Karin2000 | 14.01.2016 11:13 | Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:10-01-2015 01
durchgeführt von Lucky (Administrator) auf KARINS-PC (14-01-2016 11:05:09)
Gestartet von C:\Users\Lucky\Desktop
Geladene Profile: Lucky (Verfügbare Profile: Lucky)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 8 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
() C:\vestyyb\lectunqo.exe
() C:\vestyyb\zyleny5uzp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Realtek Semiconductor Corp.) C:\Windows\SOUNDMAN.EXE
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avcenter.exe
(Farbar) C:\Users\Lucky\Desktop\FRST(3).exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [577536 2006-11-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [129272 2015-03-16] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2015-04-10] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\Antivirus\avgnt.exe [803200 2015-12-03] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiscSpaceChecks] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiscSpaceChecks] 1
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Run: [marriage-object] => C:\Users\Lucky\AppData\Local\Temp\Marriage-earn\marriage-is.exe <===== ACHTUNG
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Run: [reception-put] => C:\Users\Lucky\AppData\Local\Temp\Receptionlawyer\reception-sign.exe <===== ACHTUNG
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Run: [Information Debugger Framework] => C:\pzkwhahr\njvmmjc.exe
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Run: [Event Web WMI Cryptographic Protected] => C:\Users\Lucky\AppData\Local\qhjvhrtepgx.exe
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Policies\Explorer: [NoLowDiscSpaceChecks] 1
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\MountPoints2: {54e1949f-bf12-11e4-b097-001617ec166d} - F:\Startme.exe
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\MountPoints2: {a67930b4-6e8f-11e2-b70b-001617ec166d} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.hta
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\MountPoints2: {c0e32621-d84a-11e0-8c34-001617ec166d} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.hta
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\MountPoints2: {d1157837-844a-11e0-9243-001617ec166d} - H:\SETUP.EXE
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-05-16] (Microsoft Corporation)
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiscSpaceChecks] 1
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0ABDF978-0D54-4483-9A34-7FEE73217610}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1C78B01B-964A-4409-9C46-4D21F9A1D3C9}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{49518249-27CC-461B-A836-A5E59B750DE2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{8C9CDAC7-65D0-4C3B-9854-C2B549649AC1}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{D1C878AA-B664-44D6-9D6F-FBC723FCE791}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google/
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-1292532447-2879063981-405108469-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1292532447-2879063981-405108469-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-04-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-04-29] (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Lucky\AppData\Roaming\Mozilla\Firefox\Profiles\fnm64uyy.default-1431877620192
FF Homepage: hxxp://google.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @java.com/DTPlugin,version=10.79.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-04-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.79.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-04-29] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @real.com/nprjplug;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll [2012-11-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-11-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-11-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\Magic Video Converter\codec\real\browser\plugins\nprpjplug.dll [Keine Datei]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1292532447-2879063981-405108469-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucky\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [Keine Datei]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-07-03] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-07-03] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-07-03] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-07-03] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-07-03] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2012-11-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF Extension: Kein Name - C:\Users\Lucky\AppData\Roaming\Mozilla\Firefox\Profiles\fnm64uyy.default-1431877620192\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-01-08] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\Lucky\AppData\Roaming\Mozilla\Firefox\Profiles\fnm64uyy.default-1431877620192\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-01-08] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\Lucky\AppData\Roaming\Mozilla\Firefox\Profiles\fnm64uyy.default-1431877620192\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-02] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\Lucky\AppData\Roaming\Mozilla\Firefox\Profiles\fnm64uyy.default-1431877620192\Extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi [2016-01-08] [ist nicht signiert]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2016-01-11] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-09-28] [ist nicht signiert]
FF HKU\S-1-5-21-1292532447-2879063981-405108469-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR Profile: C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-17]
CHR Extension: (Google Docs) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-17]
CHR Extension: (Google Drive) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-06]
CHR Extension: (Google-Suche) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Tabellen) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-17]
CHR Extension: (Google Docs Offline) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-24]
CHR Extension: (Google Mail) - C:\Users\Lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-17]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [948392 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [466408 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [466408 2015-12-03] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1418560 2015-12-03] (Avira Operations GmbH & Co. KG)
S2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [201008 2015-03-16] (Avira Operations GmbH & Co. KG)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [660992 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
S4 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S4 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-09-28] (Ulead Systems, Inc.) [Datei ist nicht signiert]
R2 UserMode Detection Internet DCOM; C:\vestyyb\lectunqo.exe [439296 2016-01-14] () [Datei ist nicht signiert]
S2 Block Trap Keying KtmRm Collector Extensible; C:\Windows\qhjvhrtepgx.exe [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 61883; C:\Windows\System32\DRIVERS\61883.sys [46976 2009-07-14] (Microsoft Corporation)
R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [4027840 2007-03-08] (Realtek Semiconductor Corp.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106968 2015-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136272 2015-12-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [55456 2015-12-03] (Avira Operations GmbH & Co. KG)
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-13] (VIA Technologies, Inc. )
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2015-02-28] (Sony Mobile Communications)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [107736 2014-05-08] (Malwarebytes Corporation)
S3 MSI_DVD_010507; E:\Program Files\MSI\MSIWDev\DVDSYS32_100507.sys [22328 2010-05-10] (Your Corporation)
S3 MSI_MSIBIOS_010507; E:\Program Files\MSI\MSIWDev\msibios32_100507.sys [25912 2010-05-10] (Your Corporation)
S3 MSI_VGASYS_010507; E:\Program Files\MSI\MSIWDev\VGASYS32_100507.sys [16696 2010-05-10] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [31848 2015-12-03] (Avira Operations GmbH & Co. KG)
R0 videX32; C:\Windows\System32\DRIVERS\videX32.sys [13976 2014-06-30] (VIA Technologies, Inc.)
S3 VX1000; C:\Windows\System32\DRIVERS\VX1000.sys [1961072 2010-05-20] (Microsoft Corporation)
R0 xfilt; C:\Windows\System32\DRIVERS\xfilt.sys [23192 2014-06-30] (VIA Technologies, Inc.)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-14 11:05 - 2016-01-14 11:05 - 00019364 _____ C:\Users\Lucky\Desktop\FRST.txt
2016-01-14 11:04 - 2016-01-14 11:04 - 00000000 ____D C:\Users\Lucky\Desktop\FRST
2016-01-14 10:26 - 2016-01-14 10:26 - 00001756 _____ C:\Users\Lucky\Downloads\afixlist.txt
2016-01-14 10:19 - 2016-01-14 10:19 - 00001756 _____ C:\Users\Lucky\Documents\anichtfixlist.txt
2016-01-14 07:14 - 2016-01-14 10:40 - 00000000 ___HD C:\vestyyb
2016-01-14 07:14 - 2016-01-14 10:40 - 00000000 ____D C:\Windows\vestyyb
2016-01-13 22:44 - 2016-01-13 22:44 - 03692095 _____ C:\Users\Lucky\Desktop\Nachteilsausgleich Schule und Krankheit.pdf
2016-01-12 21:44 - 2015-12-29 08:50 - 01353216 ____H C:\Users\Lucky\AppData\Local\sgmlhkdhwp.exe
2016-01-12 20:23 - 2016-01-12 20:14 - 01721856 _____ (Farbar) C:\Users\Lucky\Desktop\FRST(3).exe
2016-01-12 20:22 - 2016-01-14 11:05 - 00000000 ____D C:\FRST
2016-01-12 18:18 - 2016-01-12 18:18 - 00097220 _____ C:\Users\Lucky\Documents\Ereignisse.txt
2016-01-11 22:38 - 2016-01-11 22:38 - 00000000 ____D C:\Users\Lucky\AppData\Local\Apps\2.0
2016-01-11 15:51 - 2016-01-14 07:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-01-11 15:04 - 2016-01-12 19:50 - 00000000 ____D C:\Users\Lucky\AppData\LocalLow\HPAppData
2016-01-08 23:27 - 2016-01-08 23:27 - 00000000 ____D C:\Users\Lucky\AppData\Roaming\Sun
2016-01-08 23:27 - 2016-01-08 23:27 - 00000000 ____D C:\Users\Lucky\.oracle_jre_usage
2016-01-08 20:03 - 2016-01-08 20:03 - 00584288 _____ (Oracle Corporation) C:\Users\Lucky\Downloads\jre-8u66-windows-i586-iftw.exe
2016-01-08 19:12 - 2016-01-08 19:12 - 00000000 ____D C:\Users\Lucky\AppData\Roaming\Avira
2016-01-08 19:08 - 2016-01-08 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-01-08 19:04 - 2015-12-03 15:25 - 00031848 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\ssmdrv.sys
2016-01-08 19:03 - 2015-12-03 15:24 - 00136272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-01-08 19:03 - 2015-12-03 15:24 - 00106968 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-01-08 19:03 - 2015-12-03 15:24 - 00055456 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-01-08 19:03 - 2015-12-03 15:24 - 00037896 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2016-01-08 11:21 - 2016-01-08 11:21 - 01749504 _____ C:\Users\Lucky\Downloads\adwcleaner_5.028.exe
2016-01-07 10:00 - 2016-01-14 10:35 - 00000000 ___HD C:\recyclebin
2016-01-06 14:23 - 2016-01-06 14:23 - 00035353 _____ C:\Windows\clientutils.js
2016-01-06 14:23 - 2016-01-06 14:23 - 00021401 _____ C:\Windows\utils.js
2016-01-06 14:23 - 2016-01-06 14:23 - 00000767 _____ C:\Windows\package.json
2016-01-05 08:37 - 2016-01-05 08:37 - 00164864 _____ (Info-Zip <www.info-zip.org>) C:\Windows\unzip.exe
2016-01-05 08:36 - 2016-01-11 15:15 - 00000000 ___HD C:\Windows\ixzcowkdpq
2016-01-04 22:40 - 2016-01-01 22:35 - 321867029 _____ C:\Users\Lucky\Downloads\Touch.S02E13.Leviathan.GERMAN.DUBBED.WebHDRiP.x264-SOF.mkv
2016-01-04 22:37 - 2016-01-01 22:41 - 318534129 _____ C:\Users\Lucky\Downloads\Touch.S02E12.Kampf.oder.Flucht.GERMAN.DUBBED.WebHDRiP.x264-SOF.mkv
2016-01-04 22:35 - 2016-01-02 23:35 - 00000000 ____D C:\Users\Lucky\Downloads\The.Fosters.S02E16.Wenn.du.nur.wuesstest*.German.Dubbed.DL.iTunesHD.x264-TVS
2016-01-04 22:32 - 2016-01-04 22:32 - 00000000 ____D C:\Users\Lucky\Downloads\Castle07,15
2016-01-04 22:31 - 2016-01-03 01:11 - 00000000 ____D C:\Users\Lucky\Downloads\The.Following.S03E07.Verfolgungsjagd.German.Dubbed.DL.BD.x264-TVS
2016-01-04 22:18 - 2016-01-05 15:47 - 00000000 ____D C:\Users\Lucky\Downloads\The.Leftovers.S02E03.Ausfahrt.German.Dubbed.DL.HDTV.x264-TVS
2016-01-04 22:15 - 2016-01-04 20:21 - 00000000 ____D C:\Users\Lucky\Downloads\Switched.at.Birth.S03E17.Maedchen.mit.Totenmaske.German.iTunesHD.x264-TVS
2016-01-04 22:13 - 2015-12-21 00:25 - 00000000 ____D C:\Users\Lucky\Downloads\The.Man.In.The.High.Castle.S01E01.Die.neue.Welt.German.Dubbed.WEBRip.x264-CRiSP
2016-01-03 00:17 - 2016-01-03 00:17 - 00000000 ____D C:\Users\Lucky\AppData\Local\Ofi Labs
2016-01-01 18:36 - 2015-12-30 18:37 - 00000000 ____D C:\Users\Lucky\Downloads\Southland.S05E03.Babel.German.Dubbed.DL.iTunesHD.x264-TVS
2016-01-01 13:22 - 2013-07-28 16:24 - 00450371 _____ C:\Windows\system32\Drivers\etc\hosts.20160101-132226.backup
2015-12-30 19:29 - 2015-12-27 22:08 - 438538670 _____ C:\Users\Lucky\Downloads\Da.Vincis.Demons.S03E10.Der.Zorn.Gottes.GERMAN.DUBBED.WS.HDTVRip.x264-TVP.mkv
2015-12-30 19:26 - 2015-12-28 16:12 - 00000000 ____D C:\Users\Lucky\Downloads\Switched.at.Birth.S03E16.The.Image.Disappears.German.iTunesHD.x264-TVS
2015-12-30 19:25 - 2015-12-29 22:33 - 00000000 ____D C:\Users\Lucky\Downloads\Legends.S02E07.Die.zweite.Legende.von.Dmitry.Petrovich.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-30 19:23 - 2016-01-01 18:26 - 00000000 ____D C:\Users\Lucky\Downloads\Reign.S02E19.Der.Prinzgemahl.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-30 12:18 - 2015-12-30 12:18 - 00206994 _____ C:\Users\Lucky\Desktop\Kilometergeldabrechnung Dezember 2015 signiert.pdf
2015-12-29 08:50 - 2015-12-29 08:50 - 00164864 _____ (Info-Zip <www.info-zip.org>) C:\Users\Lucky\AppData\Local\unzip.exe
2015-12-27 22:24 - 2015-12-01 21:56 - 179389837 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E10.Erwischt.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:23 - 2015-11-25 00:07 - 230188688 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E09.Mieses.Karma.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:22 - 2015-11-17 23:43 - 161966220 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E08.Zen.und.die.Kunst.des.Schoenseins.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:21 - 2015-11-10 20:16 - 157430188 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E07.Grsse.Erwartungen.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:20 - 2015-11-02 23:22 - 200990324 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E06.Himmelhoch.jauchzend.zu.Tode.betruebt.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:19 - 2015-10-19 19:26 - 175375298 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E05.Geburtstags.Ueberraschung.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:18 - 2015-10-05 20:47 - 206297125 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E03.Heisse.Flirts.und.Sprachbarrieren.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:17 - 2015-09-28 21:10 - 153215213 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E02.Pflicht.oder.Wahrheit.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:16 - 2015-10-12 19:38 - 182230796 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E04.Luegenbarone.und.Drama.Queens.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:15 - 2015-09-21 21:36 - 182329643 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S02E01.Der.Morgen.danach.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:13 - 2015-08-06 13:29 - 159046543 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S01E08.Verbrannter.Toast.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:11 - 2015-08-06 13:29 - 176492554 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S01E07.Die.vorgetaeuschte.Trennung.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:10 - 2015-08-06 13:29 - 162798923 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S01E06.Der.Dreier.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:09 - 2015-08-06 13:29 - 151883099 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S01E05.Der.einmalige.Croquembouche.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:08 - 2015-08-06 13:29 - 186341767 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S01E04.Kenne.dich.selbst.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-27 22:07 - 2015-08-06 13:28 - 201623992 _____ C:\Users\Lucky\Downloads\Faking.It.2014.S01E03.Ueberkompensation.GERMAN.DUBBED.DL.WS.WEBRip.h264-YRAG.mkv
2015-12-26 13:20 - 2015-12-25 02:18 - 00000000 ____D C:\Users\Lucky\Downloads\Rectify.S03E06.Hoffnung.auf.Vergebung.GERMAN.DUBBED.WS.WEBRip.x264-TVP
2015-12-25 09:28 - 2015-12-25 00:04 - 00000000 ____D C:\Users\Lucky\Downloads\The.Following.S03E06.Tief.im.Wald.German.Dubbed.BDRip.x264-ITG
2015-12-25 09:26 - 2015-12-24 13:26 - 00000000 ____D C:\Users\Lucky\Downloads\Motive-X-SL-302
2015-12-24 12:47 - 2015-12-20 22:34 - 00000000 ____D C:\Users\Lucky\Downloads\The.Following.S03E05.Die.Wahrheit.kann.schaden.German.Dubbed.DL.BD.x264-TVS
2015-12-24 12:43 - 2015-12-13 17:39 - 00000000 ____D C:\Users\Lucky\Downloads\The.Following.S03E04.Home.German.Dubbed.DL.BD.x264-TVS
2015-12-24 12:39 - 2015-12-20 23:59 - 443458333 _____ C:\Users\Lucky\Downloads\Da.Vincis.Demons.S03E09.Der.Racheengel.GERMAN.DUBBED.WS.HDTVRip.x264-TVP.mkv
2015-12-24 12:37 - 2015-12-21 20:47 - 00000000 ____D C:\Users\Lucky\Downloads\Switched.at.Birth.S03E15.Und.wir.tragen.das.Licht.German.iTunesHD.x264-TVS
2015-12-24 12:35 - 2015-12-22 19:18 - 00000000 ____D C:\Users\Lucky\Downloads\Strike.Back.Legacy.S05E03.Die.Mission.Teil.1.GERMAN.HDTVRiP.x264-SOF
2015-12-24 12:32 - 2015-12-15 21:56 - 00000000 ____D C:\Users\Lucky\Downloads\Strike.Back.Legacy.S05E02.Office.39.GERMAN.HDTVRiP.x264-SOF
2015-12-24 12:29 - 2015-12-07 23:34 - 00000000 ____D C:\Users\Lucky\Downloads\Strike.Back.Legacy.S05E01.Chloe.GERMAN.HDTVRiP.x264-SOF
2015-12-24 12:24 - 2015-12-22 19:48 - 00000000 ____D C:\Users\Lucky\Downloads\The.Fosters.S02E15.Das.Doppeldate.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-24 12:22 - 2015-12-23 15:36 - 00000000 ____D C:\Users\Lucky\Downloads\Southland.S05E02.Der.Tod.kommt.schnell.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-24 12:20 - 2015-12-23 14:52 - 00000000 ____D C:\Users\Lucky\Downloads\Legends.S02E06.Die.Legende.von.Tamir.Zakayev.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-21 12:19 - 2015-12-19 18:17 - 387488070 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e09-480p.mkv
2015-12-21 12:18 - 2015-12-19 18:17 - 370216667 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e08-480p.mkv
2015-12-21 12:15 - 2015-12-19 18:17 - 413715677 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e07-480p.mkv
2015-12-19 14:38 - 2015-12-20 22:45 - 00000000 ____D C:\Users\Lucky\Downloads\Agent.X.S01E07.GERMAN.HDTV.x264-ACED
2015-12-19 14:00 - 2015-12-18 12:51 - 494580339 _____ C:\Users\Lucky\Downloads\Crossing.Lines.S03E12.Der.Anschlag.German.DD51.HDTVRiP.x264-GDR.mkv
2015-12-19 13:57 - 2015-12-18 12:36 - 475708300 _____ C:\Users\Lucky\Downloads\Crossing.Lines.S03E11.Die.Story.German.DD51.HDTVRiP.x264-GDR.mkv
2015-12-19 13:54 - 2015-12-18 12:21 - 502501223 _____ C:\Users\Lucky\Downloads\Crossing.Lines.S03E10.Falsches.Spiel.German.DD51.HDTVRiP.x264-GDR.mkv
2015-12-19 13:51 - 2015-12-11 02:04 - 453100349 _____ C:\Users\Lucky\Downloads\Crossing.Lines.S03E09.Ein.falscher.Freund.German.DD51.HDTVRiP.x264-GDR.mkv
2015-12-19 13:49 - 2015-12-04 01:56 - 491836849 _____ C:\Users\Lucky\Downloads\Crossing.Lines.S03E08.Lockvoegel.German.DD51.HDTVRiP.x264-GDR.mkv
2015-12-19 13:42 - 2015-12-18 21:17 - 00000000 ____D C:\Users\Lucky\Downloads\Southland.S05E01.Alles.nur.ein.Zirkus.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-19 13:40 - 2016-01-08 18:24 - 00000000 ____D C:\Users\Lucky\Downloads\Royal.Pains.S05E12.Nachgehakt.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-17 19:51 - 2015-12-16 22:58 - 400254641 _____ C:\Users\Lucky\Downloads\American.Horror.Story.S05E04.Die.Teufelsnacht.GERMAN.DUBBED.WS.WEBRip.x264-TVP.mkv
2015-12-17 19:48 - 2015-12-17 08:51 - 00000000 ____D C:\Users\Lucky\Downloads\Rectify.S03E05.Auf.die.Zukunft.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-16 08:24 - 2015-12-15 22:20 - 00000000 ____D C:\Users\Lucky\Downloads\Legends.S02E05.Die.Legende.von.Terrence.Graves.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-15 22:31 - 2015-12-15 04:06 - 00000000 ____D C:\Users\Lucky\Downloads\Public.Morals.2015.S01E01.Ein.schmaler.Grat.German.Dubbed.HDTV.x264-ITG
2015-12-15 09:23 - 2015-12-12 18:46 - 418164775 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e06-480p.mkv
2015-12-15 09:16 - 2015-12-12 18:47 - 432432393 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e05-480p.mkv
2015-12-15 09:11 - 2015-12-12 18:46 - 423045971 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e04-480p.mkv
2015-12-15 09:07 - 2015-12-05 01:19 - 418719064 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e03-480p.mkv
2015-12-15 09:02 - 2015-12-04 23:32 - 392989585 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e02-480p.mkv
2015-12-15 08:58 - 2015-12-04 23:17 - 340396989 _____ C:\Users\Lucky\Downloads\tvp-bluebloods-s04e01-480p.mkv
2015-12-15 08:54 - 2015-12-15 07:48 - 00000000 ____D C:\Users\Lucky\Downloads\Elementary.S03E24.Der.Pate.GERMAN.DUBBED.WebHDRiP.x264-SOF
2015-12-15 08:51 - 2015-12-13 23:23 - 487496039 _____ C:\Users\Lucky\Downloads\Da.Vincis.Demons.S03E08.Das.Bekenntnis.der.Maschine.GERMAN.DUBBED.WS.HDTVRip.x264-TVP.mkv
2015-12-15 08:48 - 2015-12-14 14:41 - 00000000 ____D C:\Users\Lucky\Downloads\Switched.at.Birth.S03E14.Oh.Zukunft.German.iTunesHD.x264-TVS
2015-12-15 08:46 - 2015-12-15 01:14 - 00000000 ____D C:\Users\Lucky\Downloads\The.Fosters.S02E14.Mutter.Natur.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-15 08:44 - 2015-12-14 03:19 - 00000000 ____D C:\Users\Lucky\Downloads\The.Fosters.S02E13.Kiara.REPACK.German.Dubbed.DL.iTunesHD.x264-TVS
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-14 10:48 - 2009-07-14 05:34 - 00019712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-14 10:48 - 2009-07-14 05:34 - 00019712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-14 10:40 - 2014-03-19 12:57 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-14 10:40 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-14 10:40 - 2009-07-14 03:37 - 00000000 ____D C:\Windows
2016-01-14 10:35 - 2011-02-21 19:04 - 00000000 ___SD C:\Users\Lucky\AppData\LocalLow\Temp
2016-01-14 10:06 - 2012-06-16 18:08 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-14 10:05 - 2006-01-01 02:49 - 00000000 ____D C:\Users\Lucky\AppData\Roaming\vlc
2016-01-14 08:37 - 2012-07-02 22:39 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1292532447-2879063981-405108469-1001UA.job
2016-01-14 07:12 - 2012-05-03 06:21 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-01-13 23:37 - 2012-07-02 22:39 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1292532447-2879063981-405108469-1001Core.job
2016-01-12 20:23 - 2011-02-21 18:32 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-12 20:23 - 2009-07-14 09:47 - 00653928 _____ C:\Windows\system32\perfh007.dat
2016-01-12 20:23 - 2009-07-14 09:47 - 00129800 _____ C:\Windows\system32\perfc007.dat
2016-01-12 20:23 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-01-11 15:16 - 2011-02-21 18:26 - 00000000 ____D C:\Users\Lucky
2016-01-11 15:15 - 2015-04-29 07:16 - 00000000 ____D C:\Program Files\Common Files\Java
2016-01-11 15:15 - 2014-10-16 13:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-11 15:15 - 2014-10-16 13:09 - 00000000 ____D C:\Program Files\Java
2016-01-11 15:15 - 2013-07-09 16:30 - 00000000 ____D C:\Program Files\JDownloader
2016-01-11 15:15 - 2011-11-18 09:42 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-01-11 15:15 - 2011-04-18 10:16 - 00000000 ____D C:\Users\Lucky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-01-11 15:15 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2016-01-11 15:15 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration
2016-01-11 15:14 - 2012-06-10 14:27 - 00000000 ____D C:\ProgramData\Real
2016-01-10 22:05 - 2012-01-17 19:07 - 00010333 _____ C:\Users\Lucky\Documents\Entschuldigung.odt
2016-01-10 00:33 - 2014-09-11 08:49 - 00000000 ____D C:\Users\Lucky\Desktop\Karin FAS Listen
2016-01-08 23:29 - 2013-09-19 21:08 - 00000000 ____D C:\ProgramData\Oracle
2016-01-08 19:03 - 2014-04-06 22:18 - 00000000 ____D C:\ProgramData\Avira
2016-01-08 19:03 - 2014-04-06 22:18 - 00000000 ____D C:\Program Files\Avira
2016-01-08 17:39 - 2012-07-11 16:11 - 00000000 ____D C:\Program Files\AviSynth 2.5
2016-01-08 11:34 - 2013-11-02 12:36 - 00000000 ____D C:\AdwCleaner
2016-01-08 10:14 - 2015-10-23 07:45 - 00013937 _____ C:\Users\Lucky\Desktop\Fas Abrechnung Januar 2016.odt
2016-01-08 07:39 - 2015-02-14 13:03 - 00000000 ____D C:\Users\Lucky\AppData\Local\JDownloader 2.0
2016-01-05 18:03 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Windows Defender
2016-01-02 13:06 - 2012-06-16 18:08 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-01-02 13:06 - 2012-06-16 18:08 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-01-01 20:16 - 2006-01-01 02:39 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-01-01 20:14 - 2015-02-28 17:51 - 00000000 ____D C:\ProgramData\Sony Mobile
2016-01-01 20:14 - 2015-02-28 17:51 - 00000000 ____D C:\Program Files\Sony Mobile
2016-01-01 11:20 - 2015-02-14 14:43 - 00224024 _____ C:\Windows\ntbtlog.txt
2015-12-23 10:57 - 2014-12-05 10:54 - 00014225 _____ C:\Users\Lucky\Desktop\FAS Abrechnung Dezember 2015.odt
2015-12-22 18:00 - 2015-11-28 11:41 - 00000000 ____D C:\Users\Lucky\Downloads\The.Royals.S01E01.Steht.und.gebt.Euch.kund.German.Dubbed.DL.iTunesHD.x264-TVS
2015-12-18 21:32 - 2015-12-03 13:57 - 00000000 ____D C:\Users\Lucky\Desktop\Rezepte
2015-12-17 23:33 - 2014-05-02 10:46 - 00065968 _____ C:\Users\Lucky\Desktop\Kilometergeldabrechnung Original.pdf
2015-12-17 23:32 - 2015-12-04 09:16 - 00169778 _____ C:\Users\Lucky\Desktop\Kilometergeldabrechnung Januar 2016.pdf
2015-12-15 19:04 - 2014-12-01 21:30 - 00017263 _____ C:\Users\Lucky\Documents\Geburtstage Italien.odt
2015-12-15 11:04 - 2006-01-01 01:28 - 00000000 ____D C:\alte platte
2015-12-15 09:27 - 2012-06-24 12:03 - 00000000 ____D C:\Users\Lucky\Downloads\FILME
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-07-11 16:09 - 2012-07-11 16:10 - 5082084 _____ (The Public) C:\Users\Lucky\AppData\Roaming\Avisynth.exe
2012-07-11 16:10 - 2012-07-11 16:10 - 5243208 _____ ( ) C:\Users\Lucky\AppData\Roaming\AvsP.exe
2012-07-11 16:10 - 2012-07-11 16:10 - 5514668 _____ (LIGHTNING UK!) C:\Users\Lucky\AppData\Roaming\Imgburn.exe
2012-07-11 16:10 - 2012-07-11 16:10 - 1357348 _____ () C:\Users\Lucky\AppData\Roaming\MatroskaSplitter.exe
2012-07-11 16:10 - 2012-07-11 16:10 - 7760687 _____ (Boraxsoft) C:\Users\Lucky\AppData\Roaming\SetupGFD.exe
2012-07-11 16:10 - 2012-07-11 16:10 - 0117723 _____ () C:\Users\Lucky\AppData\Roaming\yuvcodecs-1.3.exe
2016-01-12 21:44 - 2015-12-29 08:50 - 1353216 ____H () C:\Users\Lucky\AppData\Local\sgmlhkdhwp.exe
2015-12-29 08:50 - 2015-12-29 08:50 - 0164864 _____ (Info-Zip <www.info-zip.org>) C:\Users\Lucky\AppData\Local\unzip.exe
2011-09-28 16:04 - 2013-07-09 18:13 - 0002623 _____ () C:\ProgramData\hpzinstall.log
2011-04-09 14:43 - 2011-04-09 14:43 - 0005115 _____ () C:\ProgramData\mtbjfghn.xbe
Einige Dateien in TEMP:
====================
C:\Users\Lucky\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-09 20:58
==================== Ende vom FRST.txt ============================ |