.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00232.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00233.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00234.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00235.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00236.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00237.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00238.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:11

XBV00239.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00240.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00241.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00242.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00243.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00244.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00245.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00246.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00247.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00248.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00249.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00250.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00251.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00252.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00253.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00254.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00255.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:12

XBV00000.VDF   : 7.11.70.0   66736640 Bytes  04.04.2013 10:07:50

XBV00001.VDF   : 7.11.237.0  48041984 Bytes  02.06.2015 13:07:52

XBV00002.VDF   : 7.12.37.36  16452096 Bytes  17.12.2015 13:07:56

XBV00042.VDF   : 8.12.37.66    774656 Bytes  17.12.2015 13:07:58

XBV00043.VDF   : 8.12.37.236   160768 Bytes  18.12.2015 11:01:11

XBV00044.VDF   : 8.12.38.2      21504 Bytes  18.12.2015 11:01:11

XBV00045.VDF   : 8.12.38.24     87040 Bytes  18.12.2015 08:08:40

XBV00046.VDF   : 8.12.38.26      2048 Bytes  18.12.2015 08:08:40

XBV00047.VDF   : 8.12.38.46     10240 Bytes  18.12.2015 08:08:40

XBV00048.VDF   : 8.12.38.48      2048 Bytes  18.12.2015 08:08:40

XBV00049.VDF   : 8.12.38.52     11264 Bytes  18.12.2015 08:08:40

XBV00050.VDF   : 8.12.38.72     25600 Bytes  18.12.2015 08:08:40

XBV00051.VDF   : 8.12.38.94     45568 Bytes  19.12.2015 10:08:14

XBV00052.VDF   : 8.12.38.114    10240 Bytes  19.12.2015 11:45:53

XBV00053.VDF   : 8.12.38.134    17408 Bytes  19.12.2015 07:09:30

XBV00054.VDF   : 8.12.38.154    18944 Bytes  19.12.2015 07:09:30

XBV00055.VDF   : 8.12.38.174   110080 Bytes  20.12.2015 23:18:44

XBV00056.VDF   : 8.12.38.176     2048 Bytes  20.12.2015 23:18:44

XBV00057.VDF   : 8.12.38.178    16896 Bytes  20.12.2015 23:18:44

XBV00058.VDF   : 8.12.38.180    12800 Bytes  20.12.2015 23:18:44

XBV00059.VDF   : 8.12.38.182    71168 Bytes  21.12.2015 09:41:55

XBV00060.VDF   : 8.12.38.202     5632 Bytes  21.12.2015 09:41:55

XBV00061.VDF   : 8.12.38.220     9216 Bytes  21.12.2015 09:41:55

XBV00062.VDF   : 8.12.38.238     4096 Bytes  21.12.2015 09:41:55

XBV00063.VDF   : 8.12.39.0       3072 Bytes  21.12.2015 09:41:55

XBV00064.VDF   : 8.12.39.2       8704 Bytes  21.12.2015 09:41:55

XBV00065.VDF   : 8.12.39.4      14336 Bytes  21.12.2015 09:02:05

XBV00066.VDF   : 8.12.39.10     57344 Bytes  21.12.2015 09:02:06

XBV00067.VDF   : 8.12.39.12      2048 Bytes  21.12.2015 09:02:06

XBV00068.VDF   : 8.12.39.14      2048 Bytes  21.12.2015 09:02:06

XBV00069.VDF   : 8.12.39.16      2048 Bytes  21.12.2015 09:02:06

XBV00070.VDF   : 8.12.39.18     18432 Bytes  21.12.2015 09:02:06

XBV00071.VDF   : 8.12.39.20      2048 Bytes  21.12.2015 09:02:06

XBV00072.VDF   : 8.12.39.38     37888 Bytes  21.12.2015 09:02:06

XBV00073.VDF   : 8.12.39.56      2048 Bytes  22.12.2015 09:02:06

XBV00074.VDF   : 8.12.39.92     26112 Bytes  22.12.2015 09:02:06

XBV00075.VDF   : 8.12.39.110     8704 Bytes  22.12.2015 09:02:06

XBV00076.VDF   : 8.12.39.128     4608 Bytes  22.12.2015 11:01:54

XBV00077.VDF   : 8.12.39.130     8192 Bytes  22.12.2015 11:01:54

XBV00078.VDF   : 8.12.39.134    45056 Bytes  22.12.2015 17:01:54

XBV00079.VDF   : 8.12.39.152     2048 Bytes  22.12.2015 17:01:54

XBV00080.VDF   : 8.12.39.168     9728 Bytes  22.12.2015 19:09:36

XBV00081.VDF   : 8.12.39.186    20480 Bytes  22.12.2015 21:14:54

XBV00082.VDF   : 8.12.39.202     9728 Bytes  22.12.2015 21:14:54

XBV00083.VDF   : 8.12.39.204     6144 Bytes  22.12.2015 07:36:26

XBV00084.VDF   : 8.12.39.206     7168 Bytes  22.12.2015 07:36:26

XBV00085.VDF   : 8.12.39.208     6656 Bytes  22.12.2015 07:36:26

XBV00086.VDF   : 8.12.39.210     5120 Bytes  22.12.2015 07:36:27

XBV00087.VDF   : 8.12.39.214    34816 Bytes  23.12.2015 07:36:27

XBV00088.VDF   : 8.12.39.216    15872 Bytes  23.12.2015 07:36:27

XBV00089.VDF   : 8.12.39.232    15360 Bytes  23.12.2015 11:41:07

XBV00090.VDF   : 8.12.39.248    23040 Bytes  23.12.2015 11:41:07

XBV00091.VDF   : 8.12.40.8      10752 Bytes  23.12.2015 11:41:07

XBV00092.VDF   : 8.12.40.10      2048 Bytes  23.12.2015 11:41:07

XBV00093.VDF   : 8.12.40.12      2048 Bytes  23.12.2015 11:41:07

XBV00094.VDF   : 8.12.40.30      4608 Bytes  23.12.2015 15:41:21

XBV00095.VDF   : 8.12.40.32      2048 Bytes  23.12.2015 15:41:21

XBV00096.VDF   : 8.12.40.34     31744 Bytes  23.12.2015 17:41:12

XBV00097.VDF   : 8.12.40.36      7680 Bytes  23.12.2015 17:41:12

XBV00098.VDF   : 8.12.40.38      5120 Bytes  23.12.2015 17:41:12

XBV00099.VDF   : 8.12.40.40     16896 Bytes  23.12.2015 21:18:20

XBV00100.VDF   : 8.12.40.42      2048 Bytes  23.12.2015 21:18:20

XBV00101.VDF   : 8.12.40.44     10240 Bytes  23.12.2015 21:18:20

XBV00102.VDF   : 8.12.40.46      6656 Bytes  23.12.2015 23:18:20

XBV00103.VDF   : 8.12.40.48      7168 Bytes  23.12.2015 23:18:20

XBV00104.VDF   : 8.12.40.50      6144 Bytes  23.12.2015 07:42:51

XBV00105.VDF   : 8.12.40.54     31744 Bytes  24.12.2015 07:42:52

XBV00106.VDF   : 8.12.40.70     14848 Bytes  24.12.2015 07:42:52

XBV00107.VDF   : 8.12.40.84      8704 Bytes  24.12.2015 09:42:41

XBV00108.VDF   : 8.12.40.98      2048 Bytes  24.12.2015 09:42:41

XBV00109.VDF   : 8.12.40.112    11264 Bytes  24.12.2015 11:24:23

XBV00110.VDF   : 8.12.40.114     6656 Bytes  24.12.2015 11:24:23

XBV00111.VDF   : 8.12.40.118    28160 Bytes  24.12.2015 14:57:36

LOCAL000.VDF   : 8.12.40.118 135613440 Bytes  24.12.2015 14:58:05

Engineversion  : 8.3.34.106

AEBB.DLL       : 8.1.3.0        59296 Bytes  19.11.2015 23:25:40

AECORE.DLL     : 8.3.9.0       249920 Bytes  15.11.2015 17:40:31

AEDROID.DLL    : 8.4.3.348    1800104 Bytes  09.11.2015 00:12:16

AEEMU.DLL      : 8.1.3.6       404328 Bytes  19.11.2015 23:25:43

AEEXP.DLL      : 8.4.2.144     289920 Bytes  22.12.2015 15:01:54

AEGEN.DLL      : 8.1.8.14      490344 Bytes  18.12.2015 13:01:25

AEHELP.DLL     : 8.3.2.8       284584 Bytes  22.12.2015 09:02:05

AEHEUR.DLL     : 8.1.4.2098  10002496 Bytes  17.12.2015 15:07:45

AEMOBILE.DLL   : 8.1.8.10      301936 Bytes  26.11.2015 16:19:13

AEOFFICE.DLL   : 8.3.1.72      426048 Bytes  22.12.2015 15:01:54

AEPACK.DLL     : 8.4.1.20      801920 Bytes  04.12.2015 12:05:43

AERDL.DLL      : 8.2.1.38      813928 Bytes  09.11.2015 00:12:15

AESBX.DLL      : 8.2.21.2     1629032 Bytes  09.11.2015 00:12:15

AESCN.DLL      : 8.3.4.0       141216 Bytes  15.11.2015 17:40:33

AESCRIPT.DLL   : 8.3.0.18      547968 Bytes  22.12.2015 15:01:54

AEVDF.DLL      : 8.3.2.4       141216 Bytes  19.11.2015 23:25:47

AVWINLL.DLL    : 15.0.15.106    28632 Bytes  01.12.2015 13:02:22

AVPREF.DLL     : 15.0.15.106    54896 Bytes  01.12.2015 13:02:24

AVREP.DLL      : 15.0.15.106   225320 Bytes  01.12.2015 13:02:24

AVARKT.DLL     : 15.0.15.106   231032 Bytes  01.12.2015 13:02:22

AVEVTLOG.DLL   : 15.0.15.106   200632 Bytes  01.12.2015 13:02:23

SQLITE3.DLL    : 15.0.15.106   460704 Bytes  01.12.2015 13:02:31

AVSMTP.DLL     : 15.0.15.106    82120 Bytes  01.12.2015 13:02:25

NETNT.DLL      : 15.0.15.106    18792 Bytes  01.12.2015 13:02:30

CommonImageRc.dll: 15.0.15.106  4309752 Bytes  01.12.2015 13:02:22

CommonTextRc.dll: 15.0.15.106    70784 Bytes  01.12.2015 13:02:22
 

Konfiguration für den aktuellen Suchlauf:

Job Name..............................: Lokale Festplatten

Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\alldiscs.avp

Protokollierung.......................: standard

Primäre Aktion........................: Interaktiv

Sekundäre Aktion......................: Ignorieren

Durchsuche Masterbootsektoren.........: ein

Durchsuche Bootsektoren...............: ein

Bootsektoren..........................: C:, D:, 

Durchsuche aktive Programme...........: ein

Durchsuche Registrierung..............: ein

Suche nach Rootkits...................: ein

Integritätsprüfung von Systemdateien..: ein

Prüfe alle Dateien....................: Alle Dateien

Durchsuche Archive....................: ein

Rekursionstiefe einschränken..........: 20

Archiv Smart Extensions...............: ein

Makrovirenheuristik...................: ein

Dateiheuristik........................: erweitert
 

Beginn des Suchlaufs: Donnerstag, 24. Dezember 2015  20:43
 

Der Suchlauf über die Bootsektoren wird begonnen:

Bootsektor 'HDD0(C:, D:)'

    [INFO]      Es wurde kein Virus gefunden!
 

Der Suchlauf nach versteckten Objekten wird begonnen.

Der Treiber konnte nicht initialisiert werden.
 

Der Suchlauf über gestartete Prozesse wird begonnen:

Durchsuche Prozess 'svchost.exe' - '67' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '25' Modul(e) wurden durchsucht

Durchsuche Prozess 'dwm.exe' - '38' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '77' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '32' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '59' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '19' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '58' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '38' Modul(e) wurden durchsucht

Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht

Durchsuche Prozess 'sihost.exe' - '56' Modul(e) wurden durchsucht

Durchsuche Prozess 'Explorer.EXE' - '213' Modul(e) wurden durchsucht

Durchsuche Prozess 'ctfmon.exe' - '21' Modul(e) wurden durchsucht

Durchsuche Prozess 'ShellExperienceHost.exe' - '80' Modul(e) wurden durchsucht

Durchsuche Prozess 'RuntimeBroker.exe' - '45' Modul(e) wurden durchsucht

Durchsuche Prozess 'SearchUI.exe' - '124' Modul(e) wurden durchsucht

Durchsuche Prozess 'DllHost.exe' - '38' Modul(e) wurden durchsucht

Durchsuche Prozess 'DllHost.exe' - '28' Modul(e) wurden durchsucht

Durchsuche Prozess 'helppane.exe' - '61' Modul(e) wurden durchsucht

Durchsuche Prozess 'firefox.exe' - '124' Modul(e) wurden durchsucht

Durchsuche Prozess 'avcenter.exe' - '148' Modul(e) wurden durchsucht

Durchsuche Prozess 'wmiprvse.exe' - '27' Modul(e) wurden durchsucht

Durchsuche Prozess 'avscan.exe' - '111' Modul(e) wurden durchsucht

Durchsuche Prozess 'WMIADAP.EXE' - '22' Modul(e) wurden durchsucht

Durchsuche Prozess 'wmiprvse.exe' - '26' Modul(e) wurden durchsucht

Durchsuche Prozess 'avshadow.exe' - '21' Modul(e) wurden durchsucht

Durchsuche Prozess 'winlogon.exe' - '30' Modul(e) wurden durchsucht

Durchsuche Prozess 'lsass.exe' - '69' Modul(e) wurden durchsucht
 

Untersuchung der Systemdateien wird begonnen:

Signiert -> 'C:\WINDOWS\system32\svchost.exe'

Signiert -> 'C:\WINDOWS\system32\winlogon.exe'

Signiert -> 'C:\WINDOWS\explorer.exe'

Signiert -> 'C:\WINDOWS\system32\smss.exe'

Signiert -> 'C:\WINDOWS\system32\wininet.DLL'

Signiert -> 'C:\WINDOWS\system32\wsock32.DLL'

Signiert -> 'C:\WINDOWS\system32\ws2_32.DLL'

Signiert -> 'C:\WINDOWS\system32\services.exe'

Signiert -> 'C:\WINDOWS\system32\lsass.exe'

Signiert -> 'C:\WINDOWS\system32\csrss.exe'

Signiert -> 'C:\WINDOWS\system32\drivers\kbdclass.sys'

Signiert -> 'C:\WINDOWS\system32\spoolsv.exe'

Signiert -> 'C:\WINDOWS\system32\alg.exe'

Signiert -> 'C:\WINDOWS\system32\wuauclt.exe'

Signiert -> 'C:\WINDOWS\system32\advapi32.DLL'

Signiert -> 'C:\WINDOWS\system32\user32.DLL'

Signiert -> 'C:\WINDOWS\system32\gdi32.DLL'

Signiert -> 'C:\WINDOWS\system32\kernel32.DLL'

Signiert -> 'C:\WINDOWS\system32\ntdll.DLL'

Signiert -> 'C:\WINDOWS\system32\ntoskrnl.exe'

Signiert -> 'C:\WINDOWS\system32\drivers\beep.sys'

Signiert -> 'C:\WINDOWS\system32\ctfmon.exe'

Signiert -> 'C:\WINDOWS\system32\imm32.dll'

Signiert -> 'C:\WINDOWS\system32\dsound.dll'

Signiert -> 'C:\WINDOWS\system32\aclui.dll'

Signiert -> 'C:\WINDOWS\system32\msvcrt.dll'

Signiert -> 'C:\WINDOWS\system32\d3d9.dll'

Signiert -> 'C:\WINDOWS\system32\dnsapi.dll'

Signiert -> 'C:\WINDOWS\system32\mshtml.dll'

Signiert -> 'C:\WINDOWS\system32\regsvr32.exe'

Signiert -> 'C:\WINDOWS\system32\rundll32.exe'

Signiert -> 'C:\WINDOWS\system32\userinit.exe'

Signiert -> 'C:\WINDOWS\system32\reg.exe'

Signiert -> 'C:\WINDOWS\regedit.exe'

Die Systemdateien wurden durchsucht ('34' Dateien)
 

Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen:

Die Registry wurde durchsucht ( '1979' Dateien ).
 
 

Der Suchlauf über die ausgewählten Dateien wird begonnen:
 

Beginne mit der Suche in 'C:\' <OS>

C:\Windows\Temp\6b7f8318-f4eb-48ca-a784-393e6416aa63\tmp0000567e\tmp00000759

  [FUND]      Ist das Trojanische Pferd TR/Patched.Ren.Gen2

C:\Windows\Temp\6b7f8318-f4eb-48ca-a784-393e6416aa63\tmp0000567e\tmp00000841

  [FUND]      Ist das Trojanische Pferd TR/Patched.Ren.Gen2

Beginne mit der Suche in 'D:\' <Recovery Image>
 

Beginne mit der Desinfektion:

C:\Windows\Temp\6b7f8318-f4eb-48ca-a784-393e6416aa63\tmp0000567e\tmp00000841

  [FUND]      Ist das Trojanische Pferd TR/Patched.Ren.Gen2

  [HINWEIS]   Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '558ef090.qua' verschoben!

C:\Windows\Temp\6b7f8318-f4eb-48ca-a784-393e6416aa63\tmp0000567e\tmp00000759

  [FUND]      Ist das Trojanische Pferd TR/Patched.Ren.Gen2

  [HINWEIS]   Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '4d19df2b.qua' verschoben!
 
 

Ende des Suchlaufs: Donnerstag, 24. Dezember 2015  22:00

Benötigte Zeit:  1:14:52 Stunde(n)
 

Der Suchlauf wurde vollständig durchgeführt.
 

  79299 Verzeichnisse wurden überprüft

 887524 Dateien wurden geprüft

      2 Viren bzw. unerwünschte Programme wurden gefunden

      0 Dateien wurden als verdächtig eingestuft

      0 Dateien wurden gelöscht

      0 Viren bzw. unerwünschte Programme wurden repariert

      2 Dateien wurden in die Quarantäne verschoben

      0 Dateien wurden umbenannt

      0 Dateien konnten nicht durchsucht werden

 887522 Dateien ohne Befall

   9262 Archive wurden durchsucht

      0 Warnungen

      2 Hinweise

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 
 

Update, 24.12.2015 00:58, SYSTEM, MANNIKR, Scheduler, Failed, Unable to access update server, 

Update, 24.12.2015 08:33, SYSTEM, MANNIKR, Manual, Malware Database, 2015.12.23.6, 2015.12.24.2, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Malware Protection, Starting, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Malware Protection, Started, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 24.12.2015 08:33, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 24.12.2015 08:34, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 24.12.2015 08:34, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 08:34, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 24.12.2015 08:39, SYSTEM, MANNIKR, Scheduler, Start: 24.12.2015 08:33, Dauer: 5 Min. 33 Sek., Hyper-Suchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Update, 24.12.2015 09:12, SYSTEM, MANNIKR, Scheduler, Malware Database, 2015.12.24.2, 2015.12.24.3, 

Protection, 24.12.2015 09:12, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 24.12.2015 09:12, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 24.12.2015 09:13, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 24.12.2015 09:13, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 24.12.2015 09:13, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 09:13, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 24.12.2015 09:20, SYSTEM, MANNIKR, Scheduler, Start: 24.12.2015 09:00, Dauer: 20 Min. 35 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Update, 24.12.2015 15:48, SYSTEM, MANNIKR, Manual, Domain Database, 2015.12.23.4, 2015.12.24.1, 

Update, 24.12.2015 15:48, SYSTEM, MANNIKR, Manual, Malware Database, 2015.12.24.3, 2015.12.24.4, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malware Protection, Starting, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malware Protection, Started, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 15:48, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 24.12.2015 15:52, SYSTEM, MANNIKR, Scheduler, Start: 24.12.2015 15:48, Dauer: 3 Min. 47 Sek., Hyper-Suchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Update, 24.12.2015 16:31, SYSTEM, MANNIKR, Manual, Malware Database, 2015.12.24.4, 2015.12.24.5, 

Scan, 24.12.2015 16:48, SYSTEM, MANNIKR, Manual, Start: 24.12.2015 16:31, Dauer: 16 Min. 50 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Protection, 24.12.2015 18:29, SYSTEM, MANNIKR, Protection, Malware Protection, Starting, 

Protection, 24.12.2015 18:29, SYSTEM, MANNIKR, Protection, Malware Protection, Started, 

Protection, 24.12.2015 18:29, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 18:29, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Update, 24.12.2015 18:32, SYSTEM, MANNIKR, Scheduler, Malware Database, 2015.12.24.5, 2015.12.24.6, 

Protection, 24.12.2015 18:32, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 24.12.2015 18:32, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 24.12.2015 18:32, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 24.12.2015 18:33, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 24.12.2015 18:33, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 18:33, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 24.12.2015 18:33, SYSTEM, MANNIKR, Scheduler, Start: 24.12.2015 18:29, Dauer: 3 Min. 56 Sek., Hyper-Suchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Update, 24.12.2015 22:17, SYSTEM, MANNIKR, Manual, Malware Database, 2015.12.24.6, 2015.12.24.7, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malware Protection, Starting, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malware Protection, Started, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 24.12.2015 22:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 24.12.2015 22:20, SYSTEM, MANNIKR, Scheduler, Start: 24.12.2015 22:17, Dauer: 3 Min. 4 Sek., Hyper-Suchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 
 

(end)

:hallo:

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...:abklatsch:

Bitte arbeite alle Schritte der Reihe nach ab.
Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
Bitte kein Crossposting (posten in mehreren Foren).
Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
Poste die Logfiles direkt in Deinen Thread in Code-Tags.
Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean :daumenhoc bekommst.

Los geht's:

Schritt 1
http://filepony.de/icon/frst.png http://deeprybka.trojaner-board.de/b...e/frst/sn1.PNG

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://deeprybka.trojaner-board.de/tdss/codetags.gif

Erstmal vielen Dank, dass du mir versuchst zu helfen.

Heute hatte ich auch schon mehrere Funde, wo sich immer mein Avira zu Wort gemeldet hat und ich konnte Sie vermutlich in Quarantäne verschieben.

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:25-12-2015

durchgeführt von manfred (Administrator) auf MANNIKR (25-12-2015 17:27:00)

Gestartet von C:\Users\manfred\Downloads

Geladene Profile: manfred & Administrator &  (Verfügbare Profile: manfred & Administrator)

Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe

() C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe

() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe

(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe

(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation) C:\Windows\System32\igfxHK.exe

(Intel Corporation) C:\Windows\System32\igfxTray.exe

() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

() C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupmanager.exe

() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe

(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimeLineAgent.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Lavasoft) C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Farbar) C:\Users\manfred\Downloads\FRST64(4).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [] => [X]

HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe [9574112 2015-12-09] ()

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)

HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)

HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [803200 2015-12-01] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [Ad-Aware Browsing Protection] => C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)

HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)

HKLM-x32\...\Run: [LCWB] => C:\Program Files (x86)\LernenUndCo\LCWB.exe [3304448 2010-11-02] (GEKKO Software GmbH)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)

HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.)

Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4594552 2015-06-16] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4594552 2015-06-16] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4594552 2015-06-16] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4594552 2015-06-16] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4594552 2015-06-16] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4594552 2015-06-16] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [0GenieTimeLine-BackedUp] -> {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Excluded] -> {B77E8651-93B1-40CD-8ECF-6F33DAC805A0} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Folder] -> {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-NotBackedUp] -> {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Pending ] -> {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-BackedUp] -> {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Excluded] -> {B77E8651-93B1-40CD-8ECF-6F33DAC805A0} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Folder] -> {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-NotBackedUp] -> {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Pending ] -> {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-02-04]

ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)

BootExecute: autocheck autochk * sdnclean64.exe
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Tcpip\..\Interfaces\{ff587969-3200-4dd4-9438-7ba22d7f7e72}: [DhcpNameServer] 192.168.2.1
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/4

SearchScopes: HKLM -> DefaultScope {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = hxxp://www.sm.de/?q={searchTerms}

SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}

SearchScopes: HKLM -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = hxxp://www.sm.de/?q={searchTerms}

SearchScopes: HKLM -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt

SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}

SearchScopes: HKLM-x32 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)

BHO: Kein Name -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> Keine Datei

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-20] (Oracle Corporation)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-20] (Oracle Corporation)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

BHO-x32: Kein Name -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-500 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
 

FireFox:

========

FF ProfilePath: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default

FF SearchEngineOrder.1: SuchMaschine

FF SelectedSearchEngine: SuchMaschine

FF Homepage: hxxp://www.klamm.de/

FF Keyword.URL: hxxp://www.sm.de/?q=

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-12] ()

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-12] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-22] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-22] (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF SearchPlugin: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\searchplugins\google-images.xml [2015-06-06]

FF SearchPlugin: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\searchplugins\google-maps.xml [2015-06-06]

FF Extension: Google Translator for Firefox - C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\extensions\translator@zoli.bod.xpi [2015-07-19]

FF Extension: Avira Browser Safety - C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\Extensions\abs@avira.com [2015-12-15]
 

Chrome: 

=======

CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/"

CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default

CHR DefaultSearchKeyword: Default -> Yahoo

CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10

CHR Profile: C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Docs) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-28]

CHR Extension: (Google Drive) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-21]

CHR Extension: (YouTube) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-21]

CHR Extension: (Google-Suche) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-21]

CHR Extension: (Google Docs Offline) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-21]

CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-28]

CHR Extension: (Google Mail) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-28]

CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [948392 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)

S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1418560 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 backupsvc5; C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe [1404928 2015-07-27] () [Datei ist nicht signiert]

R2 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [678976 2013-12-29] (Genie9)

R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)

S2 HPRegistrationSvc; c:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [205216 2012-07-18] (Hewlett-Packard)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)

R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-04-22] (Intel Corporation)

R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe [712432 2015-12-09] ()

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-08-01] (Realtek Semiconductor)

R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.)

R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.)

R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.)

R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)

R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-01] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-01] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-01] (Avira Operations GmbH & Co. KG)

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)

R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.99.0\gzflt.sys [155912 2015-12-09] (BitDefender LLC)

S3 hwusbdev; C:\Windows\system32\DRIVERS\ewusbdev.sys [113792 2009-06-22] (Huawei Technologies Co., Ltd.)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-25] (Malwarebytes)

R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-04-22] (Intel Corporation)

R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)

S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [452040 2015-12-09] (BitDefender S.R.L.)

S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)

S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-25 17:26 - 2015-12-25 17:26 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(4).exe

2015-12-25 17:25 - 2015-12-25 17:25 - 00000000 ___HD C:\OneDriveTemp

2015-12-25 16:57 - 2015-12-25 16:58 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(3).exe

2015-12-23 12:50 - 2015-12-24 08:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-12-21 13:52 - 2015-12-21 13:52 - 00080232 ____H C:\WINDOWS\SysWOW64\mlfcache.dat

2015-12-20 07:58 - 2015-12-20 07:58 - 00000000 ____D C:\WINDOWS\pss

2015-12-19 12:59 - 2015-12-24 20:40 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job

2015-12-18 06:54 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-12-18 06:54 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-12-18 06:54 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe

2015-12-18 06:54 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2015-12-18 06:54 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-12-18 06:54 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-12-18 06:54 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-12-18 06:54 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll

2015-12-18 06:54 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll

2015-12-18 06:54 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-12-18 06:54 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-12-18 06:54 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe

2015-12-18 06:54 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll

2015-12-18 06:54 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2015-12-18 06:54 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-12-18 06:54 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll

2015-12-18 06:54 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2015-12-18 06:54 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-12-18 06:54 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe

2015-12-18 06:54 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2015-12-18 06:54 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-12-18 06:54 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll

2015-12-18 06:54 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-12-18 06:54 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-12-18 06:54 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-12-18 06:54 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-12-18 06:54 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll

2015-12-18 06:54 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-12-18 06:54 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-12-18 06:54 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2015-12-18 06:54 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll

2015-12-18 06:54 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll

2015-12-18 06:54 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-12-18 06:54 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2015-12-18 06:54 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-12-18 06:54 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-12-18 06:54 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL

2015-12-18 06:54 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-12-18 06:54 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-12-18 06:54 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-12-18 06:54 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll

2015-12-18 06:54 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2015-12-18 06:54 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL

2015-12-18 06:54 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe

2015-12-18 06:54 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll

2015-12-17 17:31 - 2015-12-17 17:31 - 00273422 _____ C:\Users\manfred\Desktop\PrintAtHome_1403_1.pdf

2015-12-17 14:54 - 2015-12-17 14:54 - 00000000 ____D C:\Users\manfred\AppData\LocalLow\Temp

2015-12-17 08:14 - 2015-12-17 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft

2015-12-17 08:12 - 2015-12-17 08:12 - 00000000 ____D C:\Program Files\Common Files\Lavasoft

2015-12-17 08:10 - 2015-12-17 08:10 - 02012464 _____ C:\Users\manfred\Downloads\Adaware_Installer(6).exe

2015-12-16 15:19 - 2015-12-16 15:19 - 00037668 _____ C:\Users\manfred\Desktop\Auftrag-NTH-Webshop_1403.pdf

2015-12-13 21:30 - 2015-12-14 06:08 - 00000000 ___RD C:\Users\manfred\3D Objects

2015-12-09 11:04 - 2015-12-09 11:04 - 00452040 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\Trufos.sys

2015-12-09 10:20 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-12-09 10:20 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-12-09 10:20 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-12-09 10:20 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2015-12-09 10:20 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2015-12-09 10:20 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll

2015-12-09 10:20 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2015-12-09 10:20 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll

2015-12-09 10:20 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys

2015-12-09 10:20 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2015-12-09 10:20 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-12-09 10:20 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll

2015-12-09 10:20 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2015-12-09 10:20 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-12-09 10:20 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2015-12-09 10:20 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2015-12-09 10:20 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll

2015-12-09 10:20 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll

2015-12-09 10:20 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2015-12-09 10:20 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2015-12-09 10:20 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll

2015-12-09 10:20 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-12-09 10:20 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2015-12-09 10:20 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-12-09 10:20 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-12-09 10:20 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-12-09 10:20 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2015-12-06 13:27 - 2015-12-06 13:27 - 00428265 _____ C:\Users\manfred\Downloads\SammelanmeldungDSP.xlsx

2015-12-05 00:00 - 2015-12-05 00:00 - 00000000 ____D C:\WINDOWS\Minidump

2015-12-04 13:46 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe

2015-12-04 00:33 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2015-12-04 00:33 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll

2015-12-04 00:33 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll

2015-12-04 00:33 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys

2015-12-04 00:33 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll

2015-12-04 00:33 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll

2015-12-04 00:33 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-12-04 00:33 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2015-12-04 00:33 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll

2015-12-04 00:33 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll

2015-12-04 00:33 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2015-12-04 00:33 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2015-12-04 00:33 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2015-12-04 00:33 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2015-12-04 00:33 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll

2015-12-04 00:33 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll

2015-12-04 00:33 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll

2015-12-04 00:33 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys

2015-12-04 00:33 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe

2015-12-04 00:33 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2015-12-04 00:33 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll

2015-12-04 00:33 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2015-12-04 00:33 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2015-12-04 00:33 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll

2015-12-04 00:33 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll

2015-12-04 00:33 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2015-12-04 00:33 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll

2015-12-04 00:33 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2015-12-04 00:33 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll

2015-12-04 00:33 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll

2015-12-04 00:33 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2015-12-04 00:33 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-12-04 00:33 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll

2015-12-04 00:33 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll

2015-12-04 00:33 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll

2015-12-04 00:33 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll

2015-12-04 00:33 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2015-12-04 00:33 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-12-04 00:33 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-12-04 00:33 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll

2015-12-04 00:33 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-12-04 00:33 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll

2015-12-04 00:33 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-12-04 00:33 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-12-04 00:33 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-12-02 11:29 - 2015-12-02 11:29 - 05028296 _____ (Adobe Systems Inc.) C:\Users\manfred\Downloads\Shockwave_Installer_Slim(1).exe

2015-12-01 14:02 - 2015-12-01 14:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2015-12-01 13:44 - 2015-12-01 13:44 - 02617344 _____ C:\Users\manfred\Downloads\msxml6_x64(1).msi

2015-12-01 06:16 - 2015-12-01 06:16 - 00016896 _____ C:\Users\manfred\Desktop\urlaubswünsche 2016.xls

2015-11-30 15:25 - 2015-11-30 15:25 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2015-11-30 13:16 - 2015-12-24 22:17 - 00002404 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk

2015-11-29 17:56 - 2015-11-29 17:56 - 23802157 _____ (Viktor Wedel Software Design ) C:\Users\manfred\Downloads\nlgenius_setup.exe

2015-11-29 16:10 - 2015-11-29 16:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-11-28 12:18 - 2015-11-28 13:23 - 00000000 ____D C:\Users\manfred\AppData\Local\MicrosoftEdge

2015-11-28 11:16 - 2015-12-13 19:52 - 00002434 _____ C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-11-28 11:14 - 2015-12-04 15:05 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy

2015-11-28 11:14 - 2015-12-04 13:47 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2

2015-11-28 11:14 - 2015-11-28 11:14 - 00001466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk

2015-11-28 11:14 - 2015-11-28 11:14 - 00001454 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk

2015-11-28 11:14 - 2015-11-28 11:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking

2015-11-28 11:14 - 2015-11-28 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2

2015-11-28 11:14 - 2015-06-16 17:32 - 00020760 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe

2015-11-28 11:11 - 2015-11-28 11:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive

2015-11-28 11:08 - 2015-11-28 11:08 - 00000000 ____D C:\Users\manfred\AppData\Local\Publishers

2015-11-28 11:08 - 2015-11-28 11:08 - 00000000 ____D C:\Users\manfred\AppData\Local\ActiveSync

2015-11-28 11:07 - 2015-11-28 11:07 - 00000000 ____D C:\Users\manfred\AppData\Local\Comms

2015-11-28 11:06 - 2015-12-25 17:25 - 00000000 __SHD C:\Users\manfred\IntelGraphicsProfiles

2015-11-28 11:06 - 2015-11-30 12:16 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

2015-11-28 11:06 - 2015-11-28 11:06 - 00000020 ___SH C:\Users\manfred\ntuser.ini

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Vorlagen

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Startmenü

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 ____D C:\Users\manfred\AppData\Local\TileDataLayer

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 ____D C:\ProgramData\USOShared

2015-11-28 11:03 - 2015-12-24 22:15 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-11-28 10:52 - 2015-11-28 10:52 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\Documents\hp.applications.package.appdata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Genie9

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\Documents\hp.applications.package.appdata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Genie9

2015-11-28 10:49 - 2015-11-28 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autostart

2015-11-28 10:48 - 2015-11-28 10:48 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-11-28 10:47 - 2015-12-24 15:46 - 00000000 ____D C:\Users\manfred

2015-11-28 10:47 - 2015-12-05 00:02 - 00000000 ____D C:\Users\Administrator

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Vorlagen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Startmenü

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Netzwerkumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Lokale Einstellungen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Eigene Dateien

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Druckumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Videos

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Musik

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Bilder

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Local\Verlauf

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Local\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Vorlagen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Startmenü

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten

2015-11-28 10:46 - 2015-12-25 12:36 - 02003246 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-11-28 10:46 - 2015-11-28 10:46 - 01909068 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2015-11-28 10:44 - 2015-11-28 10:48 - 00000000 ____D C:\Program Files\Intel

2015-11-28 10:44 - 2015-11-28 10:44 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

2015-11-28 10:44 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2015-11-28 10:44 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\WINDOWS\system32\SRSLabs

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\Program Files\Realtek

2015-11-28 10:43 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-11-28 10:40 - 2015-12-10 15:36 - 00256784 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-11-28 10:39 - 2015-11-28 11:10 - 00000000 ___DC C:\WINDOWS\Panther

2015-11-28 10:37 - 2015-11-28 10:37 - 00000000 ____D C:\Windows.old

2015-11-28 10:36 - 2015-11-28 10:36 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2015-11-28 10:36 - 2015-11-28 10:36 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2015-11-28 10:36 - 2015-11-28 10:36 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2015-11-28 10:35 - 2015-11-28 10:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files\MSBuild

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\inetpub

2015-11-28 10:31 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-11-28 10:31 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-11-28 10:31 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-11-28 09:25 - 2015-12-05 00:00 - 00221367 ____N C:\WINDOWS\Minidump\120515-20328-01.dmp

2015-11-28 08:56 - 2015-11-28 09:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2015-11-26 20:17 - 2015-11-26 20:42 - 00020480 _____ C:\Users\manfred\Desktop\W-Feier Essen.xls
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-25 17:27 - 2014-10-14 11:58 - 00034350 _____ C:\Users\manfred\Downloads\FRST.txt

2015-12-25 17:27 - 2013-11-22 07:49 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection

2015-12-25 17:26 - 2014-10-14 11:58 - 00000000 ____D C:\FRST

2015-12-25 17:25 - 2014-04-21 11:39 - 00000000 __RDO C:\Users\manfred\OneDrive

2015-12-25 17:25 - 2014-04-10 16:02 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-12-25 17:00 - 2013-11-24 12:39 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-12-25 16:31 - 2013-12-31 09:12 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{00B4722C-7113-4323-8329-460E0E599ADF}

2015-12-25 15:29 - 2013-12-24 22:15 - 00000000 ____D C:\Users\manfred\AppData\Local\PokerStars.EU

2015-12-25 15:25 - 2013-11-21 11:56 - 00000952 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA.job

2015-12-25 12:36 - 2015-10-30 19:35 - 00852510 _____ C:\WINDOWS\system32\perfh007.dat

2015-12-25 12:36 - 2015-10-30 19:35 - 00187736 _____ C:\WINDOWS\system32\perfc007.dat

2015-12-25 12:36 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF

2015-12-25 09:25 - 2013-11-21 11:56 - 00000930 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core.job

2015-12-25 08:53 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-12-24 22:15 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI

2015-12-24 14:18 - 2013-12-24 22:15 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU

2015-12-24 13:20 - 2013-12-19 18:54 - 00000000 ____D C:\Users\manfred\AppData\Local\ElevatedDiagnostics

2015-12-24 08:44 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps

2015-12-24 08:32 - 2013-11-21 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-12-20 07:58 - 2015-10-30 07:28 - 00000000 ____D C:\Windows

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr

2015-12-19 12:39 - 2015-11-10 16:42 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job

2015-12-18 10:49 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-12-17 11:02 - 2015-06-11 10:00 - 00028970 _____ C:\Users\manfred\Desktop\Platz.htm

2015-12-17 10:59 - 2015-06-11 10:00 - 00035882 _____ C:\Users\manfred\Desktop\Spielpunkte.htm

2015-12-17 09:08 - 2013-11-25 13:03 - 00000000 ____D C:\Users\manfred\AppData\Roaming\vlc

2015-12-17 00:28 - 2014-02-06 13:14 - 00002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-12-12 16:43 - 2014-08-19 16:23 - 00000000 ____D C:\Users\manfred\AppData\Local\Adobe

2015-12-11 15:26 - 2013-11-21 10:57 - 00000000 ____D C:\Users\manfred\AppData\Local\Packages

2015-12-10 18:56 - 2013-11-29 22:06 - 00003256 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleFormanfred

2015-12-10 18:56 - 2013-11-29 22:06 - 00000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleFormanfred.job

2015-12-10 17:50 - 2014-02-06 13:14 - 00000000 ____D C:\Users\manfred\AppData\Local\Google

2015-12-10 15:44 - 2014-06-30 20:09 - 00003976 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1391416707

2015-12-10 15:44 - 2014-02-03 09:38 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

2015-12-10 15:44 - 2014-02-03 09:38 - 00000000 ____D C:\Program Files (x86)\Opera

2015-12-10 15:35 - 2013-12-22 08:22 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-12-10 15:35 - 2013-12-22 08:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-12-09 22:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-12-09 13:00 - 2015-11-10 16:42 - 00004086 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier

2015-12-09 12:00 - 2013-11-24 12:39 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-12-09 10:32 - 2013-12-22 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-12-09 10:31 - 2013-11-22 15:00 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-12-06 18:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache

2015-12-05 10:03 - 2014-06-30 20:08 - 00000000 ____D C:\Users\manfred\AppData\Roaming\DVDVideoSoft

2015-12-04 23:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-12-03 00:34 - 2014-06-30 20:04 - 00000000 ____D C:\Users\manfred\Downloads\youtube downloader

2015-12-03 00:33 - 2014-07-27 12:34 - 00000000 ____D C:\Users\manfred\Downloads\youtube laden

2015-12-02 09:23 - 2014-02-06 13:14 - 00004192 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-12-02 09:23 - 2014-02-06 13:14 - 00003960 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-12-02 09:23 - 2014-02-06 13:14 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-12-02 09:23 - 2014-02-06 13:14 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-12-01 14:03 - 2014-12-06 22:22 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP

2015-12-01 14:02 - 2015-05-05 12:45 - 00002081 _____ C:\Users\Public\Desktop\Avira Antivirus.lnk

2015-12-01 14:02 - 2013-11-21 11:10 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2015-12-01 14:02 - 2013-11-21 11:10 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2015-12-01 14:02 - 2013-11-21 11:10 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2015-12-01 14:02 - 2013-11-21 11:10 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2015-11-29 17:57 - 2013-11-28 10:26 - 00001114 _____ C:\Users\Public\Desktop\Newsletter Genius.lnk

2015-11-29 17:57 - 2013-11-28 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newsletter Genius

2015-11-29 17:57 - 2013-11-28 10:26 - 00000000 ____D C:\Program Files (x86)\Newsletter Genius

2015-11-29 06:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat

2015-11-28 20:18 - 2015-11-19 12:43 - 00056832 _____ C:\Users\manfred\Desktop\kalender 2016 mit Arbeit.19.11.15.xls

2015-11-28 18:19 - 2015-04-22 06:12 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-11-28 13:21 - 2014-12-06 22:22 - 00001230 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk

2015-11-28 13:21 - 2014-12-06 22:22 - 00001180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk

2015-11-28 11:25 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow

2015-11-28 11:08 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-11-28 11:08 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-11-28 11:07 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-11-28 11:07 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT

2015-11-28 11:06 - 2013-09-26 16:50 - 00000000 __RHD C:\Users\Public\AccountPictures

2015-11-28 11:05 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-11-28 11:05 - 2014-04-21 11:20 - 00047628 _____ C:\WINDOWS\diagwrn.xml

2015-11-28 11:05 - 2014-04-21 11:20 - 00047628 _____ C:\WINDOWS\diagerr.xml

2015-11-28 11:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration

2015-11-28 11:03 - 2014-12-26 09:03 - 00002764 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-11-28 11:03 - 2014-04-21 11:32 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-11-28 11:03 - 2013-11-23 07:41 - 00002318 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask

2015-11-28 11:03 - 2013-11-21 11:56 - 00003388 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA

2015-11-28 11:03 - 2013-11-21 11:56 - 00003146 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core

2015-11-28 11:03 - 2013-11-21 11:07 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3207775961-1083249041-1324932386-1001

2015-11-28 11:00 - 2015-10-30 08:24 - 00000000 __RSD C:\WINDOWS\Media

2015-11-28 11:00 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries

2015-11-28 10:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\ModemLogs

2015-11-28 10:54 - 2015-07-15 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom

2015-11-28 10:54 - 2015-05-21 18:54 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lernen & Co

2015-11-28 10:54 - 2015-03-20 08:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bild.me Upload-Tool

2015-11-28 10:54 - 2014-09-25 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Partner

2015-11-28 10:54 - 2014-07-17 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-11-28 10:54 - 2014-05-11 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genie9

2015-11-28 10:54 - 2014-05-09 09:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Any To GIF

2015-11-28 10:54 - 2014-04-22 10:40 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D&D Code

2015-11-28 10:54 - 2014-04-10 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-11-28 10:54 - 2014-02-06 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-11-28 10:54 - 2014-02-02 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular

2015-11-28 10:54 - 2013-12-24 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.EU

2015-11-28 10:54 - 2013-11-27 08:20 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online

2015-11-28 10:54 - 2013-11-25 16:42 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-11-28 10:54 - 2013-11-25 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-11-28 10:54 - 2013-11-25 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-11-28 10:54 - 2013-11-25 12:37 - 00000000 ____D C:\WINDOWS\de

2015-11-28 10:54 - 2013-11-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP250 series

2015-11-28 10:54 - 2013-11-21 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works

2015-11-28 10:54 - 2013-11-21 12:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2015-11-28 10:54 - 2013-08-06 23:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools

2015-11-28 10:54 - 2013-08-06 23:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos

2015-11-28 10:54 - 2013-08-06 23:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support

2015-11-28 10:54 - 2013-08-06 23:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-11-28 10:54 - 2012-07-26 10:43 - 00000000 ____D C:\WINDOWS\en-GB

2015-11-28 10:52 - 2013-08-22 14:36 - 00000000 ____D C:\Users\Default.migrated

2015-11-28 10:50 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB

2015-11-28 10:50 - 2015-04-14 20:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe

2015-11-28 10:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-11-28 10:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-11-28 10:49 - 2015-10-30 19:44 - 00000000 ____D C:\WINDOWS\ShellNew

2015-11-28 10:49 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Cursors

2015-11-28 10:49 - 2014-09-02 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo

2015-11-28 10:49 - 2014-02-03 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam

2015-11-28 10:49 - 2013-11-26 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-11-28 10:49 - 2013-11-21 12:24 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information

2015-11-28 10:49 - 2013-11-21 10:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services

2015-11-28 10:49 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer

2015-11-28 10:49 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS

2015-11-28 10:49 - 2013-08-06 23:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection

2015-11-28 10:49 - 2012-08-01 18:06 - 00000000 ____D C:\ProgramData\PRICache

2015-11-28 10:48 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-11-28 10:48 - 2015-02-03 18:28 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:48 - 2013-11-22 07:49 - 00000000 ____D C:\Program Files\Lavasoft

2015-11-28 10:48 - 2013-11-21 12:06 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autostart

2015-11-28 10:47 - 2015-02-03 18:28 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:47 - 2012-08-01 18:06 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages

2015-11-28 10:46 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-11-28 10:41 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles

2015-11-28 10:39 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-11-28 10:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-11-28 10:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv

2015-11-28 10:31 - 2015-10-30 08:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe

2015-11-28 10:31 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe

2015-11-28 10:31 - 2015-10-30 08:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll

2015-11-28 10:19 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2015-01-07 14:10 - 2015-01-07 14:10 - 0003584 _____ () C:\Users\manfred\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2013-11-21 10:58 - 2013-11-21 10:58 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
 

Einige Dateien in TEMP:

====================

C:\Users\manfred\AppData\Local\Temp\avgnt.exe
 
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert

C:\WINDOWS\explorer.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert

C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert

C:\WINDOWS\system32\services.exe => Datei ist digital signiert

C:\WINDOWS\system32\User32.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert

C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert

C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-12-24 10:06
 

==================== Ende von FRST.txt ============================

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:25-12-2015

durchgeführt von manfred (2015-12-25 17:32:26)

Gestartet von C:\Users\manfred\Downloads

Windows 10 Home (X64) (2015-11-28 10:06:45)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-3207775961-1083249041-1324932386-500 - Administrator - Disabled) => C:\Users\Administrator

DefaultAccount (S-1-5-21-3207775961-1083249041-1324932386-503 - Limited - Disabled)

Gast (S-1-5-21-3207775961-1083249041-1324932386-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3207775961-1083249041-1324932386-1007 - Limited - Enabled)

manfred (S-1-5-21-3207775961-1083249041-1324932386-1001 - Administrator - Enabled) => C:\Users\manfred
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Ad-Aware Antivirus (Enabled - Up to date) {B0CC18C6-E527-6EE6-874C-9D19920E5619}

AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D}

AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}

AS: Ad-Aware Antivirus (Enabled - Up to date) {0BADF922-C31D-6168-BDFC-A66BE9891CA4}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Ad-Aware Firewall (Disabled) {88F799E3-AF48-6FBE-AC13-342C6CDD1162}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

Ad-Aware Antivirus (HKLM\...\{9A711B34-77B5-4DDA-A97E-2FD6663729E1}_AdAwareUpdater) (Version: 11.9.696.8769 - Lavasoft)

Ad-Aware Browsing Protection (HKLM-x32\...\Ad-Aware Browsing Protection) (Version: 1.0.1.124 - Lavasoft)

AdAwareInstaller (Version: 11.9.696.8769 - Lavasoft) Hidden

AdAwareUpdater (Version: 11.9.696.8769 - Lavasoft) Hidden

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)

Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)

Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)

Advanced Backup Manager 4.5.15200.931 (HKLM\...\Advanced Backup Manager) (Version: 4.5.15200.931 - Digital Dynamic)

AntimalwareEngine (Version: 3.0.99.0 - Lavasoft) Hidden

Any To GIF 1.0.2.0 (HKLM-x32\...\{D652BB57-423B-49D8-B6B1-73338FC553B3}_is1) (Version:  - zxt2007.com)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)

Avira (HKLM-x32\...\{9480d4af-12b9-4e56-8034-4031ef6ab39d}) (Version: 1.1.25.25607 - Avira Operations GmbH & Co. KG)

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)

Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.4.505 - Bandisoft.com)

Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)

Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version:  - )

Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version:  - )

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)

Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)

CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5510 - CyberLink Corp.)

CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)

CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)

CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.0.20140117 - Landesfinanzdirektion Thüringen)

Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)

Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

Genie Timeline (HKLM-x32\...\Genie Timeline) (Version: 5.0 - Genie9)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)

Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden

Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden

HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)

HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)

HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)

HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)

HP Support Solutions Framework (HKLM-x32\...\{69FD2930-C361-47F6-822E-71B021526778}) (Version: 11.50.0015 - Hewlett-Packard Company)

HPDetect (HKLM-x32\...\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP)

Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)

Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)

Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Kiebitz 2_is1) (Version:  - )

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Kiebitz 2_is1) (Version:  - )

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Kiebitz 2_is1) (Version:  - )

Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

Microsoft Office 97, Professional Edition (HKLM-x32\...\Office8.0) (Version:  - )

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)

Microsoft SkyDrive (HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)

Microsoft SkyDrive (HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)

Microsoft SkyDrive (HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Works (HKLM-x32\...\{B26E3B0D-C2FA-4370-B068-7C476766F029}) (Version: 08.04.0702 - Microsoft Corporation)

Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 11.302.09.02.511 - Huawei Technologies Co.,Ltd)

Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)

Mozilla Thunderbird 38.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.4.0 (x86 de)) (Version: 38.4.0 - Mozilla)

MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)

Newsletter Genius 3.4 (HKLM-x32\...\nlg50452535d052c9dd1f3341e2ff895cc3_is1) (Version:  - Viktor Wedel Software Design)

Opera Stable 34.0.2036.25 (HKLM-x32\...\Opera 34.0.2036.25) (Version: 34.0.2036.25 - Opera Software)

PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)

Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden

Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)

Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)

TomTom HOME (HKLM-x32\...\{0E09BE17-EDEA-42CA-8974-42A587F51510}) (Version: 2.9.8 - Ihr Firmenname)

TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Ihr Firmenname)

TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version:  - Yahoo Inc.)
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\manfred\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Keine Datei

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {0977068B-A3E2-4D00-BF26-F411CBE7E745} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2015-06-16] (Safer-Networking Ltd.)

Task: {111298C4-6593-40EA-B7A3-EDDE1AB0A0D6} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe

Task: {1112B3E5-00DC-4674-BC93-0E14AAC95879} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

Task: {1298FDDE-C804-4C74-94F2-B5CAC5CDD56E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: {1510D33D-4690-4BE4-A466-00A035A7BC08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {190A5460-353E-455D-8E72-AE62C5F0E418} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.)

Task: {2767A97F-7498-449B-949D-1E360C4898FC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: {297D95A2-530C-4792-AB6E-B75F245F50F9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {39E2D0A9-CD06-495F-8174-174269F57466} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG

Task: {3DC4CA5B-1EC9-4B8D-8669-C5E0D1B7B8B9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG

Task: {471AF204-FCCD-4D29-9159-A43BA125A8C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG

Task: {4F02B28A-E4A7-4D21-863A-D00F2C4E9B5F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG

Task: {54071523-FB39-4926-993E-C48C365CCDD4} - System32\Tasks\HPCeeScheduleFormanfred => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)

Task: {56153579-C352-4A99-B0D8-22EB72D28A1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2015-11-30] (Hewlett-Packard)

Task: {569D0BC0-D0BD-41B0-8A1F-8E890B9DC660} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG

Task: {59E0C2DF-9726-4E2D-9BD1-6779CDAD9888} - System32\Tasks\Opera scheduled Autoupdate 1391416707 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)

Task: {676F7C5F-3D81-4DDD-9F4E-A724769B9259} - System32\Tasks\Digital Dynamic\Advanced Backup Manager\Autorun_User_manfred => C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupmanager64.exe [2015-07-27] (Digital Dynamic)

Task: {6A8C1FE2-F109-4B78-95B7-9A055537E332} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

Task: {6CDC3AB2-9443-46A7-A4F2-F1B6BBD06324} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

Task: {7D988C4E-94CE-4887-9D81-B86D4C2CFDB5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-12] (Adobe Systems Incorporated)

Task: {83B11F30-6C2F-4D27-9B27-356AA6F8E278} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG

Task: {89E20869-7AD2-47F9-9C4B-5728BD778888} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG

Task: {8A7EB11C-3ECF-413D-8BFF-F0029D7BC401} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {93735FBF-F1DF-436B-A39D-B2EF7E1ED90E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG

Task: {9DFBD2CF-8E77-48BD-91B0-6CF4181BBB12} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-23] (Microsoft Corporation)

Task: {C1FB55A0-B06D-41C7-9AC5-DD31B3EFD5E2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {C4745A77-803D-4231-9DE8-12C52832C836} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG

Task: {D14A1164-9529-437D-8A96-66FF9BDE97E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-12-03] (HP Inc.)

Task: {D4CE1FC5-0E7D-4FEC-AB7A-F953D551CFE6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-12-03] (HP Inc.)

Task: {DDA135CB-E2C8-4370-A3C9-FD2BFC223E82} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG

Task: {E352FC0A-EDB0-4B0B-A8F2-AC595BCE434D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2015-06-16] (Safer-Networking Ltd.)

Task: {F6B9EC5F-C8BD-4559-B313-12F94F72302B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-09] (Adobe Systems Incorporated)

Task: {FA3B5A74-7EBB-42CC-982E-299DE1057018} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG

Task: {FB5EA4D6-7F7C-4A5E-9B51-F434E61341C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core.job => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA.job => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\HPCeeScheduleFormanfred.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 

==================== Verknüpfungen =============================
 

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
 

ShortcutWithArgument: C:\Users\manfred\Desktop\Skat-Online Spieleinsicht.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/spieleinsicht/spieleinsicht.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\471d08f4-74df26ed"

ShortcutWithArgument: C:\Users\manfred\Desktop\Skat-Online V11.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/skat/skat.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\19335f62-12246796"

ShortcutWithArgument: C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online\Skat-Online Spieleinsicht.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/spieleinsicht/spieleinsicht.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\471d08f4-74df26ed"

ShortcutWithArgument: C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online\Skat-Online V11.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/skat/skat.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\19335f62-12246796"
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
 

2015-02-03 18:28 - 2015-07-27 09:26 - 01404928 _____ () C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe

2013-11-20 08:39 - 2013-11-20 08:39 - 00045568 _____ () C:\Program Files\Genie9\Genie Timeline\GSLogging.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00332800 _____ () C:\Program Files\Genie9\Genie Timeline\OnlineHandler.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00491520 _____ () C:\Program Files\Genie9\Genie Timeline\GSIndexDB.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00087040 _____ () C:\Program Files\Genie9\Genie Timeline\QueueManager.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00722944 _____ () C:\Program Files\Genie9\Genie Timeline\GSBackupManager.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00371200 _____ () C:\Program Files\Genie9\Genie Timeline\GSWatcher4.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00211968 _____ () C:\Program Files\Genie9\Genie Timeline\Settings.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00058368 _____ () C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00740864 _____ () C:\Program Files\Genie9\Genie Timeline\sqlite3.dll

2012-04-24 10:29 - 2012-04-24 10:29 - 00011264 _____ () C:\Program Files\Genie9\Genie Timeline\RWLock.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00089600 ____N () C:\Program Files\Genie9\Genie Timeline\GSEncryption.dll

2013-02-11 12:34 - 2013-02-11 12:34 - 00045056 _____ () C:\Program Files\Genie9\Genie Timeline\pcre.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00054784 ____N () C:\Program Files\Genie9\Genie Timeline\GSLogManager.dll

2013-02-11 12:34 - 2013-02-11 12:34 - 00097792 _____ () C:\Program Files\Genie9\Genie Timeline\pcrebase.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00010752 _____ () C:\Program Files\Genie9\Genie Timeline\VSSEngine_Proxy.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00031232 _____ () C:\Program Files\Genie9\Genie Timeline\VSSEngine_W2K3.dll

2015-12-09 17:55 - 2015-12-09 17:55 - 00712432 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe

2015-12-09 17:58 - 2015-12-09 17:58 - 00057096 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_date_time-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00123656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_filesystem-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00025856 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_system-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 11671800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareServiceKernel.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 03549904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\RCF.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00911616 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_regex-vc120-mt-1_57.dll

2015-12-09 17:59 - 2015-12-09 17:59 - 00107776 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_thread-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00035072 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_chrono-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00709360 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareActivation.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00476928 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareApplicationUpdater.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00847600 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareGamingMode.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00101096 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareReset.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00123104 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTime.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01030912 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareDefinitionsUpdater.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00905488 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareDefinitionsUpdaterScheduler.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01146608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareIgnoreList.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00243440 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareQuarantine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01571584 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiMalwareEngine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00206080 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiRootkitEngine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01210616 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareScannerHistory.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01373928 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareScanner.dll

2015-12-09 17:59 - 2015-12-09 17:59 - 00036096 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_timer-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01019640 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareScannerScheduler.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01190656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareRealTimeProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02489592 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareIncompatibles.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01468136 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiSpam.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01416944 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiPhishing.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 03263736 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareParentalControl.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02995960 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareWebProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01325816 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareEmailProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00059656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_iostreams-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01856768 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareNetworkProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01013992 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwarePromo.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00365288 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareFeedback.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02958592 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareThreatWorkAlliance.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01261800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwarePinCode.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01014504 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareNotice.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01542896 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAvcEngine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01222416 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareRealTimeProtectionHistory.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00475888 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareStatistics.dll

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

2014-05-11 14:58 - 2013-12-29 11:18 - 00163328 _____ () C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00045568 _____ () C:\Program Files\Genie9\Genie Timeline\GSLogging.gtl

2014-05-11 14:58 - 2013-12-29 11:18 - 00211968 _____ () C:\Program Files\Genie9\Genie Timeline\Settings.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00089600 _____ () C:\Program Files\Genie9\Genie Timeline\GSEncryption.gtl

2015-12-18 06:54 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll

2015-12-18 06:54 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll

2015-12-18 06:54 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll

2015-12-18 06:54 - 2015-12-07 04:34 - 00936448 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll

2015-12-18 06:54 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll

2015-12-18 06:54 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 09574112 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe

2015-12-09 17:58 - 2015-12-09 17:58 - 00492288 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_locale-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02266344 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\HtmlFramework.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00868600 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTrayDefaultSkin.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00063488 _____ () C:\Program Files\Genie9\Genie Timeline\XBalloonMsgDll.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00093696 _____ () C:\Program Files\Genie9\Genie Timeline\GSCurl.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

2015-11-28 11:14 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl

2015-11-28 11:14 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl

2015-11-28 11:14 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl

2015-11-28 11:14 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll

2014-04-22 11:55 - 2014-04-22 11:55 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

2013-08-06 23:17 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll

2012-06-08 11:34 - 2012-06-08 11:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll

2015-11-28 08:56 - 2015-11-28 08:56 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll

2015-11-28 08:56 - 2015-11-28 08:56 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
 
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 
 

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
 
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 
 

==================== Hosts Inhalt: ===============================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 

==================== Andere Bereiche ============================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-500\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg

DNS Servers: 192.168.2.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKLM\...\StartupApproved\Run32: => "ApnTBMon"

HKLM\...\StartupApproved\Run32: => "LCWB"

HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "Facebook Update"
 

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [{65D3658B-6117-4F10-A676-3F93FA8C97A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{0DAA1B27-A506-45BC-906D-5E66889E659F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{ACF26DBB-DFFA-4A9C-919A-398D914B0040}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{E263FF4A-8465-46AB-982F-01F4A1920E00}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [UDP Query User{10B7196B-35F5-47CE-88BB-12A1CD91F7FA}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe

FirewallRules: [TCP Query User{FEB8AA7B-5BDE-4A63-9AC7-0198F001295A}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe

FirewallRules: [UDP Query User{61F408FF-5319-492F-AED6-5C4F3ACA2AD5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{83748F67-6459-4B63-BC2E-BBC450B493B0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{46D49DC6-A74F-4986-A516-1632AAE1D7E2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{0DB06E01-B076-4426-A763-CC07A0FB1C8F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{F783AD06-30E6-4CCF-BB4D-21508DB0B7C7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll

FirewallRules: [{9A75D8A9-CB3E-4425-8E7F-A3ABF96001A4}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll

FirewallRules: [{8C3AE2D1-935F-4E3A-AF7D-DBC44613FD50}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll

FirewallRules: [{4B7A1108-5574-4A53-B4DB-91FAFC6B8CB3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll

FirewallRules: [{1C10547E-F60E-445E-BE03-A6B34844FE5F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll

FirewallRules: [{8865975A-8597-4F09-9140-EBFC87ACB048}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll

FirewallRules: [{9CF396AB-D4C2-43B5-A05C-A0593272AB3C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll

FirewallRules: [{F2E941AF-CA81-485F-A2B4-181F01167EC7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll

FirewallRules: [{5C4D7D30-5671-4790-BA07-8825DF5E9A4C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll

FirewallRules: [{F4D05991-1209-4837-AD60-F17AA4EC9DC7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll

FirewallRules: [{32E50031-9CC2-4466-966C-0A4BD1A99207}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll

FirewallRules: [{34F0872A-F1D1-45A5-BD9B-50F27C2E643A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll

FirewallRules: [{DFAC0B38-59BC-499B-B5A8-2146EB0AFAE3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe

FirewallRules: [{D8BA68CE-0B53-4B90-B251-BAA23E58959B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe

FirewallRules: [{C0F73AE9-ECC1-4D4D-B7A2-4CE812A3FF00}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

FirewallRules: [{BE4538D6-00FE-4FB8-B18F-2E5378047391}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

FirewallRules: [{E287B7AD-E643-46E1-8A75-C925ACADF377}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

FirewallRules: [{D799B450-7215-441B-88EC-D5283938098A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

FirewallRules: [{3A7FCDA7-ADF0-4961-8D34-7156ECD164A1}] => (Allow) C:\Users\manfred\AppData\Local\Temp\7zS7106\hppiw.exe

FirewallRules: [{FC2CB826-3222-40C9-B6DC-9CC643F33D60}] => (Allow) C:\Users\manfred\AppData\Local\Temp\7zS7106\hppiw.exe

FirewallRules: [{02D56B43-7E74-4F54-A1B7-93E96C14573A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{02C7ACC7-5C07-4BDA-B559-FEE4F7D3A98D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{678EEC58-3FEA-4461-8409-D999F6950554}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{774228F2-55CC-4522-ABD6-2FCAA5158FC5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{170699B1-7B1D-4E48-B515-AA3DAB7AE999}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE

FirewallRules: [{D177C31F-FDFF-4376-91D7-8C3C09A91944}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe

FirewallRules: [{2C08975B-3F3E-4DE1-881D-AA7FF4CDDC80}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{1A7C3E9A-1E2D-4955-881A-EBB1E0D47727}] => (Allow) LPort=2869

FirewallRules: [{CB359BCB-E9E1-4CAF-A147-3C77126883DF}] => (Allow) LPort=1900

FirewallRules: [{76EB09D9-90CD-4460-9EF0-377F4EA3F547}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

FirewallRules: [{023D1B7F-9D6A-473F-B8D5-5CC74571F4AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [{14D47AFE-674F-4A8A-B883-142938611569}] => (Allow) LPort=53000

FirewallRules: [{A064A7E0-2011-45FD-93CF-113F5024F09C}] => (Allow) LPort=52000

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
 

==================== Wiederherstellungspunkte =========================
 

24-12-2015 12:09:44 Removed Safari
 

==================== Fehlerhafte Geräte im Gerätemanager =============
 
 

==================== Fehlereinträge in der Ereignisanzeige: =========================
 

Applikationsfehler:

==================

Error: (12/24/2015 10:53:38 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Name der fehlerhaften Anwendung: SDScan.exe, Version: 2.5.42.181, Zeitstempel: 0x535a5179

Name des fehlerhaften Moduls: SDScanLibrary.dll_unloaded, Version: 2.5.42.131, Zeitstempel: 0x535a510a

Ausnahmecode: 0xc0000005

Fehleroffset: 0x000220e0

ID des fehlerhaften Prozesses: 0x21b4

Startzeit der fehlerhaften Anwendung: 0xSDScan.exe0

Pfad der fehlerhaften Anwendung: SDScan.exe1

Pfad des fehlerhaften Moduls: SDScan.exe2

Berichtskennung: SDScan.exe3

Vollständiger Name des fehlerhaften Pakets: SDScan.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SDScan.exe5
 

Error: (12/24/2015 08:26:22 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 

Error: (12/24/2015 12:09:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/23/2015 02:21:54 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 

Error: (12/22/2015 11:20:45 AM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 

Error: (12/22/2015 10:51:11 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/22/2015 10:49:27 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/21/2015 11:59:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/21/2015 11:59:04 PM) (Source: VSS) (EventID: 8194) (User: )

Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert

.

Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
 
 

Vorgang:

   Generatordaten werden gesammelt
 

Kontext:

   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}

   Generatorname: System Writer

   Generatorinstanz-ID: {543600d0-8cb7-497c-bee2-6ee64652d9f9}
 

Error: (12/21/2015 11:49:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MANNIKR)

Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
 

Systemfehler:

=============

Error: (12/25/2015 05:25:38 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst GenieTimelineService erreicht.
 

Error: (12/25/2015 05:24:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Benutzerdatenzugriff_24a81c1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/25/2015 05:24:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Benutzerdatenspeicher _24a81c1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/25/2015 05:24:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Kontaktdaten_24a81c1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/25/2015 05:24:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Synchronisierungshost_24a81c1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/25/2015 05:24:23 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)

Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (12/25/2015 01:07:49 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)

Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}
 

Error: (12/25/2015 08:50:01 AM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst MBAMScheduler erreicht.
 

Error: (12/25/2015 01:17:33 AM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)

Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Server-Anmeldeinformationen für TLS. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.
 

Error: (12/25/2015 01:17:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Benutzerdatenzugriff_22009" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
 
 

CodeIntegrity:

===================================

  Date: 2015-12-19 12:43:59.295

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-11 15:23:24.318

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-10 15:37:22.907

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-06 08:51:37.937

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-05 00:02:18.122

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-29 06:05:07.971

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 11:03:52.891

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 10:57:46.647

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 10:42:00.514

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
 

==================== Speicherinformationen =========================== 
 

Prozessor: Intel(R) Core(TM) i3-3220T CPU @ 2.80GHz

Prozentuale Nutzung des RAM: 40%

Installierter physikalischer RAM: 8062.65 MB

Verfügbarer physikalischer RAM: 4821.84 MB

Summe virtueller Speicher: 8462.65 MB

Verfügbarer virtueller Speicher: 5235.1 MB
 

==================== Laufwerke ================================
 

Drive c: (OS) (Fixed) (Total:920.27 GB) (Free:838.29 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

Drive d: (Recovery Image) (Fixed) (Total:8.98 GB) (Free:1.05 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

Drive e: () (Removable) (Total:14.9 GB) (Free:12.45 GB) FAT32
 

==================== MBR & Partitionstabelle ==================
 

========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: C513D62E)
 

Partition: GPT.
 

========================================================

Disk: 2 (Size: 14.9 GB) (Disk ID: 00000000)
 

Partition: GPT.
 

==================== Ende von Addition.txt ============================

Bitte deinstallieren:

Code:

AV: Ad-Aware Antivirus (Enabled - Up to date) {B0CC18C6-E527-6EE6-874C-9D19920E5619}

AS: Spybot - Search and Destroy

Schritt 1
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

http://deeprybka.trojaner-board.de/m...mbamlogo4a.png http://deeprybka.trojaner-board.de/m...mbamlogo4b.png

Anleitung
Starte Malwarebytes' Anti-Malware (MBAM).
Unter Einstellungen/ Erkennung und Schutz setze bitte einen Haken bei "Suche nach Rootkits".
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass Deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 3

http://filepony.de/icon/frst.png http://deeprybka.trojaner-board.de/b...e/frst/sn1.PNG

Bitte starte FRST erneut, markiere auch die checkbox http://deeprybka.trojaner-board.de/b...t/addition.pngund drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

Code:

# AdwCleaner v5.026 - Bericht erstellt am 25/12/2015 um 18:07:02

# Aktualisiert am 21/12/2015 von Xplode

# Datenbank : 2015-12-23.1 [Server]

# Betriebssystem : Windows 10 Home  (x64)

# Benutzername : manfred - MANNIKR

# Gestartet von : C:\Users\manfred\Downloads\AdwCleaner_5.026(1).exe

# Option : Löschen

# Unterstützung : hxxp://toolslib.net/forum
 

***** [ Dienste ] *****
 
 

***** [ Ordner ] *****
 

[-] Ordner Gelöscht : C:\Program Files (x86)\myfree codec

[-] Ordner Gelöscht : C:\ProgramData\SkatVereinsmeister

[-] Ordner Gelöscht : C:\Users\manfred\AppData\Local\YSearchUtil

[-] Ordner Gelöscht : C:\Users\manfred\AppData\Roaming\SecureSearch
 

***** [ Dateien ] *****
 

[-] Datei Gelöscht : C:\Users\manfred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk

[-] Datei Gelöscht : C:\Users\manfred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Startfenster.lnk

[-] Datei Gelöscht : C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk

[-] Datei Gelöscht : C:\Users\manfred\Favorites\Startfenster.lnk

[-] Datei Gelöscht : C:\Users\manfred\Favorites\Startfenster.lnk
 

***** [ DLLs ] *****
 
 

***** [ Verknüpfungen ] *****
 
 

***** [ Aufgabenplanung ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}

[-] Schlüssel Gelöscht : HKCU\Software\OCS

[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\adawarebp

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet

[-] Schlüssel Gelöscht : HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\OCS

[-] Schlüssel Gelöscht : HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\AppDataLow\Software\adawarebp

[-] Schlüssel Gelöscht : HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Myfree Codec

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89EA4F1B8FBCDEF47AE328E455E28AA0

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97ECFF59EE08D4F47BB1464DEC37DA87

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A8CB937199A57E748B6AC433DA453EE2

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4E78E12704AFCE408C7FBE501F1AA0A

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6A54B56C58C82a4688AFB93F42EA17B

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F0390A76D28822743A68D7F1AB22E6D0

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0A5AC497E6BBC8D45BE8AD6619DA8217

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4

[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF

[-] Schlüssel Gelöscht : HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snapdoc

[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\skat-the-royal-club.softonic.de

[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.de
 

***** [ Internetbrowser ] *****
 

[-] [C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\prefs.js] [Preference] Gelöscht : user_pref("keyword.URL", "hxxp://www.sm.de/?q=");

[-] [C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : npdicihegicnhaangkdmcgbjceoemeoo
 

*************************
 

:: "Tracing" Schlüssel gelöscht

:: Proxy Einstellungen zurückgesetzt

:: Winsock Einstellungen zurückgesetzt

:: Chrome Richtlinien gelöscht
 

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [9188 Bytes] ##########

Habe auch eben wieder mehrere Warnmeldungen erhalten.
und Screenshot gemacht, soll ich die auch irgendwie posten?
habe auch alles in Quar. verschoben.

Malwarebytes Anti-Malware
www.malwarebytes.org

Update, 25.12.2015 08:52, SYSTEM, MANNIKR, Scheduler, IP Database, 2015.12.21.1, 2015.12.25.1,
Update, 25.12.2015 08:52, SYSTEM, MANNIKR, Scheduler, Domain Database, 2015.12.24.1, 2015.12.25.1,
Update, 25.12.2015 08:52, SYSTEM, MANNIKR, Scheduler, Malware Database, 2015.12.24.7, 2015.12.25.3,
Protection, 25.12.2015 08:52, SYSTEM, MANNIKR, Protection, Refresh, Starting,
Protection, 25.12.2015 08:52, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping,
Protection, 25.12.2015 08:52, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped,
Protection, 25.12.2015 08:53, SYSTEM, MANNIKR, Protection, Refresh, Success,
Protection, 25.12.2015 08:53, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting,
Protection, 25.12.2015 08:53, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started,
Scan, 25.12.2015 09:37, SYSTEM, MANNIKR, Scheduler, Start: 25.12.2015 09:21, Dauer: 16 Min. 45 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen,
Update, 25.12.2015 15:12, SYSTEM, MANNIKR, Scheduler, Malware Database, 2015.12.25.3, 2015.12.25.4,
Protection, 25.12.2015 15:12, SYSTEM, MANNIKR, Protection, Refresh, Starting,
Protection, 25.12.2015 15:12, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping,
Protection, 25.12.2015 15:12, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped,
Protection, 25.12.2015 15:12, SYSTEM, MANNIKR, Protection, Refresh, Success,
Protection, 25.12.2015 15:13, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting,
Protection, 25.12.2015 15:13, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started,
Detection, 25.12.2015 17:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Domain, 209.197.3.13, cdn.reporo.net, 53813, Outbound, C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe,
Detection, 25.12.2015 17:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Domain, 209.197.3.13, cdn.reporo.net, 53813, Outbound, C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe,
Detection, 25.12.2015 17:17, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Domain, 209.197.3.13, cdn.reporo.net, 53815, Outbound, C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe,
Protection, 25.12.2015 17:59, SYSTEM, MANNIKR, Protection, Malware Protection, Starting,
Protection, 25.12.2015 17:59, SYSTEM, MANNIKR, Protection, Malware Protection, Started,
Protection, 25.12.2015 17:59, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting,
Protection, 25.12.2015 17:59, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started,
Scan, 25.12.2015 18:02, SYSTEM, MANNIKR, Scheduler, Start: 25.12.2015 17:59, Dauer: 3 Min. 47 Sek., Hyper-Suchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen,
Protection, 25.12.2015 18:09, SYSTEM, MANNIKR, Protection, Malware Protection, Starting,
Protection, 25.12.2015 18:09, SYSTEM, MANNIKR, Protection, Malware Protection, Started,
Protection, 25.12.2015 18:09, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting,
Protection, 25.12.2015 18:09, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started,
Scan, 25.12.2015 18:11, SYSTEM, MANNIKR, Scheduler, Start: 25.12.2015 18:09, Dauer: 1 Min. 39 Sek., Hyper-Suchlauf, Abgebrochen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen,
Scan, 25.12.2015 18:38, SYSTEM, MANNIKR, Manual, Start: 25.12.2015 18:12, Dauer: 26 Min. 16 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen,

(end)

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:25-12-2015

durchgeführt von manfred (Administrator) auf MANNIKR (25-12-2015 18:42:53)

Gestartet von C:\Users\manfred\Downloads

Geladene Profile: manfred &  (Verfügbare Profile: manfred & Administrator)

Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe

() C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe

(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimeLineAgent.exe

(Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation) C:\Windows\System32\igfxHK.exe

(Intel Corporation) C:\Windows\System32\igfxTray.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe

(Farbar) C:\Users\manfred\Downloads\FRST64(5).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [] => [X]

HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe [9574112 2015-12-09] ()

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)

HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)

HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [803200 2015-12-01] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)

HKLM-x32\...\Run: [LCWB] => C:\Program Files (x86)\LernenUndCo\LCWB.exe [3304448 2010-11-02] (GEKKO Software GmbH)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spybot-S&D Cleaning] => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Spybot-S&D Cleaning] => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [0GenieTimeLine-BackedUp] -> {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Excluded] -> {B77E8651-93B1-40CD-8ECF-6F33DAC805A0} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Folder] -> {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-NotBackedUp] -> {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Pending ] -> {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-BackedUp] -> {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Excluded] -> {B77E8651-93B1-40CD-8ECF-6F33DAC805A0} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Folder] -> {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-NotBackedUp] -> {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Pending ] -> {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-02-04]

ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)

BootExecute: autocheck autochk * sdnclean64.exe
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Tcpip\..\Interfaces\{ff587969-3200-4dd4-9438-7ba22d7f7e72}: [DhcpNameServer] 192.168.2.1
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/4

SearchScopes: HKLM -> DefaultScope {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = hxxp://www.sm.de/?q={searchTerms}

SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}

SearchScopes: HKLM -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = hxxp://www.sm.de/?q={searchTerms}

SearchScopes: HKLM -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt

SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}

SearchScopes: HKLM-x32 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-20] (Oracle Corporation)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-20] (Oracle Corporation)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
 

FireFox:

========

FF ProfilePath: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default

FF SearchEngineOrder.1: SuchMaschine

FF SelectedSearchEngine: SuchMaschine

FF Homepage: hxxp://www.klamm.de/

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-12] ()

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-12] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-22] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-22] (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF SearchPlugin: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\searchplugins\google-images.xml [2015-06-06]

FF SearchPlugin: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\searchplugins\google-maps.xml [2015-06-06]

FF Extension: Google Translator for Firefox - C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\extensions\translator@zoli.bod.xpi [2015-07-19]

FF Extension: Avira Browser Safety - C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\Extensions\abs@avira.com [2015-12-15]
 

Chrome: 

=======

CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/"

CHR Profile: C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Docs) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-28]

CHR Extension: (Google Drive) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-21]

CHR Extension: (YouTube) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-21]

CHR Extension: (Google-Suche) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-21]

CHR Extension: (Google Docs Offline) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-21]

CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-28]

CHR Extension: (Google Mail) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-28]

CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [948392 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)

S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1418560 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 backupsvc5; C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe [1404928 2015-07-27] () [Datei ist nicht signiert]

R2 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [678976 2013-12-29] (Genie9)

R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)

S2 HPRegistrationSvc; c:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [205216 2012-07-18] (Hewlett-Packard)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)

R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-04-22] (Intel Corporation)

R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe [712432 2015-12-09] ()

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-08-01] (Realtek Semiconductor)

R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)

R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-01] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-01] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-01] (Avira Operations GmbH & Co. KG)

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)

R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.99.0\gzflt.sys [155912 2015-12-09] (BitDefender LLC)

S3 hwusbdev; C:\Windows\system32\DRIVERS\ewusbdev.sys [113792 2009-06-22] (Huawei Technologies Co., Ltd.)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-25] (Malwarebytes)

R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-04-22] (Intel Corporation)

R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)

S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [452040 2015-12-09] (BitDefender S.R.L.)

S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)

S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-25 18:42 - 2015-12-25 18:42 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(5).exe

2015-12-25 18:40 - 2015-12-25 18:40 - 00003679 _____ C:\Users\manfred\Desktop\mbam.txt

2015-12-25 18:01 - 2015-12-25 18:01 - 01743360 _____ C:\Users\manfred\Downloads\AdwCleaner_5.026(1).exe

2015-12-25 17:58 - 2015-12-25 17:58 - 00000000 ___HD C:\OneDriveTemp

2015-12-25 17:56 - 2015-12-25 17:56 - 01743360 _____ C:\Users\manfred\Downloads\AdwCleaner_5.026.exe

2015-12-25 17:26 - 2015-12-25 17:26 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(4).exe

2015-12-25 16:57 - 2015-12-25 16:58 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(3).exe

2015-12-23 12:50 - 2015-12-24 08:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-12-21 13:52 - 2015-12-21 13:52 - 00080232 ____H C:\WINDOWS\SysWOW64\mlfcache.dat

2015-12-20 07:58 - 2015-12-20 07:58 - 00000000 ____D C:\WINDOWS\pss

2015-12-19 12:59 - 2015-12-24 20:40 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job

2015-12-18 06:54 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-12-18 06:54 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-12-18 06:54 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe

2015-12-18 06:54 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2015-12-18 06:54 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-12-18 06:54 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-12-18 06:54 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-12-18 06:54 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll

2015-12-18 06:54 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll

2015-12-18 06:54 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-12-18 06:54 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-12-18 06:54 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe

2015-12-18 06:54 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll

2015-12-18 06:54 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2015-12-18 06:54 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-12-18 06:54 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll

2015-12-18 06:54 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2015-12-18 06:54 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-12-18 06:54 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe

2015-12-18 06:54 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2015-12-18 06:54 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-12-18 06:54 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll

2015-12-18 06:54 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-12-18 06:54 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-12-18 06:54 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-12-18 06:54 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-12-18 06:54 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll

2015-12-18 06:54 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-12-18 06:54 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-12-18 06:54 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2015-12-18 06:54 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll

2015-12-18 06:54 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll

2015-12-18 06:54 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-12-18 06:54 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2015-12-18 06:54 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-12-18 06:54 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-12-18 06:54 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL

2015-12-18 06:54 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-12-18 06:54 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-12-18 06:54 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-12-18 06:54 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll

2015-12-18 06:54 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2015-12-18 06:54 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL

2015-12-18 06:54 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe

2015-12-18 06:54 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll

2015-12-17 17:31 - 2015-12-17 17:31 - 00273422 _____ C:\Users\manfred\Desktop\PrintAtHome_1403_1.pdf

2015-12-17 14:54 - 2015-12-17 14:54 - 00000000 ____D C:\Users\manfred\AppData\LocalLow\Temp

2015-12-17 08:14 - 2015-12-17 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft

2015-12-17 08:12 - 2015-12-17 08:12 - 00000000 ____D C:\Program Files\Common Files\Lavasoft

2015-12-17 08:10 - 2015-12-17 08:10 - 02012464 _____ C:\Users\manfred\Downloads\Adaware_Installer(6).exe

2015-12-16 15:19 - 2015-12-16 15:19 - 00037668 _____ C:\Users\manfred\Desktop\Auftrag-NTH-Webshop_1403.pdf

2015-12-13 21:30 - 2015-12-14 06:08 - 00000000 ___RD C:\Users\manfred\3D Objects

2015-12-09 11:04 - 2015-12-09 11:04 - 00452040 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\Trufos.sys

2015-12-09 10:20 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-12-09 10:20 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-12-09 10:20 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-12-09 10:20 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2015-12-09 10:20 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2015-12-09 10:20 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll

2015-12-09 10:20 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2015-12-09 10:20 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll

2015-12-09 10:20 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys

2015-12-09 10:20 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2015-12-09 10:20 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-12-09 10:20 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll

2015-12-09 10:20 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2015-12-09 10:20 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-12-09 10:20 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2015-12-09 10:20 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2015-12-09 10:20 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll

2015-12-09 10:20 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll

2015-12-09 10:20 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2015-12-09 10:20 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2015-12-09 10:20 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll

2015-12-09 10:20 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-12-09 10:20 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2015-12-09 10:20 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-12-09 10:20 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-12-09 10:20 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-12-09 10:20 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2015-12-06 13:27 - 2015-12-06 13:27 - 00428265 _____ C:\Users\manfred\Downloads\SammelanmeldungDSP.xlsx

2015-12-05 00:00 - 2015-12-05 00:00 - 00000000 ____D C:\WINDOWS\Minidump

2015-12-04 00:33 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2015-12-04 00:33 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll

2015-12-04 00:33 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll

2015-12-04 00:33 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys

2015-12-04 00:33 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll

2015-12-04 00:33 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll

2015-12-04 00:33 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-12-04 00:33 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2015-12-04 00:33 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll

2015-12-04 00:33 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll

2015-12-04 00:33 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2015-12-04 00:33 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2015-12-04 00:33 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2015-12-04 00:33 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2015-12-04 00:33 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll

2015-12-04 00:33 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll

2015-12-04 00:33 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll

2015-12-04 00:33 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys

2015-12-04 00:33 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe

2015-12-04 00:33 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2015-12-04 00:33 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll

2015-12-04 00:33 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2015-12-04 00:33 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2015-12-04 00:33 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll

2015-12-04 00:33 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll

2015-12-04 00:33 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2015-12-04 00:33 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll

2015-12-04 00:33 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2015-12-04 00:33 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll

2015-12-04 00:33 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll

2015-12-04 00:33 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2015-12-04 00:33 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-12-04 00:33 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll

2015-12-04 00:33 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll

2015-12-04 00:33 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll

2015-12-04 00:33 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll

2015-12-04 00:33 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2015-12-04 00:33 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-12-04 00:33 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-12-04 00:33 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll

2015-12-04 00:33 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-12-04 00:33 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll

2015-12-04 00:33 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-12-04 00:33 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-12-04 00:33 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-12-02 11:29 - 2015-12-02 11:29 - 05028296 _____ (Adobe Systems Inc.) C:\Users\manfred\Downloads\Shockwave_Installer_Slim(1).exe

2015-12-01 14:02 - 2015-12-01 14:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2015-12-01 13:44 - 2015-12-01 13:44 - 02617344 _____ C:\Users\manfred\Downloads\msxml6_x64(1).msi

2015-12-01 06:16 - 2015-12-01 06:16 - 00016896 _____ C:\Users\manfred\Desktop\urlaubswünsche 2016.xls

2015-11-30 15:25 - 2015-11-30 15:25 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2015-11-30 13:16 - 2015-12-25 18:09 - 00002404 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk

2015-11-29 17:56 - 2015-11-29 17:56 - 23802157 _____ (Viktor Wedel Software Design ) C:\Users\manfred\Downloads\nlgenius_setup.exe

2015-11-29 16:10 - 2015-11-29 16:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-11-28 12:18 - 2015-11-28 13:23 - 00000000 ____D C:\Users\manfred\AppData\Local\MicrosoftEdge

2015-11-28 11:16 - 2015-12-13 19:52 - 00002434 _____ C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-11-28 11:14 - 2015-12-25 17:57 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2

2015-11-28 11:14 - 2015-12-25 17:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy

2015-11-28 11:14 - 2015-11-28 11:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking

2015-11-28 11:11 - 2015-11-28 11:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive

2015-11-28 11:08 - 2015-11-28 11:08 - 00000000 ____D C:\Users\manfred\AppData\Local\Publishers

2015-11-28 11:08 - 2015-11-28 11:08 - 00000000 ____D C:\Users\manfred\AppData\Local\ActiveSync

2015-11-28 11:07 - 2015-11-28 11:07 - 00000000 ____D C:\Users\manfred\AppData\Local\Comms

2015-11-28 11:06 - 2015-12-25 18:08 - 00000000 __SHD C:\Users\manfred\IntelGraphicsProfiles

2015-11-28 11:06 - 2015-11-30 12:16 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

2015-11-28 11:06 - 2015-11-28 11:06 - 00000020 ___SH C:\Users\manfred\ntuser.ini

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Vorlagen

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Startmenü

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 ____D C:\Users\manfred\AppData\Local\TileDataLayer

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 ____D C:\ProgramData\USOShared

2015-11-28 11:03 - 2015-12-25 18:08 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-11-28 10:52 - 2015-11-28 10:52 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\Documents\hp.applications.package.appdata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Genie9

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\Documents\hp.applications.package.appdata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Genie9

2015-11-28 10:49 - 2015-11-28 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autostart

2015-11-28 10:48 - 2015-11-28 10:48 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-11-28 10:47 - 2015-12-24 15:46 - 00000000 ____D C:\Users\manfred

2015-11-28 10:47 - 2015-12-05 00:02 - 00000000 ____D C:\Users\Administrator

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Vorlagen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Startmenü

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Netzwerkumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Lokale Einstellungen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Eigene Dateien

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Druckumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Videos

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Musik

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Bilder

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Local\Verlauf

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Local\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Vorlagen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Startmenü

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten

2015-11-28 10:46 - 2015-12-25 18:14 - 02003246 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-11-28 10:46 - 2015-11-28 10:46 - 01909068 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2015-11-28 10:44 - 2015-11-28 10:48 - 00000000 ____D C:\Program Files\Intel

2015-11-28 10:44 - 2015-11-28 10:44 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

2015-11-28 10:44 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2015-11-28 10:44 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\WINDOWS\system32\SRSLabs

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\Program Files\Realtek

2015-11-28 10:43 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-11-28 10:40 - 2015-12-10 15:36 - 00256784 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-11-28 10:39 - 2015-11-28 11:10 - 00000000 ___DC C:\WINDOWS\Panther

2015-11-28 10:37 - 2015-11-28 10:37 - 00000000 ____D C:\Windows.old

2015-11-28 10:36 - 2015-11-28 10:36 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2015-11-28 10:36 - 2015-11-28 10:36 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2015-11-28 10:36 - 2015-11-28 10:36 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2015-11-28 10:35 - 2015-11-28 10:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files\MSBuild

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\inetpub

2015-11-28 10:31 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-11-28 10:31 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-11-28 10:31 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-11-28 09:25 - 2015-12-05 00:00 - 00221367 ____N C:\WINDOWS\Minidump\120515-20328-01.dmp

2015-11-28 08:56 - 2015-11-28 09:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2015-11-26 20:17 - 2015-11-26 20:42 - 00020480 _____ C:\Users\manfred\Desktop\W-Feier Essen.xls
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-25 18:42 - 2014-10-14 11:58 - 00030940 _____ C:\Users\manfred\Downloads\FRST.txt

2015-12-25 18:42 - 2014-10-14 11:58 - 00000000 ____D C:\FRST

2015-12-25 18:25 - 2013-11-21 11:56 - 00000952 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA.job

2015-12-25 18:14 - 2015-10-30 19:35 - 00852510 _____ C:\WINDOWS\system32\perfh007.dat

2015-12-25 18:14 - 2015-10-30 19:35 - 00187736 _____ C:\WINDOWS\system32\perfc007.dat

2015-12-25 18:14 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF

2015-12-25 18:12 - 2014-04-10 16:02 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-12-25 18:09 - 2014-04-21 11:39 - 00000000 __RDO C:\Users\manfred\OneDrive

2015-12-25 18:07 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI

2015-12-25 18:07 - 2013-11-14 15:27 - 00000000 ____D C:\AdwCleaner

2015-12-25 18:00 - 2013-11-24 12:39 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-12-25 17:55 - 2013-12-21 14:29 - 00012659 _____ C:\WINDOWS\wininit.ini

2015-12-25 17:35 - 2014-10-14 11:59 - 00072794 _____ C:\Users\manfred\Downloads\Addition.txt

2015-12-25 17:33 - 2015-10-30 07:28 - 00000000 ____D C:\Windows

2015-12-25 16:31 - 2013-12-31 09:12 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{00B4722C-7113-4323-8329-460E0E599ADF}

2015-12-25 15:29 - 2013-12-24 22:15 - 00000000 ____D C:\Users\manfred\AppData\Local\PokerStars.EU

2015-12-25 09:25 - 2013-11-21 11:56 - 00000930 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core.job

2015-12-25 08:53 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-12-24 14:18 - 2013-12-24 22:15 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU

2015-12-24 13:20 - 2013-12-19 18:54 - 00000000 ____D C:\Users\manfred\AppData\Local\ElevatedDiagnostics

2015-12-24 08:44 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps

2015-12-24 08:32 - 2013-11-21 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr

2015-12-19 12:39 - 2015-11-10 16:42 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job

2015-12-18 10:49 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-12-17 11:02 - 2015-06-11 10:00 - 00028970 _____ C:\Users\manfred\Desktop\Platz.htm

2015-12-17 10:59 - 2015-06-11 10:00 - 00035882 _____ C:\Users\manfred\Desktop\Spielpunkte.htm

2015-12-17 09:08 - 2013-11-25 13:03 - 00000000 ____D C:\Users\manfred\AppData\Roaming\vlc

2015-12-17 00:28 - 2014-02-06 13:14 - 00002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-12-12 16:43 - 2014-08-19 16:23 - 00000000 ____D C:\Users\manfred\AppData\Local\Adobe

2015-12-11 15:26 - 2013-11-21 10:57 - 00000000 ____D C:\Users\manfred\AppData\Local\Packages

2015-12-10 18:56 - 2013-11-29 22:06 - 00003256 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleFormanfred

2015-12-10 18:56 - 2013-11-29 22:06 - 00000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleFormanfred.job

2015-12-10 17:50 - 2014-02-06 13:14 - 00000000 ____D C:\Users\manfred\AppData\Local\Google

2015-12-10 15:44 - 2014-06-30 20:09 - 00003976 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1391416707

2015-12-10 15:44 - 2014-02-03 09:38 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

2015-12-10 15:44 - 2014-02-03 09:38 - 00000000 ____D C:\Program Files (x86)\Opera

2015-12-10 15:35 - 2013-12-22 08:22 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-12-10 15:35 - 2013-12-22 08:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-12-09 22:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-12-09 13:00 - 2015-11-10 16:42 - 00004086 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier

2015-12-09 12:00 - 2013-11-24 12:39 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-12-09 10:32 - 2013-12-22 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-12-09 10:31 - 2013-11-22 15:00 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-12-06 18:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache

2015-12-05 10:03 - 2014-06-30 20:08 - 00000000 ____D C:\Users\manfred\AppData\Roaming\DVDVideoSoft

2015-12-04 23:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-12-03 00:34 - 2014-06-30 20:04 - 00000000 ____D C:\Users\manfred\Downloads\youtube downloader

2015-12-03 00:33 - 2014-07-27 12:34 - 00000000 ____D C:\Users\manfred\Downloads\youtube laden

2015-12-02 09:23 - 2014-02-06 13:14 - 00004192 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-12-02 09:23 - 2014-02-06 13:14 - 00003960 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-12-02 09:23 - 2014-02-06 13:14 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-12-02 09:23 - 2014-02-06 13:14 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-12-01 14:03 - 2014-12-06 22:22 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP

2015-12-01 14:02 - 2015-05-05 12:45 - 00002081 _____ C:\Users\Public\Desktop\Avira Antivirus.lnk

2015-12-01 14:02 - 2013-11-21 11:10 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2015-12-01 14:02 - 2013-11-21 11:10 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2015-12-01 14:02 - 2013-11-21 11:10 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2015-12-01 14:02 - 2013-11-21 11:10 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2015-11-29 17:57 - 2013-11-28 10:26 - 00001114 _____ C:\Users\Public\Desktop\Newsletter Genius.lnk

2015-11-29 17:57 - 2013-11-28 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newsletter Genius

2015-11-29 17:57 - 2013-11-28 10:26 - 00000000 ____D C:\Program Files (x86)\Newsletter Genius

2015-11-29 06:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat

2015-11-28 20:18 - 2015-11-19 12:43 - 00056832 _____ C:\Users\manfred\Desktop\kalender 2016 mit Arbeit.19.11.15.xls

2015-11-28 18:19 - 2015-04-22 06:12 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-11-28 13:21 - 2014-12-06 22:22 - 00001230 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk

2015-11-28 13:21 - 2014-12-06 22:22 - 00001180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk

2015-11-28 11:25 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow

2015-11-28 11:08 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-11-28 11:08 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-11-28 11:07 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-11-28 11:07 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT

2015-11-28 11:06 - 2013-09-26 16:50 - 00000000 __RHD C:\Users\Public\AccountPictures

2015-11-28 11:05 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-11-28 11:05 - 2014-04-21 11:20 - 00047628 _____ C:\WINDOWS\diagwrn.xml

2015-11-28 11:05 - 2014-04-21 11:20 - 00047628 _____ C:\WINDOWS\diagerr.xml

2015-11-28 11:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration

2015-11-28 11:03 - 2014-12-26 09:03 - 00002764 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-11-28 11:03 - 2014-04-21 11:32 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-11-28 11:03 - 2013-11-23 07:41 - 00002318 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask

2015-11-28 11:03 - 2013-11-21 11:56 - 00003388 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA

2015-11-28 11:03 - 2013-11-21 11:56 - 00003146 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core

2015-11-28 11:03 - 2013-11-21 11:07 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3207775961-1083249041-1324932386-1001

2015-11-28 11:00 - 2015-10-30 08:24 - 00000000 __RSD C:\WINDOWS\Media

2015-11-28 11:00 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries

2015-11-28 10:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\ModemLogs

2015-11-28 10:54 - 2015-07-15 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom

2015-11-28 10:54 - 2015-05-21 18:54 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lernen & Co

2015-11-28 10:54 - 2015-03-20 08:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bild.me Upload-Tool

2015-11-28 10:54 - 2014-09-25 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Partner

2015-11-28 10:54 - 2014-07-17 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-11-28 10:54 - 2014-05-11 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genie9

2015-11-28 10:54 - 2014-05-09 09:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Any To GIF

2015-11-28 10:54 - 2014-04-22 10:40 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D&D Code

2015-11-28 10:54 - 2014-04-10 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-11-28 10:54 - 2014-02-06 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-11-28 10:54 - 2014-02-02 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular

2015-11-28 10:54 - 2013-12-24 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.EU

2015-11-28 10:54 - 2013-11-27 08:20 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online

2015-11-28 10:54 - 2013-11-25 16:42 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-11-28 10:54 - 2013-11-25 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-11-28 10:54 - 2013-11-25 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-11-28 10:54 - 2013-11-25 12:37 - 00000000 ____D C:\WINDOWS\de

2015-11-28 10:54 - 2013-11-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP250 series

2015-11-28 10:54 - 2013-11-21 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works

2015-11-28 10:54 - 2013-11-21 12:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2015-11-28 10:54 - 2013-08-06 23:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools

2015-11-28 10:54 - 2013-08-06 23:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos

2015-11-28 10:54 - 2013-08-06 23:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support

2015-11-28 10:54 - 2013-08-06 23:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-11-28 10:54 - 2012-07-26 10:43 - 00000000 ____D C:\WINDOWS\en-GB

2015-11-28 10:52 - 2013-08-22 14:36 - 00000000 ____D C:\Users\Default.migrated

2015-11-28 10:50 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB

2015-11-28 10:50 - 2015-04-14 20:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe

2015-11-28 10:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-11-28 10:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-11-28 10:49 - 2015-10-30 19:44 - 00000000 ____D C:\WINDOWS\ShellNew

2015-11-28 10:49 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Cursors

2015-11-28 10:49 - 2014-09-02 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo

2015-11-28 10:49 - 2014-02-03 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam

2015-11-28 10:49 - 2013-11-26 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-11-28 10:49 - 2013-11-21 12:24 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information

2015-11-28 10:49 - 2013-11-21 10:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services

2015-11-28 10:49 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer

2015-11-28 10:49 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS

2015-11-28 10:49 - 2013-08-06 23:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection

2015-11-28 10:49 - 2012-08-01 18:06 - 00000000 ____D C:\ProgramData\PRICache

2015-11-28 10:48 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-11-28 10:48 - 2015-02-03 18:28 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:48 - 2013-11-22 07:49 - 00000000 ____D C:\Program Files\Lavasoft

2015-11-28 10:48 - 2013-11-21 12:06 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autostart

2015-11-28 10:47 - 2015-02-03 18:28 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:47 - 2012-08-01 18:06 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages

2015-11-28 10:46 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-11-28 10:41 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles

2015-11-28 10:39 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-11-28 10:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-11-28 10:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv

2015-11-28 10:31 - 2015-10-30 08:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe

2015-11-28 10:31 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe

2015-11-28 10:31 - 2015-10-30 08:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll

2015-11-28 10:19 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2015-01-07 14:10 - 2015-01-07 14:10 - 0003584 _____ () C:\Users\manfred\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2013-11-21 10:58 - 2013-11-21 10:58 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
 

Einige Dateien in TEMP:

====================

C:\Users\manfred\AppData\Local\Temp\avgnt.exe

C:\Users\manfred\AppData\Local\Temp\sqlite3.dll
 
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert

C:\WINDOWS\explorer.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert

C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert

C:\WINDOWS\system32\services.exe => Datei ist digital signiert

C:\WINDOWS\system32\User32.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert

C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert

C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-12-24 10:06
 

==================== Ende von FRST.txt ============================

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:25-12-2015

durchgeführt von manfred (2015-12-25 18:43:57)

Gestartet von C:\Users\manfred\Downloads

Windows 10 Home (X64) (2015-11-28 10:06:45)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-3207775961-1083249041-1324932386-500 - Administrator - Disabled) => C:\Users\Administrator

DefaultAccount (S-1-5-21-3207775961-1083249041-1324932386-503 - Limited - Disabled)

Gast (S-1-5-21-3207775961-1083249041-1324932386-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3207775961-1083249041-1324932386-1007 - Limited - Enabled)

manfred (S-1-5-21-3207775961-1083249041-1324932386-1001 - Administrator - Enabled) => C:\Users\manfred
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Ad-Aware Antivirus (Enabled - Up to date) {B0CC18C6-E527-6EE6-874C-9D19920E5619}

AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}

AS: Ad-Aware Antivirus (Enabled - Up to date) {0BADF922-C31D-6168-BDFC-A66BE9891CA4}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Ad-Aware Firewall (Disabled) {88F799E3-AF48-6FBE-AC13-342C6CDD1162}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

Ad-Aware Antivirus (HKLM\...\{9A711B34-77B5-4DDA-A97E-2FD6663729E1}_AdAwareUpdater) (Version: 11.9.696.8769 - Lavasoft)

AdAwareInstaller (Version: 11.9.696.8769 - Lavasoft) Hidden

AdAwareUpdater (Version: 11.9.696.8769 - Lavasoft) Hidden

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)

Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)

Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)

Advanced Backup Manager 4.5.15200.931 (HKLM\...\Advanced Backup Manager) (Version: 4.5.15200.931 - Digital Dynamic)

AntimalwareEngine (Version: 3.0.99.0 - Lavasoft) Hidden

Any To GIF 1.0.2.0 (HKLM-x32\...\{D652BB57-423B-49D8-B6B1-73338FC553B3}_is1) (Version:  - zxt2007.com)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)

Avira (HKLM-x32\...\{9480d4af-12b9-4e56-8034-4031ef6ab39d}) (Version: 1.1.25.25607 - Avira Operations GmbH & Co. KG)

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)

Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.4.505 - Bandisoft.com)

Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)

Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version:  - )

Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version:  - )

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)

Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)

CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5510 - CyberLink Corp.)

CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)

CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)

CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.0.20140117 - Landesfinanzdirektion Thüringen)

Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)

Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

Genie Timeline (HKLM-x32\...\Genie Timeline) (Version: 5.0 - Genie9)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)

Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden

Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden

HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)

HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)

HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)

HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)

HP Support Solutions Framework (HKLM-x32\...\{69FD2930-C361-47F6-822E-71B021526778}) (Version: 11.50.0015 - Hewlett-Packard Company)

HPDetect (HKLM-x32\...\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP)

Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)

Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)

Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Kiebitz 2_is1) (Version:  - )

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Kiebitz 2_is1) (Version:  - )

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Kiebitz 2_is1) (Version:  - )

Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

Microsoft Office 97, Professional Edition (HKLM-x32\...\Office8.0) (Version:  - )

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)

Microsoft SkyDrive (HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)

Microsoft SkyDrive (HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Works (HKLM-x32\...\{B26E3B0D-C2FA-4370-B068-7C476766F029}) (Version: 08.04.0702 - Microsoft Corporation)

Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 11.302.09.02.511 - Huawei Technologies Co.,Ltd)

Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)

Mozilla Thunderbird 38.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.4.0 (x86 de)) (Version: 38.4.0 - Mozilla)

MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)

Newsletter Genius 3.4 (HKLM-x32\...\nlg50452535d052c9dd1f3341e2ff895cc3_is1) (Version:  - Viktor Wedel Software Design)

Opera Stable 34.0.2036.25 (HKLM-x32\...\Opera 34.0.2036.25) (Version: 34.0.2036.25 - Opera Software)

PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)

Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden

Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)

TomTom HOME (HKLM-x32\...\{0E09BE17-EDEA-42CA-8974-42A587F51510}) (Version: 2.9.8 - Ihr Firmenname)

TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Ihr Firmenname)

TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\manfred\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Keine Datei

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {111298C4-6593-40EA-B7A3-EDDE1AB0A0D6} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe

Task: {1112B3E5-00DC-4674-BC93-0E14AAC95879} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

Task: {1298FDDE-C804-4C74-94F2-B5CAC5CDD56E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: {1510D33D-4690-4BE4-A466-00A035A7BC08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {2767A97F-7498-449B-949D-1E360C4898FC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: {297D95A2-530C-4792-AB6E-B75F245F50F9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {39E2D0A9-CD06-495F-8174-174269F57466} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG

Task: {3DC4CA5B-1EC9-4B8D-8669-C5E0D1B7B8B9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG

Task: {471AF204-FCCD-4D29-9159-A43BA125A8C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG

Task: {4F02B28A-E4A7-4D21-863A-D00F2C4E9B5F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG

Task: {54071523-FB39-4926-993E-C48C365CCDD4} - System32\Tasks\HPCeeScheduleFormanfred => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)

Task: {56153579-C352-4A99-B0D8-22EB72D28A1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2015-11-30] (Hewlett-Packard)

Task: {569D0BC0-D0BD-41B0-8A1F-8E890B9DC660} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG

Task: {59E0C2DF-9726-4E2D-9BD1-6779CDAD9888} - System32\Tasks\Opera scheduled Autoupdate 1391416707 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)

Task: {676F7C5F-3D81-4DDD-9F4E-A724769B9259} - System32\Tasks\Digital Dynamic\Advanced Backup Manager\Autorun_User_manfred => C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupmanager64.exe [2015-07-27] (Digital Dynamic)

Task: {6A8C1FE2-F109-4B78-95B7-9A055537E332} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

Task: {6CDC3AB2-9443-46A7-A4F2-F1B6BBD06324} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

Task: {7D988C4E-94CE-4887-9D81-B86D4C2CFDB5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-12] (Adobe Systems Incorporated)

Task: {83B11F30-6C2F-4D27-9B27-356AA6F8E278} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG

Task: {89E20869-7AD2-47F9-9C4B-5728BD778888} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG

Task: {8A7EB11C-3ECF-413D-8BFF-F0029D7BC401} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {93735FBF-F1DF-436B-A39D-B2EF7E1ED90E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG

Task: {9DFBD2CF-8E77-48BD-91B0-6CF4181BBB12} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-23] (Microsoft Corporation)

Task: {C1FB55A0-B06D-41C7-9AC5-DD31B3EFD5E2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {C4745A77-803D-4231-9DE8-12C52832C836} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG

Task: {D14A1164-9529-437D-8A96-66FF9BDE97E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-12-03] (HP Inc.)

Task: {D4CE1FC5-0E7D-4FEC-AB7A-F953D551CFE6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-12-03] (HP Inc.)

Task: {DDA135CB-E2C8-4370-A3C9-FD2BFC223E82} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG

Task: {F6B9EC5F-C8BD-4559-B313-12F94F72302B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-09] (Adobe Systems Incorporated)

Task: {FA3B5A74-7EBB-42CC-982E-299DE1057018} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG

Task: {FB5EA4D6-7F7C-4A5E-9B51-F434E61341C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core.job => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA.job => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\HPCeeScheduleFormanfred.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 

==================== Verknüpfungen =============================
 

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
 

ShortcutWithArgument: C:\Users\manfred\Desktop\Skat-Online Spieleinsicht.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/spieleinsicht/spieleinsicht.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\471d08f4-74df26ed"

ShortcutWithArgument: C:\Users\manfred\Desktop\Skat-Online V11.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/skat/skat.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\19335f62-12246796"

ShortcutWithArgument: C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online\Skat-Online Spieleinsicht.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/spieleinsicht/spieleinsicht.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\471d08f4-74df26ed"

ShortcutWithArgument: C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online\Skat-Online V11.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/skat/skat.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\19335f62-12246796"
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
 

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll

2015-02-03 18:28 - 2015-07-27 09:26 - 01404928 _____ () C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe

2013-12-29 11:18 - 2013-12-29 11:18 - 00332800 _____ () C:\Program Files\Genie9\Genie Timeline\OnlineHandler.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00491520 _____ () C:\Program Files\Genie9\Genie Timeline\GSIndexDB.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00087040 _____ () C:\Program Files\Genie9\Genie Timeline\QueueManager.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00045568 _____ () C:\Program Files\Genie9\Genie Timeline\GSLogging.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00722944 _____ () C:\Program Files\Genie9\Genie Timeline\GSBackupManager.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00211968 _____ () C:\Program Files\Genie9\Genie Timeline\Settings.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00371200 _____ () C:\Program Files\Genie9\Genie Timeline\GSWatcher4.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00058368 _____ () C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00740864 _____ () C:\Program Files\Genie9\Genie Timeline\sqlite3.dll

2012-04-24 10:29 - 2012-04-24 10:29 - 00011264 _____ () C:\Program Files\Genie9\Genie Timeline\RWLock.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00089600 ____N () C:\Program Files\Genie9\Genie Timeline\GSEncryption.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00054784 ____N () C:\Program Files\Genie9\Genie Timeline\GSLogManager.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00010752 _____ () C:\Program Files\Genie9\Genie Timeline\VSSEngine_Proxy.dll

2013-02-11 12:34 - 2013-02-11 12:34 - 00045056 _____ () C:\Program Files\Genie9\Genie Timeline\pcre.dll

2013-02-11 12:34 - 2013-02-11 12:34 - 00097792 _____ () C:\Program Files\Genie9\Genie Timeline\pcrebase.dll

2015-12-09 17:55 - 2015-12-09 17:55 - 00712432 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe

2015-12-09 17:58 - 2015-12-09 17:58 - 00025856 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_system-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00057096 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_date_time-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00123656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_filesystem-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 11671800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareServiceKernel.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 03549904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\RCF.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00911616 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_regex-vc120-mt-1_57.dll

2015-12-09 17:59 - 2015-12-09 17:59 - 00107776 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_thread-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00035072 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_chrono-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00709360 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareActivation.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00476928 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareApplicationUpdater.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00847600 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareGamingMode.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00101096 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareReset.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00123104 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTime.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01030912 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareDefinitionsUpdater.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00905488 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareDefinitionsUpdaterScheduler.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01146608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareIgnoreList.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00243440 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareQuarantine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01571584 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiMalwareEngine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00206080 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiRootkitEngine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01210616 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareScannerHistory.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01373928 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareScanner.dll

2015-12-09 17:59 - 2015-12-09 17:59 - 00036096 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_timer-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01019640 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareScannerScheduler.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01190656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareRealTimeProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02489592 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareIncompatibles.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01468136 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiSpam.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01416944 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAntiPhishing.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 03263736 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareParentalControl.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02995960 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareWebProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01325816 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareEmailProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00059656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_iostreams-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01856768 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareNetworkProtection.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01013992 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwarePromo.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00365288 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareFeedback.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02958592 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareThreatWorkAlliance.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01261800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwarePinCode.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01014504 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareNotice.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01542896 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareAvcEngine.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 01222416 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareRealTimeProtectionHistory.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00475888 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareStatistics.dll

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

2014-05-11 14:58 - 2013-12-29 11:18 - 00163328 _____ () C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl

2014-05-11 14:58 - 2013-12-29 11:18 - 00211968 _____ () C:\Program Files\Genie9\Genie Timeline\Settings.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00045568 _____ () C:\Program Files\Genie9\Genie Timeline\GSLogging.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00089600 _____ () C:\Program Files\Genie9\Genie Timeline\GSEncryption.gtl

2015-12-18 06:54 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

2015-12-09 17:58 - 2015-12-09 17:58 - 09574112 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe

2015-12-09 17:58 - 2015-12-09 17:58 - 00492288 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\boost_locale-vc120-mt-1_57.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 02266344 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\HtmlFramework.dll

2015-12-09 17:58 - 2015-12-09 17:58 - 00868600 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTrayDefaultSkin.dll

2015-12-18 06:54 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll

2015-12-18 06:54 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll

2015-12-18 06:54 - 2015-12-07 04:34 - 00936448 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll

2015-12-18 06:54 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll

2015-12-18 06:54 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00529408 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll

2015-10-30 08:18 - 2015-10-30 19:44 - 00037888 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00796160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00961024 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00206336 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00558592 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00397824 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00181248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00093696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.security.cryptography\bin\NodeRT_Windows_Security_Cryptography.node

2015-10-30 08:18 - 2015-10-30 19:43 - 00200192 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.cortana.pal\bin\NodeRT_Windows_Cortana_PAL.node

2013-12-29 11:18 - 2013-12-29 11:18 - 00063488 _____ () C:\Program Files\Genie9\Genie Timeline\XBalloonMsgDll.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00093696 _____ () C:\Program Files\Genie9\Genie Timeline\GSCurl.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll

2014-05-11 14:58 - 2013-11-20 08:39 - 00038400 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSLogging.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00398336 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSIndexDB.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00615424 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSBackupManager.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00175104 _____ () C:\Program Files\Genie9\Genie Timeline\x86\Settings.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00080384 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSEncryption.gtl

2014-05-11 14:58 - 2012-02-02 10:16 - 00923136 _____ () C:\Program Files\Genie9\Genie Timeline\x86\sqlite3.gtl

2014-05-11 14:58 - 2012-04-24 10:29 - 00010752 _____ () C:\Program Files\Genie9\Genie Timeline\x86\RWLock.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00303104 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSWatcher4.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00282624 _____ () C:\Program Files\Genie9\Genie Timeline\x86\OnlineHandler.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00045056 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSLogManager.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00071168 _____ () C:\Program Files\Genie9\Genie Timeline\x86\QueueManager.gtl

2014-05-11 14:58 - 2012-02-02 10:16 - 00009728 _____ () C:\Program Files\Genie9\Genie Timeline\x86\VSSEngine_Proxy.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00043008 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSLibrariesManager.gtl

2013-02-11 12:35 - 2013-02-11 12:35 - 00038912 _____ () C:\Program Files\Genie9\Genie Timeline\x86\pcre.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00090112 _____ () C:\Program Files\Genie9\Genie Timeline\x86\pcrebase.dll

2013-08-06 23:17 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll

2012-06-08 11:34 - 2012-06-08 11:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll

2015-11-28 08:56 - 2015-11-28 08:56 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll

2015-11-28 08:56 - 2015-11-28 08:56 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

2014-04-22 11:55 - 2014-04-22 11:55 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
 
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 
 

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
 
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 
 

==================== Hosts Inhalt: ===============================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 

==================== Andere Bereiche ============================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg

DNS Servers: 192.168.2.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKLM\...\StartupApproved\Run32: => "ApnTBMon"

HKLM\...\StartupApproved\Run32: => "LCWB"

HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "Facebook Update"
 

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [{65D3658B-6117-4F10-A676-3F93FA8C97A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{0DAA1B27-A506-45BC-906D-5E66889E659F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{ACF26DBB-DFFA-4A9C-919A-398D914B0040}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{E263FF4A-8465-46AB-982F-01F4A1920E00}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [UDP Query User{10B7196B-35F5-47CE-88BB-12A1CD91F7FA}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe

FirewallRules: [TCP Query User{FEB8AA7B-5BDE-4A63-9AC7-0198F001295A}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe

FirewallRules: [UDP Query User{61F408FF-5319-492F-AED6-5C4F3ACA2AD5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{83748F67-6459-4B63-BC2E-BBC450B493B0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{46D49DC6-A74F-4986-A516-1632AAE1D7E2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{0DB06E01-B076-4426-A763-CC07A0FB1C8F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{F783AD06-30E6-4CCF-BB4D-21508DB0B7C7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll

FirewallRules: [{9A75D8A9-CB3E-4425-8E7F-A3ABF96001A4}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll

FirewallRules: [{8C3AE2D1-935F-4E3A-AF7D-DBC44613FD50}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll

FirewallRules: [{4B7A1108-5574-4A53-B4DB-91FAFC6B8CB3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll

FirewallRules: [{1C10547E-F60E-445E-BE03-A6B34844FE5F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll

FirewallRules: [{8865975A-8597-4F09-9140-EBFC87ACB048}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll

FirewallRules: [{9CF396AB-D4C2-43B5-A05C-A0593272AB3C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll

FirewallRules: [{F2E941AF-CA81-485F-A2B4-181F01167EC7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll

FirewallRules: [{5C4D7D30-5671-4790-BA07-8825DF5E9A4C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll

FirewallRules: [{F4D05991-1209-4837-AD60-F17AA4EC9DC7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll

FirewallRules: [{32E50031-9CC2-4466-966C-0A4BD1A99207}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll

FirewallRules: [{34F0872A-F1D1-45A5-BD9B-50F27C2E643A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll

FirewallRules: [{DFAC0B38-59BC-499B-B5A8-2146EB0AFAE3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe

FirewallRules: [{D8BA68CE-0B53-4B90-B251-BAA23E58959B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe

FirewallRules: [{C0F73AE9-ECC1-4D4D-B7A2-4CE812A3FF00}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

FirewallRules: [{BE4538D6-00FE-4FB8-B18F-2E5378047391}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

FirewallRules: [{E287B7AD-E643-46E1-8A75-C925ACADF377}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

FirewallRules: [{D799B450-7215-441B-88EC-D5283938098A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

FirewallRules: [{3A7FCDA7-ADF0-4961-8D34-7156ECD164A1}] => (Allow) C:\Users\manfred\AppData\Local\Temp\7zS7106\hppiw.exe

FirewallRules: [{FC2CB826-3222-40C9-B6DC-9CC643F33D60}] => (Allow) C:\Users\manfred\AppData\Local\Temp\7zS7106\hppiw.exe

FirewallRules: [{02D56B43-7E74-4F54-A1B7-93E96C14573A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{02C7ACC7-5C07-4BDA-B559-FEE4F7D3A98D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{678EEC58-3FEA-4461-8409-D999F6950554}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{774228F2-55CC-4522-ABD6-2FCAA5158FC5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{170699B1-7B1D-4E48-B515-AA3DAB7AE999}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE

FirewallRules: [{D177C31F-FDFF-4376-91D7-8C3C09A91944}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe

FirewallRules: [{2C08975B-3F3E-4DE1-881D-AA7FF4CDDC80}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{1A7C3E9A-1E2D-4955-881A-EBB1E0D47727}] => (Allow) LPort=2869

FirewallRules: [{CB359BCB-E9E1-4CAF-A147-3C77126883DF}] => (Allow) LPort=1900

FirewallRules: [{76EB09D9-90CD-4460-9EF0-377F4EA3F547}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

FirewallRules: [{023D1B7F-9D6A-473F-B8D5-5CC74571F4AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [{E1CBA8C3-286C-4750-954C-3E8649EBE321}] => (Allow) LPort=53000

FirewallRules: [{48A2054A-13B1-4C39-96CA-3AF7862F60D8}] => (Allow) LPort=52000
 

==================== Wiederherstellungspunkte =========================
 

24-12-2015 12:09:44 Removed Safari
 

==================== Fehlerhafte Geräte im Gerätemanager =============
 
 

==================== Fehlereinträge in der Ereignisanzeige: =========================
 

Applikationsfehler:

==================

Error: (12/24/2015 10:53:38 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Name der fehlerhaften Anwendung: SDScan.exe, Version: 2.5.42.181, Zeitstempel: 0x535a5179

Name des fehlerhaften Moduls: SDScanLibrary.dll_unloaded, Version: 2.5.42.131, Zeitstempel: 0x535a510a

Ausnahmecode: 0xc0000005

Fehleroffset: 0x000220e0

ID des fehlerhaften Prozesses: 0x21b4

Startzeit der fehlerhaften Anwendung: 0xSDScan.exe0

Pfad der fehlerhaften Anwendung: SDScan.exe1

Pfad des fehlerhaften Moduls: SDScan.exe2

Berichtskennung: SDScan.exe3

Vollständiger Name des fehlerhaften Pakets: SDScan.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SDScan.exe5
 

Error: (12/24/2015 08:26:22 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 

Error: (12/24/2015 12:09:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/23/2015 02:21:54 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 

Error: (12/22/2015 11:20:45 AM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 

Error: (12/22/2015 10:51:11 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/22/2015 10:49:27 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/21/2015 11:59:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/21/2015 11:59:04 PM) (Source: VSS) (EventID: 8194) (User: )

Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert

.

Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
 
 

Vorgang:

   Generatordaten werden gesammelt
 

Kontext:

   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}

   Generatorname: System Writer

   Generatorinstanz-ID: {543600d0-8cb7-497c-bee2-6ee64652d9f9}
 

Error: (12/21/2015 11:49:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MANNIKR)

Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
 

Systemfehler:

=============

Error: (12/25/2015 06:13:52 PM) (Source: DCOM) (EventID: 10016) (User: MANNIKR)

Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}mannikrmanfredS-1-5-21-3207775961-1083249041-1324932386-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742
 

Error: (12/25/2015 06:13:52 PM) (Source: DCOM) (EventID: 10016) (User: MANNIKR)

Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}mannikrmanfredS-1-5-21-3207775961-1083249041-1324932386-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742
 

Error: (12/25/2015 06:13:52 PM) (Source: DCOM) (EventID: 10016) (User: MANNIKR)

Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}mannikrmanfredS-1-5-21-3207775961-1083249041-1324932386-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742
 

Error: (12/25/2015 06:13:52 PM) (Source: DCOM) (EventID: 10016) (User: MANNIKR)

Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}mannikrmanfredS-1-5-21-3207775961-1083249041-1324932386-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742
 

Error: (12/25/2015 06:13:41 PM) (Source: DCOM) (EventID: 10016) (User: MANNIKR)

Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}mannikrmanfredS-1-5-21-3207775961-1083249041-1324932386-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742
 

Error: (12/25/2015 06:13:38 PM) (Source: DCOM) (EventID: 10016) (User: MANNIKR)

Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}mannikrmanfredS-1-5-21-3207775961-1083249041-1324932386-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742
 

Error: (12/25/2015 06:11:51 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)

Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Server-Anmeldeinformationen für TLS. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.
 

Error: (12/25/2015 06:11:45 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)

Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Server-Anmeldeinformationen für TLS. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.
 

Error: (12/25/2015 06:08:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst GenieTimelineService erreicht.
 

Error: (12/25/2015 06:08:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Der Dienst "HPRegistrationSvc" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%1053
 
 

CodeIntegrity:

===================================

  Date: 2015-12-19 12:43:59.295

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-11 15:23:24.318

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-10 15:37:22.907

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-06 08:51:37.937

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-05 00:02:18.122

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-29 06:05:07.971

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 11:03:52.891

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 10:57:46.647

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 10:42:00.514

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
 

==================== Speicherinformationen =========================== 
 

Prozessor: Intel(R) Core(TM) i3-3220T CPU @ 2.80GHz

Prozentuale Nutzung des RAM: 45%

Installierter physikalischer RAM: 8062.65 MB

Verfügbarer physikalischer RAM: 4381.27 MB

Summe virtueller Speicher: 8462.65 MB

Verfügbarer virtueller Speicher: 4343.16 MB
 

==================== Laufwerke ================================
 

Drive c: (OS) (Fixed) (Total:920.27 GB) (Free:838.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

Drive d: (Recovery Image) (Fixed) (Total:8.98 GB) (Free:1.05 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

Drive e: () (Removable) (Total:14.9 GB) (Free:12.45 GB) FAT32
 

==================== MBR & Partitionstabelle ==================
 

========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: C513D62E)
 

Partition: GPT.
 

========================================================

Disk: 1 (Size: 14.9 GB) (Disk ID: 00000000)
 

Partition: GPT.
 

==================== Ende von Addition.txt ============================

Da sind aber immer noch zwei Antivirusprogramme installiert...

MBAM-Suchlaufprotokoll bitte posten:

Malwarebytes Anti-Malware Logfile finden - Anleitungen

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 
 

Update, 26.12.2015 20:38, SYSTEM, MANNIKR, Scheduler, Rootkit Database, 2015.12.18.1, 2015.12.26.1, 

Update, 26.12.2015 20:38, SYSTEM, MANNIKR, Scheduler, Malware Database, 2015.12.25.5, 2015.12.26.4, 

Protection, 26.12.2015 20:38, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 26.12.2015 20:38, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 26.12.2015 20:38, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 26.12.2015 20:38, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 26.12.2015 20:38, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 26.12.2015 20:38, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 26.12.2015 20:59, SYSTEM, MANNIKR, Scheduler, Start: 26.12.2015 20:39, Dauer: 19 Min. 36 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Update, 26.12.2015 21:07, SYSTEM, MANNIKR, Scheduler, Domain Database, 2015.12.25.1, 2015.12.26.1, 

Protection, 26.12.2015 21:07, SYSTEM, MANNIKR, Protection, Refresh, Starting, 

Protection, 26.12.2015 21:07, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopping, 

Protection, 26.12.2015 21:07, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Stopped, 

Protection, 26.12.2015 21:07, SYSTEM, MANNIKR, Protection, Refresh, Success, 

Protection, 26.12.2015 21:07, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 26.12.2015 21:07, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Protection, 26.12.2015 21:12, SYSTEM, MANNIKR, Protection, Malware Protection, Starting, 

Protection, 26.12.2015 21:12, SYSTEM, MANNIKR, Protection, Malware Protection, Started, 

Protection, 26.12.2015 21:12, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 26.12.2015 21:12, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 26.12.2015 21:15, SYSTEM, MANNIKR, Scheduler, Start: 26.12.2015 21:12, Dauer: 3 Min. 51 Sek., Hyper-Suchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 

Protection, 26.12.2015 21:23, SYSTEM, MANNIKR, Protection, Malware Protection, Starting, 

Protection, 26.12.2015 21:23, SYSTEM, MANNIKR, Protection, Malware Protection, Started, 

Protection, 26.12.2015 21:23, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Starting, 

Protection, 26.12.2015 21:23, SYSTEM, MANNIKR, Protection, Malicious Website Protection, Started, 

Scan, 26.12.2015 21:40, SYSTEM, MANNIKR, Manual, Start: 26.12.2015 21:27, Dauer: 13 Min. 20 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, 
 

(end)

Das ist das Schutz-Protokoll. Gebraucht wird das Suchlauf-Protokoll.

Jetzt sollte es das richitge sein :-)
Soweit ich es sehe, ist hier alles OK, es kommen heir auch keine Fehlermeldungen.
Aber Avira meldet laufend wieder was

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 

Suchlaufdatum: 27.12.2015

Suchlaufzeit: 16:23

Protokolldatei: mbam.txt

Administrator: Ja
 

Version: 2.2.0.1024

Malware-Datenbank: v2015.12.27.03

Rootkit-Datenbank: v2015.12.26.01

Lizenz: Premium-Version

Malware-Schutz: Aktiviert

Schutz vor bösartigen Websites: Aktiviert

Selbstschutz: Deaktiviert
 

Betriebssystem: Windows 10

CPU: x64

Dateisystem: NTFS

Benutzer: manfred
 

Suchlauftyp: Bedrohungssuchlauf

Ergebnis: Abgeschlossen

Durchsuchte Objekte: 431636

Abgelaufene Zeit: 16 Min., 8 Sek.
 

Speicher: Aktiviert

Start: Aktiviert

Dateisystem: Aktiviert

Archive: Aktiviert

Rootkits: Aktiviert

Heuristik: Aktiviert

PUP: Aktiviert

PUM: Aktiviert
 

Prozesse: 0

(keine bösartigen Elemente erkannt)
 

Module: 0

(keine bösartigen Elemente erkannt)
 

Registrierungsschlüssel: 0

(keine bösartigen Elemente erkannt)
 

Registrierungswerte: 0

(keine bösartigen Elemente erkannt)
 

Registrierungsdaten: 0

(keine bösartigen Elemente erkannt)
 

Ordner: 0

(keine bösartigen Elemente erkannt)
 

Dateien: 0

(keine bösartigen Elemente erkannt)
 

Physische Sektoren: 0

(keine bösartigen Elemente erkannt)
 
 

(end)

Bitte mal frische Logs:

Schritt 1

http://filepony.de/icon/frst.png http://deeprybka.trojaner-board.de/b...e/frst/sn1.PNG

Bitte starte FRST erneut, markiere auch die checkbox http://deeprybka.trojaner-board.de/b...t/addition.pngund drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015

durchgeführt von manfred (Administrator) auf MANNIKR (27-12-2015 18:23:09)

Gestartet von C:\Users\manfred\Downloads

Geladene Profile: manfred &  (Verfügbare Profile: manfred & Administrator)

Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe

() C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe

(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe

(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimeLineAgent.exe

(Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation) C:\Windows\System32\igfxHK.exe

(Intel Corporation) C:\Windows\System32\igfxTray.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe

(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe

(Farbar) C:\Users\manfred\Downloads\FRST64(6).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)

HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)

HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)

HKLM-x32\...\Run: [LCWB] => C:\Program Files (x86)\LernenUndCo\LCWB.exe [3304448 2010-11-02] (GEKKO Software GmbH)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)

HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-12-08] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [803200 2015-12-03] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [Uninstall C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spybot-S&D Cleaning] => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [0GenieTimeLine-BackedUp] -> {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Excluded] -> {B77E8651-93B1-40CD-8ECF-6F33DAC805A0} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Folder] -> {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-NotBackedUp] -> {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers: [0GenieTimeLine-Pending ] -> {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-BackedUp] -> {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Excluded] -> {B77E8651-93B1-40CD-8ECF-6F33DAC805A0} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Folder] -> {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-NotBackedUp] -> {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

ShellIconOverlayIdentifiers-x32: [0GenieTimeLine-Pending ] -> {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824} => C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl [2013-12-29] ()

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-02-04]

ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)

BootExecute: autocheck autochk * sdnclean64.exe
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Tcpip\..\Interfaces\{ff587969-3200-4dd4-9438-7ba22d7f7e72}: [DhcpNameServer] 192.168.2.1
 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://convert2mp3.net/

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/CQDSK13/4

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/4

SearchScopes: HKLM -> DefaultScope {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = hxxp://www.sm.de/?q={searchTerms}

SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}

SearchScopes: HKLM -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = hxxp://www.sm.de/?q={searchTerms}

SearchScopes: HKLM -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt

SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}

SearchScopes: HKLM-x32 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {EB30D54D-DED7-4461-BCCD-58690A34DF3C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA0A5588-F9A4-4D6F-81DD-49E60099D5C3} URL = 

SearchScopes: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FA4E102D-4355-4CB0-A5EC-25326D99C11F} URL = 

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-20] (Oracle Corporation)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-20] (Oracle Corporation)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei

Toolbar: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
 

FireFox:

========

FF ProfilePath: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default

FF SearchEngineOrder.1: SuchMaschine

FF SelectedSearchEngine: SuchMaschine

FF Homepage: hxxp://www.klamm.de/

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-12] ()

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-12] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-22] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-22] (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF Plugin HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: hp.com/HPDetect -> C:\Users\manfred\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)

FF SearchPlugin: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\searchplugins\google-images.xml [2015-06-06]

FF SearchPlugin: C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\searchplugins\google-maps.xml [2015-06-06]

FF Extension: Google Translator for Firefox - C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\extensions\translator@zoli.bod.xpi [2015-07-19]

FF Extension: Avira Browser Safety - C:\Users\manfred\AppData\Roaming\Mozilla\Firefox\Profiles\9btfy9vr.default\Extensions\abs@avira.com [2015-12-15]
 

Chrome: 

=======

CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/"

CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default

CHR DefaultSearchKeyword: Default -> Yahoo

CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10

CHR Profile: C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Docs) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-28]

CHR Extension: (Google Drive) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-21]

CHR Extension: (YouTube) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-21]

CHR Extension: (Google-Suche) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-21]

CHR Extension: (Google Docs Offline) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-21]

CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-28]

CHR Extension: (Google Mail) - C:\Users\manfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-28]

CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2015-12-03] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2015-12-03] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2015-12-03] (Avira Operations GmbH & Co. KG)

S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1418560 2015-12-03] (Avira Operations GmbH & Co. KG)

R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.)

R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [251160 2015-12-08] (Avira Operations GmbH & Co. KG)

R2 backupsvc5; C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe [1382912 2015-12-25] () [Datei ist nicht signiert]

R2 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [678976 2013-12-29] (Genie9)

R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)

S2 HPRegistrationSvc; c:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [205216 2012-07-18] (Hewlett-Packard)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)

R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-04-22] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-08-01] (Realtek Semiconductor)

R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)

R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

S3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-03] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-03] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-03] (Avira Operations GmbH & Co. KG)

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)

S3 hwusbdev; C:\Windows\system32\DRIVERS\ewusbdev.sys [113792 2009-06-22] (Huawei Technologies Co., Ltd.)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-27] (Malwarebytes)

R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-04-22] (Intel Corporation)

R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)

S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)

S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-27 18:22 - 2015-12-27 18:22 - 00103802 _____ C:\Users\manfred\Desktop\FRST.txt

2015-12-27 18:21 - 2015-12-27 18:21 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(6).exe

2015-12-27 16:18 - 2015-12-27 16:18 - 00000000 ___HD C:\OneDriveTemp

2015-12-26 22:03 - 2015-12-26 22:03 - 00000000 ____D C:\Users\manfred\AppData\Roaming\AVG

2015-12-26 22:01 - 2015-12-26 22:01 - 00000000 ____D C:\Users\manfred\AppData\Roaming\TuneUp Software

2015-12-26 21:58 - 2015-12-27 16:17 - 00000000 ____D C:\ProgramData\MFAData

2015-12-26 21:58 - 2015-12-26 21:58 - 00000000 ____D C:\Users\manfred\AppData\Local\MFAData

2015-12-26 21:58 - 2015-12-26 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen

2015-12-26 21:57 - 2015-12-27 16:17 - 00000000 ____D C:\ProgramData\Avg

2015-12-26 21:57 - 2015-12-27 16:17 - 00000000 ____D C:\Program Files (x86)\AVG

2015-12-26 21:56 - 2015-12-27 16:17 - 00000000 ____D C:\Users\manfred\AppData\Local\Avg

2015-12-26 21:56 - 2015-12-27 05:29 - 00000000 ____D C:\Users\manfred\AppData\Local\AvgSetupLog

2015-12-26 21:56 - 2015-12-26 21:56 - 02970984 _____ (AVG Technologies CZ, s.r.o.) C:\Users\manfred\Downloads\AVG_Protection_Free_698.exe

2015-12-26 21:47 - 2015-12-26 21:47 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Avira

2015-12-26 21:46 - 2015-12-03 15:24 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2015-12-26 21:46 - 2015-12-03 15:24 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2015-12-26 21:46 - 2015-12-03 15:24 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2015-12-26 21:46 - 2015-12-03 15:24 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2015-12-26 21:45 - 2015-12-26 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2015-12-26 21:44 - 2015-12-26 21:44 - 04638208 _____ (Avira Operations GmbH & Co. KG) C:\Users\manfred\Downloads\avira_de_av_567ef6b1ebf51__ws1(1).exe

2015-12-26 21:44 - 2015-12-26 21:44 - 00000000 ____D C:\ProgramData\Package Cache

2015-12-26 21:34 - 2015-12-26 21:34 - 04638208 _____ (Avira Operations GmbH & Co. KG) C:\Users\manfred\Downloads\avira_de_av_567ef6b1ebf51__ws1.exe

2015-12-26 21:20 - 2015-12-26 21:20 - 00000000 ____D C:\OETemp

2015-12-25 22:26 - 2015-12-25 22:26 - 00000955 _____ C:\Users\manfred\Desktop\Advanced Backup Manager 2016.lnk

2015-12-25 22:26 - 2015-12-25 22:26 - 00000955 _____ C:\Users\Default\Desktop\Advanced Backup Manager 2016.lnk

2015-12-25 22:26 - 2015-12-25 22:26 - 00000955 _____ C:\Users\Default User\Desktop\Advanced Backup Manager 2016.lnk

2015-12-25 22:26 - 2015-12-25 22:26 - 00000955 _____ C:\Users\Administrator\Desktop\Advanced Backup Manager 2016.lnk

2015-12-25 18:42 - 2015-12-25 18:42 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(5).exe

2015-12-25 18:40 - 2015-12-27 16:45 - 00001188 _____ C:\Users\manfred\Desktop\mbam.txt

2015-12-25 17:26 - 2015-12-25 17:26 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(4).exe

2015-12-25 16:57 - 2015-12-25 16:58 - 02370560 _____ (Farbar) C:\Users\manfred\Downloads\FRST64(3).exe

2015-12-23 12:50 - 2015-12-24 08:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-12-21 13:52 - 2015-12-21 13:52 - 00080232 ____H C:\WINDOWS\SysWOW64\mlfcache.dat

2015-12-20 07:58 - 2015-12-20 07:58 - 00000000 ____D C:\WINDOWS\pss

2015-12-19 12:59 - 2015-12-26 21:26 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job

2015-12-18 06:54 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-12-18 06:54 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-12-18 06:54 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe

2015-12-18 06:54 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll

2015-12-18 06:54 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-12-18 06:54 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2015-12-18 06:54 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-12-18 06:54 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-12-18 06:54 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-12-18 06:54 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll

2015-12-18 06:54 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll

2015-12-18 06:54 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll

2015-12-18 06:54 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll

2015-12-18 06:54 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2015-12-18 06:54 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-12-18 06:54 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-12-18 06:54 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe

2015-12-18 06:54 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll

2015-12-18 06:54 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2015-12-18 06:54 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-12-18 06:54 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll

2015-12-18 06:54 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2015-12-18 06:54 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-12-18 06:54 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe

2015-12-18 06:54 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-12-18 06:54 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2015-12-18 06:54 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-12-18 06:54 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll

2015-12-18 06:54 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll

2015-12-18 06:54 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-12-18 06:54 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-12-18 06:54 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-12-18 06:54 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-12-18 06:54 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll

2015-12-18 06:54 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-12-18 06:54 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-12-18 06:54 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-12-18 06:54 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2015-12-18 06:54 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll

2015-12-18 06:54 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll

2015-12-18 06:54 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-12-18 06:54 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2015-12-18 06:54 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2015-12-18 06:54 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-12-18 06:54 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-12-18 06:54 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL

2015-12-18 06:54 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-12-18 06:54 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-12-18 06:54 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-12-18 06:54 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll

2015-12-18 06:54 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2015-12-18 06:54 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL

2015-12-18 06:54 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe

2015-12-18 06:54 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll

2015-12-17 17:31 - 2015-12-17 17:31 - 00273422 _____ C:\Users\manfred\Desktop\PrintAtHome_1403_1.pdf

2015-12-17 14:54 - 2015-12-17 14:54 - 00000000 ____D C:\Users\manfred\AppData\LocalLow\Temp

2015-12-16 15:19 - 2015-12-16 15:19 - 00037668 _____ C:\Users\manfred\Desktop\Auftrag-NTH-Webshop_1403.pdf

2015-12-13 21:30 - 2015-12-14 06:08 - 00000000 ___RD C:\Users\manfred\3D Objects

2015-12-09 10:20 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-12-09 10:20 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-12-09 10:20 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-12-09 10:20 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2015-12-09 10:20 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2015-12-09 10:20 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll

2015-12-09 10:20 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2015-12-09 10:20 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll

2015-12-09 10:20 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys

2015-12-09 10:20 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2015-12-09 10:20 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-12-09 10:20 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll

2015-12-09 10:20 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2015-12-09 10:20 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-12-09 10:20 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2015-12-09 10:20 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2015-12-09 10:20 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll

2015-12-09 10:20 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll

2015-12-09 10:20 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2015-12-09 10:20 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2015-12-09 10:20 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll

2015-12-09 10:20 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-12-09 10:20 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2015-12-09 10:20 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-12-09 10:20 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-12-09 10:20 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-12-09 10:20 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2015-12-06 13:27 - 2015-12-06 13:27 - 00428265 _____ C:\Users\manfred\Downloads\SammelanmeldungDSP.xlsx

2015-12-05 00:00 - 2015-12-05 00:00 - 00000000 ____D C:\WINDOWS\Minidump

2015-12-04 00:33 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2015-12-04 00:33 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll

2015-12-04 00:33 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll

2015-12-04 00:33 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys

2015-12-04 00:33 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll

2015-12-04 00:33 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll

2015-12-04 00:33 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-12-04 00:33 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2015-12-04 00:33 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll

2015-12-04 00:33 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll

2015-12-04 00:33 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2015-12-04 00:33 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2015-12-04 00:33 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe

2015-12-04 00:33 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2015-12-04 00:33 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll

2015-12-04 00:33 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll

2015-12-04 00:33 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll

2015-12-04 00:33 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll

2015-12-04 00:33 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll

2015-12-04 00:33 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys

2015-12-04 00:33 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll

2015-12-04 00:33 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2015-12-04 00:33 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe

2015-12-04 00:33 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll

2015-12-04 00:33 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2015-12-04 00:33 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll

2015-12-04 00:33 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2015-12-04 00:33 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2015-12-04 00:33 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll

2015-12-04 00:33 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll

2015-12-04 00:33 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2015-12-04 00:33 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll

2015-12-04 00:33 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll

2015-12-04 00:33 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2015-12-04 00:33 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-12-04 00:33 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll

2015-12-04 00:33 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll

2015-12-04 00:33 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll

2015-12-04 00:33 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll

2015-12-04 00:33 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2015-12-04 00:33 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll

2015-12-04 00:33 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll

2015-12-04 00:33 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-12-04 00:33 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-12-04 00:33 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2015-12-04 00:33 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll

2015-12-04 00:33 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll

2015-12-04 00:33 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll

2015-12-04 00:33 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-12-04 00:33 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll

2015-12-04 00:33 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2015-12-04 00:33 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2015-12-04 00:33 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll

2015-12-04 00:33 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll

2015-12-04 00:33 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-12-04 00:33 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-12-04 00:33 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll

2015-12-04 00:33 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll

2015-12-04 00:33 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-12-04 00:33 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll

2015-12-04 00:33 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-12-04 00:33 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-12-04 00:33 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-12-02 11:29 - 2015-12-02 11:29 - 05028296 _____ (Adobe Systems Inc.) C:\Users\manfred\Downloads\Shockwave_Installer_Slim(1).exe

2015-12-01 13:44 - 2015-12-01 13:44 - 02617344 _____ C:\Users\manfred\Downloads\msxml6_x64(1).msi

2015-12-01 06:16 - 2015-12-01 06:16 - 00016896 _____ C:\Users\manfred\Desktop\urlaubswünsche 2016.xls

2015-11-30 15:25 - 2015-11-30 15:25 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2015-11-29 17:56 - 2015-11-29 17:56 - 23802157 _____ (Viktor Wedel Software Design ) C:\Users\manfred\Downloads\nlgenius_setup.exe

2015-11-29 16:10 - 2015-11-29 16:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-11-28 12:18 - 2015-11-28 13:23 - 00000000 ____D C:\Users\manfred\AppData\Local\MicrosoftEdge

2015-11-28 11:16 - 2015-12-13 19:52 - 00002434 _____ C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-11-28 11:14 - 2015-12-25 17:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy

2015-11-28 11:14 - 2015-11-28 11:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking

2015-11-28 11:11 - 2015-11-28 11:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive

2015-11-28 11:08 - 2015-11-28 11:08 - 00000000 ____D C:\Users\manfred\AppData\Local\Publishers

2015-11-28 11:08 - 2015-11-28 11:08 - 00000000 ____D C:\Users\manfred\AppData\Local\ActiveSync

2015-11-28 11:07 - 2015-11-28 11:07 - 00000000 ____D C:\Users\manfred\AppData\Local\Comms

2015-11-28 11:06 - 2015-12-27 16:18 - 00000000 __SHD C:\Users\manfred\IntelGraphicsProfiles

2015-11-28 11:06 - 2015-11-30 12:16 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

2015-11-28 11:06 - 2015-11-28 11:06 - 00000020 ___SH C:\Users\manfred\ntuser.ini

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Vorlagen

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Startmenü

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 ____D C:\Users\manfred\AppData\Local\TileDataLayer

2015-11-28 11:06 - 2015-11-28 11:06 - 00000000 ____D C:\ProgramData\USOShared

2015-11-28 11:03 - 2015-12-27 16:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-11-28 10:52 - 2015-11-28 10:52 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\Documents\hp.applications.package.appdata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Genie9

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\Documents\hp.applications.package.appdata

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:52 - 2015-11-28 10:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Genie9

2015-11-28 10:49 - 2015-11-28 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autostart

2015-11-28 10:48 - 2015-11-28 10:48 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-11-28 10:47 - 2015-12-27 16:17 - 00000000 ____D C:\Users\manfred

2015-11-28 10:47 - 2015-12-05 00:02 - 00000000 ____D C:\Users\Administrator

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Vorlagen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Startmenü

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Netzwerkumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Lokale Einstellungen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Eigene Dateien

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Druckumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Videos

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Musik

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Documents\Eigene Bilder

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Local\Verlauf

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\AppData\Local\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\manfred\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Vorlagen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Startmenü

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten

2015-11-28 10:47 - 2015-11-28 10:47 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten

2015-11-28 10:46 - 2015-12-27 18:00 - 02003246 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-11-28 10:46 - 2015-11-28 10:46 - 01909068 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2015-11-28 10:44 - 2015-11-28 10:48 - 00000000 ____D C:\Program Files\Intel

2015-11-28 10:44 - 2015-11-28 10:44 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

2015-11-28 10:44 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2015-11-28 10:44 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\WINDOWS\system32\SRSLabs

2015-11-28 10:43 - 2015-11-28 10:43 - 00000000 ____D C:\Program Files\Realtek

2015-11-28 10:43 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-11-28 10:40 - 2015-12-10 15:36 - 00256784 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-11-28 10:39 - 2015-11-28 11:10 - 00000000 ___DC C:\WINDOWS\Panther

2015-11-28 10:37 - 2015-11-28 10:37 - 00000000 ____D C:\Windows.old

2015-11-28 10:36 - 2015-11-28 10:36 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2015-11-28 10:36 - 2015-11-28 10:36 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv

2015-11-28 10:36 - 2015-11-28 10:36 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys

2015-11-28 10:36 - 2015-11-28 10:36 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe

2015-11-28 10:36 - 2015-11-28 10:36 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2015-11-28 10:36 - 2015-11-28 10:36 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2015-11-28 10:35 - 2015-11-28 10:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files\MSBuild

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-11-28 10:31 - 2015-11-28 10:31 - 00000000 ____D C:\inetpub

2015-11-28 10:31 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-11-28 10:31 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-11-28 10:31 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-11-28 10:31 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-11-28 09:25 - 2015-12-05 00:00 - 00221367 ____N C:\WINDOWS\Minidump\120515-20328-01.dmp

2015-11-28 08:56 - 2015-11-28 09:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2015-12-27 18:23 - 2014-10-14 11:58 - 00027531 _____ C:\Users\manfred\Downloads\FRST.txt

2015-12-27 18:23 - 2014-10-14 11:58 - 00000000 ____D C:\FRST

2015-12-27 18:00 - 2015-10-30 19:35 - 00852510 _____ C:\WINDOWS\system32\perfh007.dat

2015-12-27 18:00 - 2015-10-30 19:35 - 00187736 _____ C:\WINDOWS\system32\perfc007.dat

2015-12-27 18:00 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF

2015-12-27 18:00 - 2013-11-24 12:39 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-12-27 17:58 - 2014-04-10 16:02 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-12-27 16:18 - 2014-04-21 11:39 - 00000000 __RDO C:\Users\manfred\OneDrive

2015-12-27 16:17 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI

2015-12-27 15:59 - 2013-12-31 09:12 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{00B4722C-7113-4323-8329-460E0E599ADF}

2015-12-27 05:28 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP

2015-12-26 22:39 - 2015-11-10 16:42 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job

2015-12-26 22:04 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-12-26 21:46 - 2013-11-21 11:10 - 00000000 ____D C:\ProgramData\Avira

2015-12-26 21:46 - 2013-11-21 11:10 - 00000000 ____D C:\Program Files (x86)\Avira

2015-12-25 22:27 - 2015-02-03 18:28 - 00001140 _____ C:\Users\Default\Desktop\Advanced Backup Manager 2015.lnk

2015-12-25 22:27 - 2015-02-03 18:28 - 00001140 _____ C:\Users\Default User\Desktop\Advanced Backup Manager 2015.lnk

2015-12-25 22:27 - 2015-02-03 18:28 - 00001140 _____ C:\Users\Administrator\Desktop\Advanced Backup Manager 2015.lnk

2015-12-25 21:25 - 2013-11-21 11:56 - 00000952 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA.job

2015-12-25 18:47 - 2014-10-14 11:59 - 00072564 _____ C:\Users\manfred\Downloads\Addition.txt

2015-12-25 18:44 - 2015-10-30 07:28 - 00000000 ____D C:\Windows

2015-12-25 18:07 - 2013-11-14 15:27 - 00000000 ____D C:\AdwCleaner

2015-12-25 17:55 - 2013-12-21 14:29 - 00012659 _____ C:\WINDOWS\wininit.ini

2015-12-25 15:29 - 2013-12-24 22:15 - 00000000 ____D C:\Users\manfred\AppData\Local\PokerStars.EU

2015-12-25 09:25 - 2013-11-21 11:56 - 00000930 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core.job

2015-12-25 08:53 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-12-24 14:18 - 2013-12-24 22:15 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU

2015-12-24 13:20 - 2013-12-19 18:54 - 00000000 ____D C:\Users\manfred\AppData\Local\ElevatedDiagnostics

2015-12-24 08:44 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps

2015-12-24 08:32 - 2013-11-21 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning

2015-12-19 12:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr

2015-12-18 10:49 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-12-17 11:02 - 2015-06-11 10:00 - 00028970 _____ C:\Users\manfred\Desktop\Platz.htm

2015-12-17 10:59 - 2015-06-11 10:00 - 00035882 _____ C:\Users\manfred\Desktop\Spielpunkte.htm

2015-12-17 09:08 - 2013-11-25 13:03 - 00000000 ____D C:\Users\manfred\AppData\Roaming\vlc

2015-12-17 00:28 - 2014-02-06 13:14 - 00002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-12-12 16:43 - 2014-08-19 16:23 - 00000000 ____D C:\Users\manfred\AppData\Local\Adobe

2015-12-11 15:26 - 2013-11-21 10:57 - 00000000 ____D C:\Users\manfred\AppData\Local\Packages

2015-12-10 18:56 - 2013-11-29 22:06 - 00003256 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleFormanfred

2015-12-10 18:56 - 2013-11-29 22:06 - 00000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleFormanfred.job

2015-12-10 17:50 - 2014-02-06 13:14 - 00000000 ____D C:\Users\manfred\AppData\Local\Google

2015-12-10 15:44 - 2014-06-30 20:09 - 00003976 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1391416707

2015-12-10 15:44 - 2014-02-03 09:38 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

2015-12-10 15:44 - 2014-02-03 09:38 - 00000000 ____D C:\Program Files (x86)\Opera

2015-12-10 15:35 - 2013-12-22 08:22 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-12-10 15:35 - 2013-12-22 08:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-12-09 22:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-12-09 13:00 - 2015-11-10 16:42 - 00004086 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier

2015-12-09 12:00 - 2013-11-24 12:39 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-12-09 10:32 - 2013-12-22 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-12-09 10:31 - 2013-11-22 15:00 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-12-06 18:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache

2015-12-05 10:03 - 2014-06-30 20:08 - 00000000 ____D C:\Users\manfred\AppData\Roaming\DVDVideoSoft

2015-12-04 23:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-12-03 00:34 - 2014-06-30 20:04 - 00000000 ____D C:\Users\manfred\Downloads\youtube downloader

2015-12-03 00:33 - 2014-07-27 12:34 - 00000000 ____D C:\Users\manfred\Downloads\youtube laden

2015-12-02 09:23 - 2014-02-06 13:14 - 00004192 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-12-02 09:23 - 2014-02-06 13:14 - 00003960 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-12-02 09:23 - 2014-02-06 13:14 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-12-02 09:23 - 2014-02-06 13:14 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-12-01 14:03 - 2014-12-06 22:22 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP

2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2015-11-29 17:57 - 2013-11-28 10:26 - 00001114 _____ C:\Users\Public\Desktop\Newsletter Genius.lnk

2015-11-29 17:57 - 2013-11-28 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newsletter Genius

2015-11-29 17:57 - 2013-11-28 10:26 - 00000000 ____D C:\Program Files (x86)\Newsletter Genius

2015-11-29 06:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat

2015-11-28 20:18 - 2015-11-19 12:43 - 00056832 _____ C:\Users\manfred\Desktop\kalender 2016 mit Arbeit.19.11.15.xls

2015-11-28 18:19 - 2015-04-22 06:12 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-11-28 13:21 - 2014-12-06 22:22 - 00001230 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk

2015-11-28 13:21 - 2014-12-06 22:22 - 00001180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk

2015-11-28 11:25 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow

2015-11-28 11:08 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-11-28 11:08 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-11-28 11:07 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-11-28 11:07 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate

2015-11-28 11:06 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT

2015-11-28 11:06 - 2013-09-26 16:50 - 00000000 __RHD C:\Users\Public\AccountPictures

2015-11-28 11:05 - 2014-04-21 11:20 - 00047628 _____ C:\WINDOWS\diagwrn.xml

2015-11-28 11:05 - 2014-04-21 11:20 - 00047628 _____ C:\WINDOWS\diagerr.xml

2015-11-28 11:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration

2015-11-28 11:03 - 2014-12-26 09:03 - 00002764 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-11-28 11:03 - 2014-04-21 11:32 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-11-28 11:03 - 2013-11-23 07:41 - 00002318 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask

2015-11-28 11:03 - 2013-11-21 11:56 - 00003388 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA

2015-11-28 11:03 - 2013-11-21 11:56 - 00003146 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core

2015-11-28 11:03 - 2013-11-21 11:07 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3207775961-1083249041-1324932386-1001

2015-11-28 11:00 - 2015-10-30 08:24 - 00000000 __RSD C:\WINDOWS\Media

2015-11-28 11:00 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries

2015-11-28 10:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\ModemLogs

2015-11-28 10:54 - 2015-07-15 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom

2015-11-28 10:54 - 2015-05-21 18:54 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lernen & Co

2015-11-28 10:54 - 2015-03-20 08:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bild.me Upload-Tool

2015-11-28 10:54 - 2014-09-25 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Partner

2015-11-28 10:54 - 2014-07-17 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-11-28 10:54 - 2014-05-11 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genie9

2015-11-28 10:54 - 2014-05-09 09:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Any To GIF

2015-11-28 10:54 - 2014-04-22 10:40 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D&D Code

2015-11-28 10:54 - 2014-04-10 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-11-28 10:54 - 2014-02-06 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-11-28 10:54 - 2014-02-02 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular

2015-11-28 10:54 - 2013-12-24 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.EU

2015-11-28 10:54 - 2013-11-27 08:20 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online

2015-11-28 10:54 - 2013-11-25 16:42 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-11-28 10:54 - 2013-11-25 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-11-28 10:54 - 2013-11-25 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-11-28 10:54 - 2013-11-25 12:37 - 00000000 ____D C:\WINDOWS\de

2015-11-28 10:54 - 2013-11-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP250 series

2015-11-28 10:54 - 2013-11-21 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works

2015-11-28 10:54 - 2013-11-21 12:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2015-11-28 10:54 - 2013-08-06 23:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools

2015-11-28 10:54 - 2013-08-06 23:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos

2015-11-28 10:54 - 2013-08-06 23:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support

2015-11-28 10:54 - 2013-08-06 23:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-11-28 10:54 - 2012-07-26 10:43 - 00000000 ____D C:\WINDOWS\en-GB

2015-11-28 10:52 - 2013-08-22 14:36 - 00000000 ____D C:\Users\Default.migrated

2015-11-28 10:50 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE

2015-11-28 10:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB

2015-11-28 10:50 - 2015-04-14 20:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe

2015-11-28 10:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-11-28 10:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-11-28 10:49 - 2015-10-30 19:44 - 00000000 ____D C:\WINDOWS\ShellNew

2015-11-28 10:49 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod

2015-11-28 10:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Cursors

2015-11-28 10:49 - 2014-09-02 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo

2015-11-28 10:49 - 2014-02-03 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam

2015-11-28 10:49 - 2013-11-26 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-11-28 10:49 - 2013-11-21 12:24 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information

2015-11-28 10:49 - 2013-11-21 10:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services

2015-11-28 10:49 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer

2015-11-28 10:49 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS

2015-11-28 10:49 - 2013-08-06 23:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection

2015-11-28 10:49 - 2012-08-01 18:06 - 00000000 ____D C:\ProgramData\PRICache

2015-11-28 10:48 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-11-28 10:48 - 2015-02-03 18:28 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:48 - 2013-11-21 12:06 - 00000000 ____D C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autostart

2015-11-28 10:47 - 2015-02-03 18:28 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Dynamic

2015-11-28 10:47 - 2012-08-01 18:06 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages

2015-11-28 10:46 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-11-28 10:41 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles

2015-11-28 10:39 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-11-28 10:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-11-28 10:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI

2015-11-28 10:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv

2015-11-28 10:31 - 2015-10-30 08:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe

2015-11-28 10:31 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll

2015-11-28 10:31 - 2015-10-30 08:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe

2015-11-28 10:31 - 2015-10-30 08:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll

2015-11-28 10:31 - 2015-10-30 08:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe

2015-11-28 10:31 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll

2015-11-28 10:31 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll

2015-11-28 10:19 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2015-01-07 14:10 - 2015-01-07 14:10 - 0003584 _____ () C:\Users\manfred\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2013-11-21 10:58 - 2013-11-21 10:58 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
 

Einige Dateien in TEMP:

====================

C:\Users\manfred\AppData\Local\Temp\avgnt.exe

C:\Users\manfred\AppData\Local\Temp\i4jdel0.exe

C:\Users\manfred\AppData\Local\Temp\sqlite3.dll
 
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert

C:\WINDOWS\explorer.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert

C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert

C:\WINDOWS\system32\services.exe => Datei ist digital signiert

C:\WINDOWS\system32\User32.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert

C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert

C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2015-12-24 10:06
 

==================== Ende von FRST.txt ============================

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:27-12-2015

durchgeführt von manfred (2015-12-27 18:23:56)

Gestartet von C:\Users\manfred\Downloads

Windows 10 Home (X64) (2015-11-28 10:06:45)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-3207775961-1083249041-1324932386-500 - Administrator - Disabled) => C:\Users\Administrator

DefaultAccount (S-1-5-21-3207775961-1083249041-1324932386-503 - Limited - Disabled)

Gast (S-1-5-21-3207775961-1083249041-1324932386-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3207775961-1083249041-1324932386-1007 - Limited - Enabled)

manfred (S-1-5-21-3207775961-1083249041-1324932386-1001 - Administrator - Enabled) => C:\Users\manfred
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)

Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)

Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)

Advanced Backup Manager 4.4.14344.798 (HKLM\...\Advanced Backup Manager) (Version: 4.4.14344.798 - Digital Dynamic)

Any To GIF 1.0.2.0 (HKLM-x32\...\{D652BB57-423B-49D8-B6B1-73338FC553B3}_is1) (Version:  - zxt2007.com)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)

AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)

AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)

Avira Launcher (HKLM-x32\...\{eac7da46-2097-4dd4-80a6-8b67cbb2b23f}) (Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG)

Avira Launcher (x32 Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Hidden

Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.4.505 - Bandisoft.com)

Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)

Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version:  - )

Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version:  - )

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)

Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)

CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5510 - CyberLink Corp.)

CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)

CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)

CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.0.20140117 - Landesfinanzdirektion Thüringen)

Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)

FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden

Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

Genie Timeline (HKLM-x32\...\Genie Timeline) (Version: 5.0 - Genie9)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)

Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden

Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden

HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)

HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)

HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)

HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)

HP Support Solutions Framework (HKLM-x32\...\{69FD2930-C361-47F6-822E-71B021526778}) (Version: 11.50.0015 - Hewlett-Packard Company)

HPDetect (HKLM-x32\...\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP)

Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)

Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)

Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\Kiebitz 2_is1) (Version:  - )

Kiebitz 2 (HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Kiebitz 2_is1) (Version:  - )

Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

Microsoft Office 97, Professional Edition (HKLM-x32\...\Office8.0) (Version:  - )

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)

Microsoft SkyDrive (HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Works (HKLM-x32\...\{B26E3B0D-C2FA-4370-B068-7C476766F029}) (Version: 08.04.0702 - Microsoft Corporation)

Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 11.302.09.02.511 - Huawei Technologies Co.,Ltd)

Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)

Mozilla Thunderbird 38.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.4.0 (x86 de)) (Version: 38.4.0 - Mozilla)

MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)

Newsletter Genius 3.4 (HKLM-x32\...\nlg50452535d052c9dd1f3341e2ff895cc3_is1) (Version:  - Viktor Wedel Software Design)

Opera Stable 34.0.2036.25 (HKLM-x32\...\Opera 34.0.2036.25) (Version: 34.0.2036.25 - Opera Software)

PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)

Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden

Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)

TomTom HOME (HKLM-x32\...\{0E09BE17-EDEA-42CA-8974-42A587F51510}) (Version: 2.9.8 - Ihr Firmenname)

TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Ihr Firmenname)

TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)

Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)

Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\manfred\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Keine Datei

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\manfred\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {111298C4-6593-40EA-B7A3-EDDE1AB0A0D6} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe

Task: {1112B3E5-00DC-4674-BC93-0E14AAC95879} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

Task: {1298FDDE-C804-4C74-94F2-B5CAC5CDD56E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: {1510D33D-4690-4BE4-A466-00A035A7BC08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {2767A97F-7498-449B-949D-1E360C4898FC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: {297D95A2-530C-4792-AB6E-B75F245F50F9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {39E2D0A9-CD06-495F-8174-174269F57466} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG

Task: {3DC4CA5B-1EC9-4B8D-8669-C5E0D1B7B8B9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG

Task: {471AF204-FCCD-4D29-9159-A43BA125A8C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG

Task: {4F02B28A-E4A7-4D21-863A-D00F2C4E9B5F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG

Task: {54071523-FB39-4926-993E-C48C365CCDD4} - System32\Tasks\HPCeeScheduleFormanfred => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)

Task: {56153579-C352-4A99-B0D8-22EB72D28A1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2015-11-30] (Hewlett-Packard)

Task: {569D0BC0-D0BD-41B0-8A1F-8E890B9DC660} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG

Task: {59E0C2DF-9726-4E2D-9BD1-6779CDAD9888} - System32\Tasks\Opera scheduled Autoupdate 1391416707 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)

Task: {676F7C5F-3D81-4DDD-9F4E-A724769B9259} - System32\Tasks\Digital Dynamic\Advanced Backup Manager\Autorun_User_manfred => C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupmanager64.exe [2015-12-25] (Digital Dynamic)

Task: {6A8C1FE2-F109-4B78-95B7-9A055537E332} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

Task: {6CDC3AB2-9443-46A7-A4F2-F1B6BBD06324} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

Task: {7D988C4E-94CE-4887-9D81-B86D4C2CFDB5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-12] (Adobe Systems Incorporated)

Task: {83B11F30-6C2F-4D27-9B27-356AA6F8E278} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG

Task: {8615C730-9DF6-40BC-AD1A-9E0374316314} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-23] (Microsoft Corporation)

Task: {89E20869-7AD2-47F9-9C4B-5728BD778888} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG

Task: {8A7EB11C-3ECF-413D-8BFF-F0029D7BC401} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {93735FBF-F1DF-436B-A39D-B2EF7E1ED90E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG

Task: {C1FB55A0-B06D-41C7-9AC5-DD31B3EFD5E2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

Task: {C4745A77-803D-4231-9DE8-12C52832C836} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG

Task: {D14A1164-9529-437D-8A96-66FF9BDE97E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-12-03] (HP Inc.)

Task: {D4CE1FC5-0E7D-4FEC-AB7A-F953D551CFE6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-12-03] (HP Inc.)

Task: {DDA135CB-E2C8-4370-A3C9-FD2BFC223E82} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG

Task: {F6B9EC5F-C8BD-4559-B313-12F94F72302B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-09] (Adobe Systems Incorporated)

Task: {FA3B5A74-7EBB-42CC-982E-299DE1057018} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG

Task: {FB5EA4D6-7F7C-4A5E-9B51-F434E61341C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001Core.job => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3207775961-1083249041-1324932386-1001UA.job => C:\Users\manfred\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\HPCeeScheduleFormanfred.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 

==================== Verknüpfungen =============================
 

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
 

ShortcutWithArgument: C:\Users\manfred\Desktop\Skat-Online Spieleinsicht.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/spieleinsicht/spieleinsicht.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\471d08f4-74df26ed"

ShortcutWithArgument: C:\Users\manfred\Desktop\Skat-Online V11.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/skat/skat.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\19335f62-12246796"

ShortcutWithArgument: C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online\Skat-Online Spieleinsicht.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/spieleinsicht/spieleinsicht.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\471d08f4-74df26ed"

ShortcutWithArgument: C:\Users\manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skat-Online\Skat-Online V11.lnk -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://download.skat-online.com/skat/skat.jnlp "C:\Users\manfred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\19335f62-12246796"
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
 

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll

2015-02-03 18:28 - 2015-12-25 22:27 - 01382912 _____ () C:\Program Files\Digital Dynamic\Advanced Backup Manager\backupsvc5.exe

2013-12-29 11:18 - 2013-12-29 11:18 - 00332800 _____ () C:\Program Files\Genie9\Genie Timeline\OnlineHandler.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00045568 _____ () C:\Program Files\Genie9\Genie Timeline\GSLogging.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00087040 _____ () C:\Program Files\Genie9\Genie Timeline\QueueManager.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00722944 _____ () C:\Program Files\Genie9\Genie Timeline\GSBackupManager.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00491520 _____ () C:\Program Files\Genie9\Genie Timeline\GSIndexDB.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00211968 _____ () C:\Program Files\Genie9\Genie Timeline\Settings.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00371200 _____ () C:\Program Files\Genie9\Genie Timeline\GSWatcher4.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00058368 _____ () C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00740864 _____ () C:\Program Files\Genie9\Genie Timeline\sqlite3.dll

2012-04-24 10:29 - 2012-04-24 10:29 - 00011264 _____ () C:\Program Files\Genie9\Genie Timeline\RWLock.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00089600 ____N () C:\Program Files\Genie9\Genie Timeline\GSEncryption.dll

2013-12-29 11:18 - 2013-12-29 11:18 - 00054784 ____N () C:\Program Files\Genie9\Genie Timeline\GSLogManager.dll

2013-02-11 12:34 - 2013-02-11 12:34 - 00045056 _____ () C:\Program Files\Genie9\Genie Timeline\pcre.dll

2012-02-02 10:16 - 2012-02-02 10:16 - 00010752 _____ () C:\Program Files\Genie9\Genie Timeline\VSSEngine_Proxy.dll

2013-02-11 12:34 - 2013-02-11 12:34 - 00097792 _____ () C:\Program Files\Genie9\Genie Timeline\pcrebase.dll

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll

2015-12-04 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

2014-05-11 14:58 - 2013-12-29 11:18 - 00163328 _____ () C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl

2014-05-11 14:58 - 2013-12-29 11:18 - 00211968 _____ () C:\Program Files\Genie9\Genie Timeline\Settings.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00045568 _____ () C:\Program Files\Genie9\Genie Timeline\GSLogging.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00089600 _____ () C:\Program Files\Genie9\Genie Timeline\GSEncryption.gtl

2014-05-11 14:58 - 2013-12-29 11:18 - 00491520 _____ () C:\Program Files\Genie9\Genie Timeline\GSIndexDB.gtl

2014-05-11 14:58 - 2012-02-02 10:16 - 00740864 _____ () C:\Program Files\Genie9\Genie Timeline\sqlite3.gtl

2014-05-11 14:58 - 2012-04-24 10:29 - 00011264 _____ () C:\Program Files\Genie9\Genie Timeline\RWLock.gtl

2015-12-18 06:54 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

2015-12-18 06:54 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll

2015-12-18 06:54 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll

2015-12-18 06:54 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll

2015-12-18 06:54 - 2015-12-07 04:34 - 00936448 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll

2015-12-18 06:54 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll

2015-12-18 06:54 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

2015-12-04 00:33 - 2015-11-22 10:18 - 00529408 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll

2015-10-30 08:18 - 2015-10-30 19:44 - 00037888 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00796160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00961024 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00206336 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00558592 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00397824 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node

2015-10-30 08:18 - 2015-10-30 19:44 - 00181248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node

2013-12-29 11:18 - 2013-12-29 11:18 - 00063488 _____ () C:\Program Files\Genie9\Genie Timeline\XBalloonMsgDll.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00093696 _____ () C:\Program Files\Genie9\Genie Timeline\GSCurl.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll

2015-12-17 14:29 - 2015-12-17 14:29 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll

2013-08-06 23:17 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll

2012-06-08 11:34 - 2012-06-08 11:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll

2015-12-26 21:57 - 2015-12-26 21:56 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll

2014-04-22 11:55 - 2014-04-22 11:55 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

2014-05-11 14:58 - 2013-11-20 08:39 - 00038400 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSLogging.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00398336 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSIndexDB.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00615424 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSBackupManager.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00175104 _____ () C:\Program Files\Genie9\Genie Timeline\x86\Settings.gtl

2014-05-11 14:58 - 2012-02-02 10:16 - 00923136 _____ () C:\Program Files\Genie9\Genie Timeline\x86\sqlite3.gtl

2014-05-11 14:58 - 2012-04-24 10:29 - 00010752 _____ () C:\Program Files\Genie9\Genie Timeline\x86\RWLock.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00303104 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSWatcher4.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00282624 _____ () C:\Program Files\Genie9\Genie Timeline\x86\OnlineHandler.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00045056 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSLogManager.gtl

2014-05-11 14:58 - 2013-12-29 11:19 - 00071168 _____ () C:\Program Files\Genie9\Genie Timeline\x86\QueueManager.gtl

2014-05-11 14:58 - 2012-02-02 10:16 - 00009728 _____ () C:\Program Files\Genie9\Genie Timeline\x86\VSSEngine_Proxy.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00043008 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSLibrariesManager.gtl

2014-05-11 14:58 - 2013-11-20 08:39 - 00080384 _____ () C:\Program Files\Genie9\Genie Timeline\x86\GSEncryption.gtl

2013-02-11 12:35 - 2013-02-11 12:35 - 00038912 _____ () C:\Program Files\Genie9\Genie Timeline\x86\pcre.dll

2013-11-20 08:39 - 2013-11-20 08:39 - 00090112 _____ () C:\Program Files\Genie9\Genie Timeline\x86\pcrebase.dll

2015-11-28 08:56 - 2015-11-28 08:56 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll

2015-11-28 08:56 - 2015-11-28 08:56 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
 
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 
 

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
 
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE trusted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\dskv.de -> hxxps://www.dskv.de

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\10sek.com -> www.10sek.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-26.net -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\123simsen.com -> www.123simsen.com
 

Da befinden sich 7867 mehr Seiten.
 
 

==================== Hosts Inhalt: ===============================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 

==================== Andere Bereiche ============================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\manfred\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg

DNS Servers: 192.168.2.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

MSCONFIG\Services: backupsvc5 => 2

HKLM\...\StartupApproved\Run32: => "ApnTBMon"

HKLM\...\StartupApproved\Run32: => "LCWB"

HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-3207775961-1083249041-1324932386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "TomTomHOME.exe"

HKU\S-1-5-21-3207775961-1083249041-1324932386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Facebook Update"
 

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [{65D3658B-6117-4F10-A676-3F93FA8C97A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{0DAA1B27-A506-45BC-906D-5E66889E659F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{ACF26DBB-DFFA-4A9C-919A-398D914B0040}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [{E263FF4A-8465-46AB-982F-01F4A1920E00}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

FirewallRules: [UDP Query User{10B7196B-35F5-47CE-88BB-12A1CD91F7FA}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe

FirewallRules: [TCP Query User{FEB8AA7B-5BDE-4A63-9AC7-0198F001295A}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe

FirewallRules: [UDP Query User{61F408FF-5319-492F-AED6-5C4F3ACA2AD5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{83748F67-6459-4B63-BC2E-BBC450B493B0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{46D49DC6-A74F-4986-A516-1632AAE1D7E2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{0DB06E01-B076-4426-A763-CC07A0FB1C8F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{F783AD06-30E6-4CCF-BB4D-21508DB0B7C7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll

FirewallRules: [{9A75D8A9-CB3E-4425-8E7F-A3ABF96001A4}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll

FirewallRules: [{8C3AE2D1-935F-4E3A-AF7D-DBC44613FD50}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll

FirewallRules: [{4B7A1108-5574-4A53-B4DB-91FAFC6B8CB3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll

FirewallRules: [{1C10547E-F60E-445E-BE03-A6B34844FE5F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll

FirewallRules: [{8865975A-8597-4F09-9140-EBFC87ACB048}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll

FirewallRules: [{9CF396AB-D4C2-43B5-A05C-A0593272AB3C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll

FirewallRules: [{F2E941AF-CA81-485F-A2B4-181F01167EC7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll

FirewallRules: [{5C4D7D30-5671-4790-BA07-8825DF5E9A4C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll

FirewallRules: [{F4D05991-1209-4837-AD60-F17AA4EC9DC7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll

FirewallRules: [{32E50031-9CC2-4466-966C-0A4BD1A99207}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll

FirewallRules: [{34F0872A-F1D1-45A5-BD9B-50F27C2E643A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll

FirewallRules: [{DFAC0B38-59BC-499B-B5A8-2146EB0AFAE3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe

FirewallRules: [{D8BA68CE-0B53-4B90-B251-BAA23E58959B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe

FirewallRules: [{C0F73AE9-ECC1-4D4D-B7A2-4CE812A3FF00}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

FirewallRules: [{BE4538D6-00FE-4FB8-B18F-2E5378047391}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

FirewallRules: [{E287B7AD-E643-46E1-8A75-C925ACADF377}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

FirewallRules: [{D799B450-7215-441B-88EC-D5283938098A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

FirewallRules: [{3A7FCDA7-ADF0-4961-8D34-7156ECD164A1}] => (Allow) C:\Users\manfred\AppData\Local\Temp\7zS7106\hppiw.exe

FirewallRules: [{FC2CB826-3222-40C9-B6DC-9CC643F33D60}] => (Allow) C:\Users\manfred\AppData\Local\Temp\7zS7106\hppiw.exe

FirewallRules: [{02D56B43-7E74-4F54-A1B7-93E96C14573A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{02C7ACC7-5C07-4BDA-B559-FEE4F7D3A98D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{678EEC58-3FEA-4461-8409-D999F6950554}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{774228F2-55CC-4522-ABD6-2FCAA5158FC5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{170699B1-7B1D-4E48-B515-AA3DAB7AE999}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE

FirewallRules: [{D177C31F-FDFF-4376-91D7-8C3C09A91944}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe

FirewallRules: [{2C08975B-3F3E-4DE1-881D-AA7FF4CDDC80}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{1A7C3E9A-1E2D-4955-881A-EBB1E0D47727}] => (Allow) LPort=2869

FirewallRules: [{CB359BCB-E9E1-4CAF-A147-3C77126883DF}] => (Allow) LPort=1900

FirewallRules: [{76EB09D9-90CD-4460-9EF0-377F4EA3F547}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

FirewallRules: [{023D1B7F-9D6A-473F-B8D5-5CC74571F4AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [{E8069966-90AC-4D01-BF37-A6EA4F31B820}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe

FirewallRules: [{737B3537-55DE-45C3-A174-D458E30085D8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe

FirewallRules: [{F06E6738-3DAC-4FB0-90D1-46FA2CC07BFE}] => (Allow) LPort=53000

FirewallRules: [{C99CAF54-F0C2-474F-9063-2AFDED16D21A}] => (Allow) LPort=52000
 

==================== Wiederherstellungspunkte =========================
 

26-12-2015 21:08:20 AA11

26-12-2015 21:58:57 Installed AVG 2016

26-12-2015 22:00:28 Installed AVG

27-12-2015 05:26:35 Removed AVG

27-12-2015 05:28:39 Removed AVG 2016
 

==================== Fehlerhafte Geräte im Gerätemanager =============
 
 

==================== Fehlereinträge in der Ereignisanzeige: =========================
 

Applikationsfehler:

==================

Error: (12/27/2015 05:28:40 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary AVGIDSDriver.
 

System Error:

Das System kann die angegebene Datei nicht finden.

.
 

Error: (12/27/2015 05:28:40 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary AVGIDSHA.
 

System Error:

Das System kann die angegebene Datei nicht finden.

.
 

Error: (12/27/2015 05:28:40 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary AVG Anti-Rootkit Driver.
 

System Error:

Das System kann die angegebene Datei nicht finden.

.
 

Error: (12/27/2015 05:28:40 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/27/2015 05:26:51 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/26/2015 10:00:35 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/26/2015 09:59:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/26/2015 09:14:17 PM) (Source: SideBySide) (EventID: 78) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
 

Error: (12/26/2015 09:08:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/25/2015 09:50:08 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: BITSC:\Windows\System32\bitsperf.dll8
 
 

Systemfehler:

=============

Error: (12/27/2015 04:21:08 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)

Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Server-Anmeldeinformationen für TLS. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.
 

Error: (12/27/2015 04:21:01 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)

Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Server-Anmeldeinformationen für TLS. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.
 

Error: (12/27/2015 04:18:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Der Dienst "HPRegistrationSvc" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%1053
 

Error: (12/27/2015 04:18:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HPRegistrationSvc erreicht.
 

Error: (12/27/2015 04:17:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Benutzerdatenspeicher _284ea erreicht.
 

Error: (12/27/2015 04:17:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_284ea erreicht.
 

Error: (12/27/2015 04:17:05 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)

Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Server-Anmeldeinformationen für TLS. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.
 

Error: (12/27/2015 04:17:00 PM) (Source: DCOM) (EventID: 10010) (User: MANNIKR)

Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
 

Error: (12/27/2015 04:17:00 PM) (Source: DCOM) (EventID: 10010) (User: MANNIKR)

Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
 

Error: (12/27/2015 04:16:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Benutzerdatenzugriff_284ea" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
 
 

CodeIntegrity:

===================================

  Date: 2015-12-19 12:43:59.295

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-11 15:23:24.318

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-10 15:37:22.907

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-06 08:51:37.937

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-12-05 00:02:18.122

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-29 06:05:07.971

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 11:03:52.891

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 10:57:46.647

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 

  Date: 2015-11-28 10:42:00.514

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
 

==================== Speicherinformationen =========================== 
 

Prozessor: Intel(R) Core(TM) i3-3220T CPU @ 2.80GHz

Prozentuale Nutzung des RAM: 43%

Installierter physikalischer RAM: 8062.65 MB

Verfügbarer physikalischer RAM: 4553.7 MB

Summe virtueller Speicher: 8462.65 MB

Verfügbarer virtueller Speicher: 4475.37 MB
 

==================== Laufwerke ================================
 

Drive c: (OS) (Fixed) (Total:920.27 GB) (Free:836.98 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

Drive d: (Recovery Image) (Fixed) (Total:8.98 GB) (Free:1.05 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

Drive e: () (Removable) (Total:14.9 GB) (Free:12.45 GB) FAT32

Drive g: (USB DISK) (Removable) (Total:0.47 GB) (Free:0.33 GB) FAT

Drive i: (Volume) (Fixed) (Total:931.51 GB) (Free:442.58 GB) NTFS
 

==================== MBR & Partitionstabelle ==================
 

========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: C513D62E)
 

Partition: GPT.
 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B8CDDDC2)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 

========================================================

Disk: 3 (Size: 14.9 GB) (Disk ID: 00000000)
 

Partition: GPT.
 

========================================================

Disk: 4 (MBR Code: Windows XP) (Size: 483.5 MB) (Disk ID: C3072E18)

Partition 1: (Not Active) - (Size=483 MB) - (Type=06)
 

==================== Ende von Addition.txt ============================

Jetzt bitte Suchscan durchführen:

Schritt 1

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset