Trojaner-Board
Seite 3 von 4 12 3 4
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Browser lädt nicht trotz Internetverbindung (https://www.trojaner-board.de/186153-browser-laedt-trotz-internetverbindung.html)

Ani73 15.07.2017 19:19
Hallo cosinus. Ist das das richtige?

Code:
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.07.14.09
  rootkit: v2017.05.27.01

Windows 10 x64 NTFS
Internet Explorer 11.1007.10586.0
Charly :: RENÉ [administrator]

14.07.2017 21:53:49
mbar-log-2017-07-14 (21-53-49).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 331548
Time elapsed: 54 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
Lg Ani

cosinus 15.07.2017 19:53
ja, das war richtig. Signaturen waren auch aktuell.


Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!



1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Werkzeuge > Optionen und vergewissere dich, dass adwCleaner so eingestellt wie auf diesem Screenshot zu sehen:

    http://saved.im/mtg4nzk1egdo/malware...r-settings.png
  • Bestätige die Auswahl mit Ok.
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


Ani73 15.07.2017 20:40
Hier sind die log Dateien des AdwCleaner und des Junkware Removal Tool:

Code:
# AdwCleaner v6.047 - Bericht erstellt am 15/07/2017 um 21:24:43
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-07-13.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Charly - RENÉ
# Gestartet von : C:\Users\Charly\Downloads\AdwCleaner_6.047.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\ProgramData\Avg_Update_0215tb
[-] Ordner gelöscht: C:\Users\Charly\AppData\Local\YSearchUtil
[-] Ordner gelöscht: C:\Users\Charly\AppData\LocalLow\avg web tuneup
[-] Ordner gelöscht: C:\Users\Charly\AppData\Roaming\RPEng
[-] Ordner gelöscht: C:\Program Files\Common Files\AVG Secure Search
[-] Ordner gelöscht: C:\ProgramData\apn
[-] Ordner gelöscht: C:\ProgramData\AVG Secure Search
[-] Ordner gelöscht: C:\Program Files (x86)\Yahoo!\yset
[-] Ordner gelöscht: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil
[-] Ordner gelöscht: C:\Users\Default User\AppData\Local\Pokki
[#] Ordner mit Neustart gelöscht: C:\Users\Default\AppData\Local\Pokki
[-] Ordner gelöscht: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
[-] Ordner gelöscht: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn


***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Schlüssel gelöscht: HKU\S-1-5-21-2170906037-549936913-1423911947-1001\Software\AVG Tuneup
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\AVG Tuneup
[-] Schlüssel gelöscht: HKLM\SOFTWARE\AVG Tuneup
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\AVG Tuneup
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Google\Chrome\Extensions\eiibddcohpjhajbnfkpboacmohommppp


***** [ Browser ] *****

[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: aaaaahaeginbdcckocjkhbciadcafnep
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: aaaaahlfahldnilidgnlikdckbfehhca
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: aaipilfmheplbcghignccoiiebekkdhe
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: booedmolknjekdopkepjjeckmjkdpfgl
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: ddkeieaieohnceanbhdeijclgemgjjkf
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: eiibddcohpjhajbnfkpboacmohommppp
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: flpcjncodpafbgdpnkljologafpionhb
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: gbmdkmlcnbapgegninelmjbfibaghdmk
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: ihokndmjeombjojnfkmapfnjeghjohim
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Gelöscht: aaaaaiabcopkplhgaedhbloeejhhankf


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7502 Bytes] - [15/07/2017 21:24:43]
C:\AdwCleaner\AdwCleaner[R0].txt - [3330 Bytes] - [28/09/2014 16:12:29]
C:\AdwCleaner\AdwCleaner[S0].txt - [3115 Bytes] - [28/09/2014 16:13:34]
C:\AdwCleaner\AdwCleaner[S1].txt - [7822 Bytes] - [15/07/2017 21:21:32]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7794 Bytes] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Charly (Administrator) on 15.07.2017 at 21:30:23,35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 1

Successfully deleted: C:\Users\Charly\AppData\Roaming\Mozilla\Firefox\Profiles\rzTTZNwE.default\user.js (File)



Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 15.07.2017 at 21:36:11,32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Gruß ani

cosinus 15.07.2017 21:37
Okay, beide Tools bitte zwecks Kontrolle wiederholen.

Ani73 16.07.2017 20:19
Hallo cosinus. Hier sind die anderen Dateien:

Code:
# AdwCleaner v6.047 - Bericht erstellt am 16/07/2017 um 21:07:29
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-07-13.1 [Lokal]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Charly - RENÉ
# Gestartet von : C:\Users\Charly\Downloads\AdwCleaner_6.047.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn


***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****



***** [ Browser ] *****

[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: aaipilfmheplbcghignccoiiebekkdhe
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: ddkeieaieohnceanbhdeijclgemgjjkf
[-] [C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: gbmdkmlcnbapgegninelmjbfibaghdmk


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7929 Bytes] - [15/07/2017 21:24:43]
C:\AdwCleaner\AdwCleaner[C2].txt - [1661 Bytes] - [16/07/2017 21:07:28]
C:\AdwCleaner\AdwCleaner[R0].txt - [3330 Bytes] - [28/09/2014 16:12:29]
C:\AdwCleaner\AdwCleaner[S0].txt - [3115 Bytes] - [28/09/2014 16:13:34]
C:\AdwCleaner\AdwCleaner[S1].txt - [7822 Bytes] - [15/07/2017 21:21:32]
C:\AdwCleaner\AdwCleaner[S2].txt - [2447 Bytes] - [16/07/2017 21:06:51]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [2026 Bytes] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Charly (Administrator) on 16.07.2017 at 21:15:03,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 16.07.2017 at 21:18:15,48
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Lg

cosinus 16.07.2017 22:58
Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.

http://www.trojaner-board.de/picture...&pictureid=611

Ani73 18.07.2017 17:11
Hallo cosinus,
sorry konnte gestern nicht an den Läppi, Tochter war nicht zuhause ;-)

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2017
durchgeführt von Charly (Administrator) auf RENÉ (18-07-2017 18:05:28)
Gestartet von C:\Users\Charly\Downloads
Geladene Profile: Charly (Verfügbare Profile: Charly)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
() C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8366.57611.0_x64__8wekyb3d8bbwe\onenoteim.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\winword.exe
(Microsoft Corporation) C:\WINDOWS\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [415128 2015-10-15] ()
HKLM\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2406496 2017-06-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3486520 2017-07-12] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [MediaFire Tray] => C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_watch.exe [4075008 2016-03-08] ()
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Spotify] => C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-15] (Spotify Ltd)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Spotify Web Helper] => C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-15] (Spotify Ltd)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\RunOnce: [Uninstall C:\Users\Charly\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Charly\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64"

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{af5a0a85-6121-4e8e-ab1c-cd3c47d75fdc}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> DefaultScope {91BD0348-48CB-4924-B633-EEA242BA7533} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C014DE662D20160105&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> {1516485F-8427-49EF-8F3F-A19DAC4B0769} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> {91BD0348-48CB-4924-B633-EEA242BA7533} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C014DE662D20160105&p={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-04-11] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-09-19] (DVDVideoSoft Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Charly\AppData\Roaming\Mozilla\Firefox\Profiles\rzTTZNwE.default [2017-07-15]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-06-04] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-10-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-06-04] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default [2017-07-18]
CHR Extension: (Google Docs) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Dark Skin for Youtube™) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2017-04-29]
CHR Extension: (YouTube) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (AVG Secure Search) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-07-16]
CHR Extension: (Google-Suche) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-02]
CHR Extension: (Skype) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-07-15]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-13]
CHR Extension: (Mein Chrome-Design) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2015-08-29]
CHR Extension: (Marc Ecko) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [2017-07-11]
CHR Extension: (Google Mail) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-13]
CHR Profile: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-12]
CHR Extension: (Google Präsentationen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-22]
CHR Extension: (Google Docs) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-22]
CHR Extension: (Google Drive) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-22]
CHR Extension: (YouTube) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-22]
CHR Extension: (Google-Suche) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-22]
CHR Extension: (Google Tabellen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-22]
CHR Extension: (SiteAdvisor) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-09-22]
CHR Extension: (Skype Click to Call) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-22]
CHR Extension: (Google Wallet) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-22]
CHR Extension: (Google Mail) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-22]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2170906037-549936913-1423911947-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-06-04] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-08] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-08] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-07-12] (Dropbox, Inc.)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-10] (ELAN Microelectronics Corp.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370064 2015-10-15] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-18] (Acer Incorporate)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MF NTFS Monitor; C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe [456176 2016-03-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-06-17] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [97184 2017-01-25] (Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R2 mfmonitor; C:\WINDOWS\System32\DRIVERS\mfmonitor_x64.sys [20696 2016-03-07] (Windows (R) Win 7 DDK provider)
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-07-18 18:05 - 2017-07-18 18:07 - 00017850 _____ C:\Users\Charly\Downloads\FRST.txt
2017-07-18 18:05 - 2017-07-18 18:05 - 02435584 _____ (Farbar) C:\Users\Charly\Downloads\FRST64.exe
2017-07-18 18:04 - 2017-07-18 18:04 - 00000000 ____D C:\Users\Charly\AppData\Local\Microsoft Help
2017-07-18 16:54 - 2017-07-18 17:03 - 00000000 ____D C:\Users\Charly\Documents\Stuggi Schule
2017-07-16 21:05 - 2017-07-16 21:05 - 00008704 ___SH C:\Users\Charly\Downloads\Thumbs.db
2017-07-15 21:36 - 2017-07-16 21:18 - 00000548 _____ C:\Users\Charly\Desktop\JRT.txt
2017-07-15 21:29 - 2017-07-15 21:30 - 01790024 _____ (Malwarebytes) C:\Users\Charly\Downloads\JRT.exe
2017-07-15 21:18 - 2017-07-15 21:18 - 04110280 _____ C:\Users\Charly\Downloads\AdwCleaner_6.047.exe
2017-07-14 21:53 - 2017-07-15 21:06 - 00000000 ____D C:\Users\Charly\Desktop\mbar
2017-07-14 21:53 - 2017-07-15 21:06 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-07-14 21:52 - 2017-07-14 21:52 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Charly\Desktop\mbar-1.09.3.1001.exe
2017-07-13 22:52 - 2017-07-13 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-07-13 17:16 - 2017-07-13 17:38 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-07-13 17:14 - 2017-07-13 17:14 - 08798992 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Charly\Downloads\AVG_Clear.exe
2017-07-12 21:58 - 2017-07-12 21:58 - 00049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-07-12 19:40 - 2017-07-12 19:41 - 00000000 ____D C:\Users\Charly\AppData\Local\Avg
2017-07-12 18:22 - 2017-07-07 12:04 - 00808280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-07-12 18:22 - 2017-07-07 11:16 - 00700880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-07-12 18:22 - 2017-07-07 11:09 - 02945648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-07-12 18:22 - 2017-07-07 11:09 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-07-12 18:22 - 2017-07-07 11:05 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-07-12 18:22 - 2017-07-07 10:57 - 00295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-07-12 18:22 - 2017-07-07 10:35 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-07-12 18:22 - 2017-07-07 09:49 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-07-12 18:22 - 2017-07-07 09:48 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-07-12 18:22 - 2017-07-07 09:33 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-07-12 18:22 - 2017-07-07 09:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-07-12 18:22 - 2017-07-07 09:21 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-07-12 18:22 - 2017-07-07 09:17 - 02279936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-07-12 18:22 - 2017-07-07 09:08 - 00788992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-07-12 18:22 - 2017-07-07 09:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-07-12 18:22 - 2017-07-07 09:07 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-07-12 18:22 - 2017-07-07 09:03 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-07-12 18:22 - 2017-07-07 08:59 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-07-12 18:22 - 2017-07-07 08:36 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-07-12 18:22 - 2017-07-07 08:34 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-07-12 18:22 - 2017-07-07 08:33 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-07-12 18:22 - 2017-07-07 08:31 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-07-12 18:22 - 2017-07-07 08:11 - 05326848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 18:22 - 2017-06-17 11:52 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-07-12 18:22 - 2017-06-17 11:09 - 06536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-07-12 18:22 - 2017-06-17 09:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-07-12 18:22 - 2017-06-17 09:11 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-07-12 18:22 - 2017-06-17 08:54 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-07-12 18:22 - 2017-06-17 08:54 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-07-12 18:22 - 2017-06-17 08:53 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-07-12 18:22 - 2017-06-17 08:48 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-12 18:22 - 2017-06-17 08:44 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-07-12 18:22 - 2017-06-17 08:42 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-07-12 18:22 - 2017-06-17 08:39 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-07-12 18:22 - 2017-06-17 08:34 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-07-12 18:22 - 2017-06-17 08:30 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-07-12 18:22 - 2017-06-17 08:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-07-12 18:22 - 2017-06-17 08:20 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-07-12 18:22 - 2017-06-17 08:20 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-07-12 18:22 - 2017-06-17 08:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-07-12 18:22 - 2017-06-17 08:15 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-12 18:22 - 2017-06-17 08:05 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-07-12 18:22 - 2017-06-17 07:56 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-07-12 18:22 - 2017-06-17 07:53 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-07-12 18:22 - 2017-06-17 07:42 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-07-12 18:22 - 2017-06-17 07:41 - 02770432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-07-12 18:22 - 2017-06-17 07:35 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-07-12 18:22 - 2017-06-17 07:30 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-07-12 18:22 - 2017-06-17 07:27 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-12 18:22 - 2017-06-17 07:16 - 03574272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-12 18:22 - 2017-06-17 07:02 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-07-12 18:22 - 2017-03-18 18:41 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-07-12 18:21 - 2017-07-07 13:07 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-12 18:21 - 2017-07-07 13:06 - 07463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 18:21 - 2017-07-07 13:04 - 02149216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-12 18:21 - 2017-07-07 13:04 - 00384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-12 18:21 - 2017-07-07 12:51 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-12 18:21 - 2017-07-07 12:11 - 00858992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-07-12 18:21 - 2017-07-07 12:03 - 03699280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-07-12 18:21 - 2017-07-07 12:00 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-07-12 18:21 - 2017-07-07 12:00 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-07-12 18:21 - 2017-07-07 11:58 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-07-12 18:21 - 2017-07-07 11:58 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-07-12 18:21 - 2017-07-07 11:52 - 00360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-07-12 18:21 - 2017-07-07 11:21 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-07-12 18:21 - 2017-07-07 11:08 - 01090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-12 18:21 - 2017-07-07 11:08 - 00057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-07-12 18:21 - 2017-07-07 10:28 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-12 18:21 - 2017-07-07 10:22 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-07-12 18:21 - 2017-07-07 10:15 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-07-12 18:21 - 2017-07-07 10:13 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-12 18:21 - 2017-07-07 09:58 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-12 18:21 - 2017-07-07 09:57 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-12 18:21 - 2017-07-07 09:57 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-07-12 18:21 - 2017-07-07 09:56 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-12 18:21 - 2017-07-07 09:54 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-07-12 18:21 - 2017-07-07 09:51 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-12 18:21 - 2017-07-07 09:50 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-07-12 18:21 - 2017-07-07 09:45 - 01424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-12 18:21 - 2017-07-07 09:17 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-12 18:21 - 2017-07-07 09:13 - 03404800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-12 18:21 - 2017-07-07 09:10 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-07-12 18:21 - 2017-07-07 09:07 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-07-12 18:21 - 2017-07-07 09:02 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-07-12 18:21 - 2017-07-07 08:47 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-07-12 18:21 - 2017-07-07 08:44 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-12 18:21 - 2017-07-07 08:41 - 04891136 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-12 18:21 - 2017-07-07 08:37 - 22376960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 13394432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 06977024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 18:21 - 2017-07-07 08:15 - 18675200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-07-12 18:21 - 2017-07-07 08:15 - 03661312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 19345408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 12139008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 07848448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-07-12 18:21 - 2017-07-07 07:58 - 05666816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-07-12 18:21 - 2017-06-17 12:13 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-12 18:21 - 2017-06-17 12:11 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-07-12 18:21 - 2017-06-17 11:52 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-07-12 18:21 - 2017-06-17 11:07 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-07-12 18:21 - 2017-06-17 11:07 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-07-12 18:21 - 2017-06-17 10:04 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-07-12 18:21 - 2017-06-17 09:58 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-07-12 18:21 - 2017-06-17 09:51 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-12 18:21 - 2017-06-17 09:50 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-07-12 18:21 - 2017-06-17 09:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-07-12 18:21 - 2017-06-17 09:31 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-07-12 18:21 - 2017-06-17 09:30 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-07-12 18:21 - 2017-06-17 09:20 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-07-12 18:21 - 2017-06-17 09:19 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-07-12 18:21 - 2017-06-17 09:17 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-07-12 18:21 - 2017-06-17 09:13 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-07-12 18:21 - 2017-06-17 09:12 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-07-12 18:21 - 2017-06-17 09:07 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-07-12 18:21 - 2017-06-17 09:02 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-07-12 18:21 - 2017-06-17 09:01 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-07-12 18:21 - 2017-06-17 08:55 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-07-12 18:21 - 2017-06-17 08:52 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-07-12 18:21 - 2017-06-17 08:29 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-07-12 18:21 - 2017-06-17 08:12 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-07-12 18:21 - 2017-06-17 08:11 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-07-12 18:21 - 2017-06-17 07:34 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-07-12 18:21 - 2017-06-11 17:10 - 00448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-12 18:20 - 2017-07-07 10:37 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-07-12 18:20 - 2017-07-07 10:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-07-12 18:20 - 2017-07-07 09:29 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-07-12 18:20 - 2017-07-07 09:12 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 18:20 - 2017-06-17 12:16 - 01030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-07-12 18:20 - 2017-06-17 09:50 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-07-12 18:20 - 2017-06-17 09:41 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-07-12 18:20 - 2017-06-17 09:03 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-07-12 18:20 - 2017-06-17 08:49 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-12 18:20 - 2017-06-17 08:47 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-07-12 18:20 - 2017-06-17 07:40 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-12 18:20 - 2017-06-17 07:11 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-07-12 08:27 - 2017-07-12 19:26 - 00003146 _____ C:\Users\Charly\Desktop\fixlist.txt
2017-07-11 15:05 - 2017-07-11 15:05 - 00000000 ____D C:\Users\Charly\AppData\Local\UNP
2017-07-11 14:55 - 2017-07-11 14:56 - 00000000 ____D C:\Program Files\UNP
2017-07-11 14:55 - 2017-07-11 14:55 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-07-11 14:01 - 2017-07-11 14:43 - 00000000 ____D C:\AVG_Remover
2017-07-11 05:36 - 2017-07-11 05:36 - 00000000 ____D C:\Users\Charly\AppData\Local\TempTaskUpdateDetection03B36BD9-C04A-4DFC-BD38-2E59875A2990
2017-07-10 15:40 - 2017-07-11 16:19 - 00001083 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-07-10 15:40 - 2017-07-11 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-07-10 15:40 - 2017-07-10 15:40 - 00000000 ____D C:\Program Files\VS Revo Group
2017-07-09 12:14 - 2017-07-18 18:05 - 00000000 ____D C:\FRST
2017-07-03 19:35 - 2017-07-15 16:43 - 00000000 ____D C:\Users\Charly\Desktop\unneccessary
2017-06-30 16:58 - 2017-06-30 16:58 - 00338204 _____ C:\Users\Charly\Downloads\Bewerbung.pdf
2017-06-30 16:54 - 2017-06-30 17:00 - 00338193 _____ C:\Users\Charly\Documents\Bewerbung.pdf
2017-06-30 16:40 - 2017-07-01 16:39 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-06-30 16:38 - 2017-07-11 14:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-30 16:38 - 2017-06-30 16:38 - 00002128 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-06-30 16:32 - 2017-06-30 16:33 - 01205776 _____ (Adobe Systems Incorporated) C:\Users\Charly\Downloads\readerdc_de_a_install.exe
2017-06-30 16:28 - 2017-06-30 16:49 - 00973975 _____ C:\Users\Charly\Documents\Zeugnisse_Shari-Ade.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-10-21 15:36 - 2013-10-31 20:50 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2013-10-31 20:50 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.dat
2017-07-18 18:03 - 2014-08-31 22:09 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Skype
2017-07-18 16:57 - 2016-04-07 18:54 - 00000000 ____D C:\Users\Charly\AppData\Local\Deployment
2017-07-18 16:57 - 2015-08-29 19:05 - 00000000 ___HD C:\Users\Charly\.mediafire
2017-07-18 16:49 - 2016-01-08 23:29 - 00001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-07-18 16:35 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-18 16:35 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-18 16:32 - 2016-02-13 19:11 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5403824B-0A7F-4D64-B6C2-0AD5920140AB}
2017-07-16 21:14 - 2014-08-13 19:25 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Spotify
2017-07-16 21:12 - 2017-06-11 19:32 - 00000000 ___RD C:\Users\Charly\Creative Cloud Files
2017-07-16 21:12 - 2014-09-27 23:55 - 00000000 ____D C:\Users\Charly\AppData\Local\Adobe
2017-07-16 21:10 - 2015-08-29 19:08 - 00000000 ___RD C:\Users\Charly\MediaFire
2017-07-16 21:09 - 2016-03-24 17:19 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-07-16 21:09 - 2016-01-08 23:29 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-07-16 21:09 - 2015-07-29 23:42 - 00000000 __SHD C:\Users\Charly\IntelGraphicsProfiles
2017-07-16 21:08 - 2016-02-13 19:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-16 21:07 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-07-16 21:07 - 2014-09-28 16:12 - 00000000 ____D C:\AdwCleaner
2017-07-15 21:35 - 2016-01-08 23:38 - 00000000 ___RD C:\Users\Charly\Desktop\Dropbox
2017-07-15 21:28 - 2014-08-13 19:25 - 00000000 ____D C:\Users\Charly\AppData\Local\Spotify
2017-07-15 21:25 - 2016-03-24 17:23 - 00000000 ____D C:\Users\Charly
2017-07-15 21:23 - 2017-01-18 19:01 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2017-07-15 20:04 - 2014-09-28 15:15 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-15 20:04 - 2014-09-28 15:15 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-07-14 19:26 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2017-07-13 22:53 - 2016-01-08 23:29 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-07-13 17:42 - 2014-12-02 18:43 - 00000000 ____D C:\ProgramData\AVG
2017-07-13 17:42 - 2014-12-02 13:50 - 00000000 ____D C:\Program Files (x86)\AVG
2017-07-13 17:25 - 2016-02-13 18:59 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2017-07-13 17:25 - 2016-02-13 18:59 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2017-07-13 17:25 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-07-13 17:25 - 2015-07-29 23:30 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-12 19:38 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-07-12 19:36 - 2016-02-13 10:21 - 00351968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-07-12 18:31 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-12 18:26 - 2014-08-16 14:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 18:23 - 2014-08-16 14:53 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 08:37 - 2015-08-06 20:52 - 00000000 ____D C:\Users\Charly\AppData\LocalLow\Temp
2017-07-11 14:33 - 2017-04-06 19:33 - 00004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-07-11 14:32 - 2017-04-06 19:33 - 00353232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgvmm.sys.149977641370304
2017-07-10 20:05 - 2016-03-24 17:18 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-06 14:27 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-30 16:43 - 2014-09-28 00:03 - 00000000 ____D C:\ProgramData\Adobe
2017-06-30 16:42 - 2014-09-28 02:10 - 00000000 ____D C:\Users\Charly\AppData\LocalLow\Adobe
2017-06-30 16:42 - 2014-08-14 00:47 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Adobe
2017-06-30 16:37 - 2014-09-28 00:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-06-30 15:43 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 15:43 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-26 21:09 - 2014-08-13 23:42 - 00002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-26 21:09 - 2014-08-13 23:42 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-24 22:05 - 2015-03-28 22:54 - 00000000 ____D C:\Program Files (x86)\Minecraft
2017-06-24 22:02 - 2016-07-08 15:34 - 00000000 ____D C:\Users\Charly\AppData\Roaming\.minecraft
2017-06-21 21:54 - 2017-04-29 15:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-06-21 21:54 - 2014-08-31 22:09 - 00000000 ____D C:\ProgramData\Skype
2017-06-21 21:38 - 2015-06-18 13:51 - 00000000 ____D C:\Users\Charly\AppData\Local\Dropbox
2017-06-21 17:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-21 17:19 - 2016-12-15 23:13 - 00003270 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-21 17:18 - 2015-07-29 23:51 - 00002424 _____ C:\Users\Charly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-21 17:18 - 2015-07-29 23:51 - 00000000 ___RD C:\Users\Charly\OneDrive
2017-06-20 17:38 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-20 17:37 - 2014-10-10 17:18 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-06-18 10:15 - 2016-02-13 19:27 - 02718720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-04-12 15:48 - 2015-04-12 15:48 - 0195315 _____ () C:\Users\Charly\AppData\Local\4A594BA6_stp.CIS
2015-04-12 15:48 - 2015-04-12 15:48 - 0000290 _____ () C:\Users\Charly\AppData\Local\4A594BA6_stp.CIS.part
2015-04-12 15:48 - 2015-04-12 15:48 - 0385602 _____ () C:\Users\Charly\AppData\Local\5D515C96_stp.CIS
2015-04-12 15:48 - 2015-04-12 15:48 - 0000220 _____ () C:\Users\Charly\AppData\Local\5D515C96_stp.CIS.part
2017-03-25 03:35 - 2017-03-25 03:35 - 0000846 _____ () C:\Users\Charly\AppData\Local\recently-used.xbel
2016-03-24 17:20 - 2016-03-24 17:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-07-09 12:35

==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-07-2017
durchgeführt von Charly (18-07-2017 18:08:02)
Gestartet von C:\Users\Charly\Downloads
Windows 10 Home Version 1511 (X64) (2016-03-26 04:45:20)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2170906037-549936913-1423911947-500 - Administrator - Disabled)
Charly (S-1-5-21-2170906037-549936913-1423911947-1001 - Administrator - Enabled) => C:\Users\Charly
DefaultAccount (S-1-5-21-2170906037-549936913-1423911947-503 - Limited - Disabled)
Gast (S-1-5-21-2170906037-549936913-1423911947-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2170906037-549936913-1423911947-1010 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3005 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2022 - Acer Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.1.1.202 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{E3CA751C-E133-0BF1-3151-7A6D3FB88015}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1390 - DsNET Corp)
Catalyst Control Center Next Localization BR (HKLM\...\{3E245378-BF77-6946-C6F6-096DBE5EAB82}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{51F85784-6799-5CA3-97B2-2E5904FC3E58}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{55A4D3AB-C8DF-26B2-89A8-7E16E1E40700}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{365AEAB2-4CF3-7CBB-0DAC-E9E14B688E65}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{45907537-804A-514F-5280-5F4F12A6DCBC}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{8E6F5592-ED7E-9C50-74AC-BF417B1FE291}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{7ABC6D83-816E-6D48-E65D-B0CEDD294E4E}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{962364E4-08BB-347D-32E7-2B789F37BF8A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{AD28960A-6190-C991-C964-308B86EAA2E2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{84C3F2C5-F7B2-2F08-CDF4-79EF7CC55D74}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{A0407E39-2AA4-60B3-885F-3C5347B6909E}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{C3EE628C-7394-FE2C-0C90-C05284EB528D}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0989D0EA-AFF3-5F9A-3D25-20EE133E409B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0E8A3B17-D603-B1B6-C205-1685EBDD23E9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{2F544F46-5F6E-97BB-3550-A0242A3C5754}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{1E7D3072-1D28-E33A-99DF-85D9F7ECD06E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{A8689A0F-5928-7300-B82B-C5E85131B7BA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{FC4086D6-E345-5F43-08BB-280FB57DAF49}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{76AAF56B-93D8-161D-809A-EC05F3B913DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{BA26B70C-3D8C-2D14-4122-211FB3E6F691}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{F8EBE530-A4D5-BF51-F623-3787E6B8A878}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{063CED74-F5F0-870E-DC9C-2D78FDEDA3EE}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{42FBD43F-DE53-6D4D-5134-E3C93B45CBEF}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{5FEACE78-C338-9AED-FF05-7DE7E273C774}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{13BB60AA-88F7-4B1F-2DEC-D81EEDE8B3AA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A3795528-F572-6314-C4E3-EE9DAF0FBF02}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{AC85CF50-9A55-0103-ADBF-365C37603AA4}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{37AA6227-FF2C-95AC-87C0-45DCC0BB87DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{4853A56D-7931-A08B-5BA7-8E2D61043DF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{B349892D-B015-033C-4CA8-3635E6B655D7}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{B28CF677-E2C8-12CA-52BB-19B6F066D36A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{BE8D6AB1-3049-2F0C-67FA-00C0A5D321A3}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{EB328356-1DF0-1CCE-3607-6361DD329219}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{26567561-DFB2-2B63-9BA8-6A490ED37016}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{43F6D22B-E0E9-EE90-9B62-1C5FC5D15A55}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{87E6EC29-AEC5-28CB-F773-93EB6C1B8A2B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{0809FEC1-EF86-51E9-8210-DC1B1BDB6745}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{CA55697D-BD74-3ED8-6B21-D7EDAD3B7D02}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{D4490E0F-8E7B-1097-B56A-7643C75F1C28}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{5FD706FF-6AD8-E372-A35A-879409982655}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{CFC860C8-4F51-E08C-A74C-2E444ED06160}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{DAB44116-0266-C65B-B643-AC11217C3041}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3AF70346-52C7-0334-606F-118D1C1CB7A2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9338D693-38B7-1ED4-9B42-BFA1D5600CCB}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{A4E7CA0C-84EB-5E29-2F04-06C4E4790C2F}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{53AE8AC7-5213-67AF-0DC0-CED696B77643}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{59D2664C-949B-7FA7-9880-ECB993B6616A}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{C971C145-258D-6650-7088-13DDB161327A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{970A40CA-46AB-986C-1798-976ED0EA00FA}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{DC9DFCBF-87DA-892C-6151-99CC9EF46E3E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{EBA09DAF-14B4-7BE7-676E-6E2FB21EDBDD}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4707CBFC-8ED4-463E-0FF9-DE86F4A743E9}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{9AA4DD93-94BF-22EA-C9D2-7084F304A31B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C1EFF2A2-DF4A-F6D1-B99C-1ED194AE9E78}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{379D900B-A785-6DB0-012E-434356A365B3}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{46EB68BE-8AAC-8C2B-7284-8DEDE6B5CD2A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{C14A3A5B-8A86-C239-37D7-158211778C54}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{366C4FB5-CF6E-258B-418D-E6D29549A278}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{7A6E431B-CF43-EC3E-FD7E-0A0AAB1B25FC}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{A50C89BC-8D8E-8828-824A-7171F6D583D5}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{0B5633F0-C415-2F08-671E-4C9E2FAACD45}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{89A1F076-19B8-A2B1-D5A3-E8247EFAF157}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{B10089DE-934F-6E0F-683A-B788F89348DF}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 30.4.22 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Free YouTube Download version 3.2.61.805 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.61.805 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
League of Legends (HKLM-x32\...\{C56877FD-6BEB-4717-81B3-1254FA1FD7FC}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
MAGIX Speed burnR (MSI) (HKLM\...\{6C855B1C-FC55-4A00-9CCB-5ED6DB8770BF}) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{6C855B1C-FC55-4A00-9CCB-5ED6DB8770BF}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (HKLM\...\{9E2FEB28-7407-4009-9DC4-203EF2EF6BB7}) (Version: 13.0.0.28 - MAGIX AG) Hidden
MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{9E2FEB28-7407-4009-9DC4-203EF2EF6BB7}) (Version: 13.0.0.28 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MediaFire Desktop (HKLM-x32\...\MediaFire Desktop 1.6.16.10941) (Version: 1.9.5.11053 - MediaFire)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4937.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.3 - OBS Project)
OEM Application Profile (HKLM-x32\...\{ECA361B3-855E-EEAB-C4E9-FFA6F25A4DF4}) (Version: 1.00.0000 - Ihr Firmenname)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4937.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4937.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0407-0000-0000000FF1CE}) (Version: 15.0.4937.1000 - Microsoft Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
PX Profile Update (HKLM-x32\...\{F1642ACD-1F50-FCC2-BDA6-C83762316958}) (Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
TeamSpeak 3 Client (HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2170906037-549936913-1423911947-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-28356DD1EA23}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2170906037-549936913-1423911947-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [] -> {b5458932-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayError.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458930-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySynced.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458934-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayReadOnly.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458933-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayLock.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458931-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySyncing.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ShellIconOverlayIdentifiers: [1MediaFireIconError] -> {5EE8C634-CDC0-453D-9731-DF0B19F4E807} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [1MediaFireIconReadOnly] -> {7995D0FC-769B-4197-AEC0-991921CB99E1} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [1MediaFireIconSynched] -> {9A3B79CB-D899-40B5-8DBC-20447F1ADC8F} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [1MediaFireIconSyncing] -> {C4D81971-6B13-4173-AB21-F83AD20CCC04} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [MediaFireIconLock] -> {759F3E92-F4E8-4953-8315-238B8B17E0F3} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ContextMenuHandlers01: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [MFShellExt] -> {729a9bf2-11e8-45fa-a274-b8442fcfe2f2} => C:\Program Files (x86)\MediaFire Desktop\bin\MFDesktopShellExtx64.dll [2016-03-07] ()
ContextMenuHandlers04: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers05: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-04-24] (Advanced Micro Devices, Inc.)
ContextMenuHandlers05: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-10-15] (Intel Corporation)
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ContextMenuHandlers06: [MFShellExt] -> {729a9bf2-11e8-45fa-a274-b8442fcfe2f2} => C:\Program Files (x86)\MediaFire Desktop\bin\MFDesktopShellExtx64.dll [2016-03-07] ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0277ABBA-D9C9-4BF6-8F35-AD0165C8AECB} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-ch4rlysun@web.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {0CC61EB4-E43E-4287-BD0A-F79D8E4C393A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {1B6F0AFC-6AB7-4EB9-882F-C7AAA236F153} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG
Task: {22F23436-7DE1-41AC-B5EB-8F9F3D068E18} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {24987A8A-FED9-4441-8A8D-BA56CF697CF9} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-06-18] (Acer Incorporate)
Task: {276900CE-3874-45B5-AC7A-81CE2C48496A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {3258AD87-329B-4A32-BC40-55E2AD5A1527} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-08] (Dropbox, Inc.)
Task: {42E79FBD-574E-488D-96FD-52391D3EA1E5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {4DA65828-9105-44C0-96EE-F2663A7B4E39} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {550AB1BF-4E46-4CA0-9496-92B0745D52F0} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {5A6C6E41-47E2-419F-9AD0-5CDAECCD90FF} - System32\Tasks\Java(TM) Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15] (Oracle Corporation)
Task: {7A3E324A-91C1-4739-9926-8CF4209D725B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {8750CB3F-5F28-42BF-8B83-7D784A1D24A7} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe
Task: {8CAA9A8A-EB8A-49FD-A11C-F933520B185C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {91D260A5-5E9B-41FE-BE89-7623FC7051FA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-08] (Dropbox, Inc.)
Task: {995FB0DD-A824-46E8-A6AA-61D351F20F9F} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {A788564F-7F0C-47F6-A033-3075CE5E8558} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {BD9C7092-C996-4A26-8E35-38CE54AFBE1C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {C3B612CC-15C3-43B2-92C8-35764472B88D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {C731FC09-8A35-41F0-A5FE-BA79F2C775E5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {CAA947D7-B147-43C8-992E-5E5183C737E0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-04-24] (Advanced Micro Devices, Inc.)
Task: {CCD8F6A1-C1E3-4A6B-BFBE-DF2232745E39} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-07-12] (Microsoft Corporation)
Task: {D3FABFEE-BDF1-4A5B-B4DC-A9B635138045} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DA23F6F5-6DFC-498C-BFE7-CF9DCF2350B5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {DA2C4783-232B-4B9E-BE90-1C5D7A1A8016} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {E1C6BB4A-BCC1-4BBB-B01D-60A5FCDF21D7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


Shortcut: C:\Users\Charly\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2017-03-15 18:59 - 2017-03-04 07:31 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-08-29 18:57 - 2016-03-08 00:46 - 00456176 _____ () C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe
2014-10-23 15:04 - 2017-01-17 04:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2017-07-12 18:21 - 2017-06-17 12:13 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayError.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySynced.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayReadOnly.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayLock.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySyncing.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00312832 _____ () C:\Program Files (x86)\MediaFire Desktop\bin\MFDesktopShellExtx64.dll
2013-10-31 21:11 - 2013-02-20 23:58 - 00111176 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2017-05-26 03:18 - 2017-05-26 03:18 - 00492112 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2017-03-15 18:58 - 2017-03-04 05:19 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 18:58 - 2017-03-04 05:14 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-09 21:51 - 2017-04-28 01:46 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-07-12 18:21 - 2017-06-17 07:15 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-04-19 13:50 - 2016-04-19 13:51 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2017-06-26 21:09 - 2017-06-23 05:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
2017-06-26 21:09 - 2017-06-23 05:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
2016-02-13 19:02 - 2016-02-13 19:02 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-13 01:42 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2017-04-24 13:43 - 2017-04-24 13:44 - 01695440 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8366.57611.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2017-07-18 16:34 - 2017-07-18 16:34 - 13259456 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8366.57611.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-07-18 16:34 - 2017-07-18 16:34 - 00147136 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8366.57611.0_x64__8wekyb3d8bbwe\textinputdriver.dll
2017-04-26 15:19 - 2017-04-26 15:19 - 02005976 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2016-04-19 13:50 - 2016-04-19 13:51 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2017-06-20 17:34 - 2017-06-20 17:34 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
2016-04-07 18:54 - 2016-04-07 18:54 - 00038112 _____ () C:\Users\Charly\AppData\Local\assembly\dl3\AG8Z1M73.REX\12Z7J48T.AH0\500f7dcb\008ce165_b4dfcd01\WordAddIn.DLL
2013-10-31 21:11 - 2013-02-20 23:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2170906037-549936913-1423911947-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charly\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\StartupApproved\Run: => "Discord"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{A5DF1B28-4914-45CC-A52B-ED1054427052}] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{722FC5D9-E1C7-406C-AE3D-7F718CE9E05A}] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{CDF859D1-0B16-4AC9-80D3-34A90509E99E}] => (Block) C:\users\charly\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{2964E611-569D-4DDB-A5AB-12C37A3B12AE}] => (Block) C:\users\charly\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EFDCB505-13C3-41C7-B8D5-96B76BF62E38}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{A120EF44-F137-497E-894F-C2A125145112}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{2E8F2E0F-D6BD-42DE-9266-CA93612806ED}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{1C0BC04C-A28C-4535-8132-F3C9A38E12DF}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{85AE3844-1362-4779-A38C-8AC51F93606C}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{2605EB22-19E0-4C4F-9BD7-8C289F854EC4}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{DDDF68FD-5BE6-4BA4-87AE-0A60BCBD451A}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{B15AE4E0-525A-4C8F-A8BE-23345724FA21}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{83372F0A-B2BE-428F-8DBD-27B7441AAF5A}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{5177D192-25A1-4739-BA25-CD0169BF7FF9}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [UDP Query User{00C56E25-88CA-4D43-A64F-6032E091C55C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{101E4702-5C23-4C6A-9547-FC03EE0A3858}C:\users\charly\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{5D5EBC16-EA70-4DEF-9A4D-79A215E6ED10}C:\users\charly\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B6A72B33-A7CE-4569-B643-EF0B044F869B}] => (Block) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [{44C8514F-5B2E-4203-BF5A-D2131E5E7E20}] => (Block) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [{059A39BA-1071-4433-A0C5-CDF28B622D0E}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [{8C7D3343-D132-4BB4-8196-65B1C699FB2B}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [{8892DA1D-1511-4D86-BC09-36B3DC911D0F}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [{0538DF19-7785-463C-9DF5-767E128CB9C8}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [TCP Query User{93468028-73E8-47F4-B3F1-34DA62FA40B2}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0E4DF9E3-9B64-4A31-9771-C475A4837EFB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{7FF3B3A4-D6EE-469E-886B-B9B4B0F14E41}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{5D0051D6-D5BE-41A5-8926-4F3ED8F3EC00}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F67EB794-F50D-4B76-805F-C2524EAD74DC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{81A7A3B4-56CB-4915-9FA8-49866416F552}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Wiederherstellungspunkte =========================

24-06-2017 21:26:43 Installed Minecraft
03-07-2017 20:40:50 Geplanter Prüfpunkt
10-07-2017 15:42:39 Revo Uninstaller's restore point - AVG Web TuneUp
10-07-2017 15:47:34 Revo Uninstaller's restore point - AVG Protection
10-07-2017 16:08:05 Revo Uninstaller's restore point - Avira Connect
10-07-2017 16:19:27 Revo Uninstaller's restore point - Avira Antivirus
10-07-2017 16:43:59 Revo Uninstaller's restore point - AVG Web TuneUp
10-07-2017 20:01:32 Revo Uninstaller's restore point - Avira Connect
11-07-2017 16:20:15 Revo Uninstaller's restore point - AVG AntiVirus FREE
15-07-2017 21:31:04 JRT Pre-Junkware Removal
16-07-2017 21:15:20 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (07/18/2017 04:42:50 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (07/18/2017 04:33:21 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/18/2017 04:33:12 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/16/2017 11:08:44 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/16/2017 11:08:30 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/16/2017 11:08:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ShellExperienceHost.exe, Version: 10.0.10586.494, Zeitstempel: 0x5775e94c
Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10586.839, Zeitstempel: 0x58ba4020
Ausnahmecode: 0xc000027b
Fehleroffset: 0x000000000004b1c9
ID des fehlerhaften Prozesses: 0x1adc
Startzeit der fehlerhaften Anwendung: 0x01d2fe680f088ced
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\twinapi.appcore.dll
Berichtskennung: e678b1ee-37bc-401c-945c-86b1deb06402
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (07/16/2017 09:24:35 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/16/2017 09:18:30 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/16/2017 09:18:09 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/16/2017 09:17:41 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error


Systemfehler:
=============
Error: (07/16/2017 09:15:10 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Manager für heruntergeladene Karten" wurde nicht richtig gestartet.

Error: (07/16/2017 09:13:56 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{4991D34B-80A1-4291-83B6-3328366B9097}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (07/16/2017 09:13:08 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Übermittlungsoptimierung" wurde nicht richtig gestartet.

Error: (07/16/2017 09:12:03 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (07/16/2017 09:07:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde mit folgendem Fehler beendet:
Es wurde versucht, auf ein Token zuzugreifen, das nicht vorhanden ist.

Error: (07/16/2017 09:07:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_3acf8" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/16/2017 09:07:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _3acf8" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/16/2017 09:07:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_3acf8" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/16/2017 09:07:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_3acf8" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/16/2017 09:07:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2017-07-12 20:24:31.837
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-07-12 19:37:37.816
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-21 21:53:10.190
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-21 17:56:32.268
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-14 22:23:57.957
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-11 23:20:21.811
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 22:45:00.085
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 14:51:16.572
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-10 21:27:25.370
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-01 21:05:39.196
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz
Prozentuale Nutzung des RAM: 61%
Installierter physikalischer RAM: 3976.27 MB
Verfügbarer physikalischer RAM: 1550.25 MB
Summe virtueller Speicher: 8328.27 MB
Verfügbarer virtueller Speicher: 5601.93 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:448.75 GB) (Free:336.91 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CA515DF8)

Partition: GPT.

==================== Ende von Addition.txt ============================
LG Ani

cosinus 19.07.2017 10:23
In der Zwischenzeit ist adwCleaner v7 rausgekommen. Bitte nochmal machen:

Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!



1. Schritt: adwCleaner v7

Downloade Dir bitte AdwCleaner auf deinen Desktop (Bebilderte Anleitung).
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Werkzeuge > Optionen und vergewissere dich, dass adwCleaner so konfiguriert ist, wie auf dem folgendem Screenshot abgebildet:


    http://m-k-d-b.trojaner-board.de/bilder/adw-4.JPG

  • Bestätige die Auswahl mit Ok.
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
  • Klicke am Ende der Bereinigung auf Jetzt neu starten. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


Ani73 20.07.2017 17:35
Hallo cosinus. Hier sind die neuen log Dateien.

Code:
# AdwCleaner 7.0.0.0 - Logfile created on Thu Jul 20 16:21:46 2017
# Updated on 2017/17/07 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

Plugin deleted: AVG Web TuneUp -


*************************

::Tracing keys deleted
::Winsock settings cleared
::Prefetch files deleted
::Proxy settings cleared
::IE policies deleted
::Chrome policies deleted
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [7929 B] - [2017/7/15 19:24:43]
C:/AdwCleaner/AdwCleaner[C2].txt - [2105 B] - [2017/7/16 19:7:28]
C:/AdwCleaner/AdwCleaner[S0].txt - [3115 B] - [2014/9/28 14:13:34]
C:/AdwCleaner/AdwCleaner[S1].txt - [7822 B] - [2017/7/15 19:21:32]
C:/AdwCleaner/AdwCleaner[S2].txt - [2447 B] - [2017/7/16 19:6:51]
C:/AdwCleaner/AdwCleaner[S3].txt - [1791 B] - [2017/7/20 16:21:7]


########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Charly (Administrator) on 20.07.2017 at 18:26:32,61
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.07.2017 at 18:32:55,25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Lg ani

cosinus 20.07.2017 18:36
Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

http://www.trojaner-board.de/picture...&pictureid=611

Ani73 24.07.2017 11:31
Hier ist die FRST log Datei:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 23-07-2017
durchgeführt von Charly (Administrator) auf RENÉ (24-07-2017 12:22:49)
Gestartet von C:\Users\Charly\Downloads
Geladene Profile: Charly (Verfügbare Profile: Charly)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
() C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\WINDOWS\System32\SndVol.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\WINDOWS\System32\LockAppHost.exe
() C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.870_none_7645b64e266be2c8\TiWorker.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [415128 2015-10-15] ()
HKLM\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2406496 2017-06-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3486520 2017-07-12] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [MediaFire Tray] => C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_watch.exe [4075008 2016-03-08] ()
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Spotify] => C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-15] (Spotify Ltd)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Spotify Web Helper] => C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-15] (Spotify Ltd)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\RunOnce: [Uninstall C:\Users\Charly\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Charly\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64"

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{af5a0a85-6121-4e8e-ab1c-cd3c47d75fdc}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> DefaultScope {91BD0348-48CB-4924-B633-EEA242BA7533} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C014DE662D20160105&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> {1516485F-8427-49EF-8F3F-A19DAC4B0769} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> {91BD0348-48CB-4924-B633-EEA242BA7533} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C014DE662D20160105&p={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-04-11] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-09-19] (DVDVideoSoft Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Charly\AppData\Roaming\Mozilla\Firefox\Profiles\rzTTZNwE.default [2017-07-15]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-06-04] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-10-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-06-04] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default [2017-07-24]
CHR Extension: (Google Docs) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Dark Skin for Youtube™) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2017-04-29]
CHR Extension: (YouTube) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (AVG Secure Search) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-07-20]
CHR Extension: (Google-Suche) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-20]
CHR Extension: (Skype) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-07-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-13]
CHR Extension: (Mein Chrome-Design) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2015-08-29]
CHR Extension: (Marc Ecko) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [2017-07-11]
CHR Extension: (Google Mail) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-13]
CHR Profile: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-12]
CHR Extension: (Google Präsentationen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-22]
CHR Extension: (Google Docs) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-22]
CHR Extension: (Google Drive) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-22]
CHR Extension: (YouTube) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-22]
CHR Extension: (Google-Suche) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-22]
CHR Extension: (Google Tabellen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-22]
CHR Extension: (SiteAdvisor) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-09-22]
CHR Extension: (Skype Click to Call) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-22]
CHR Extension: (Google Wallet) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-22]
CHR Extension: (Google Mail) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-22]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2170906037-549936913-1423911947-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-06-04] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-08] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-08] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-07-12] (Dropbox, Inc.)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-10] (ELAN Microelectronics Corp.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370064 2015-10-15] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-18] (Acer Incorporate)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MF NTFS Monitor; C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe [456176 2016-03-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-06-17] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [97184 2017-01-25] (Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R2 mfmonitor; C:\WINDOWS\System32\DRIVERS\mfmonitor_x64.sys [20696 2016-03-07] (Windows (R) Win 7 DDK provider)
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-07-24 12:22 - 2017-07-24 12:22 - 00000000 ____D C:\Users\Charly\Downloads\FRST-OlderVersion
2017-07-21 19:26 - 2017-07-21 19:26 - 00000000 ____D C:\Program Files\rempl
2017-07-20 18:18 - 2017-07-20 18:18 - 08162248 _____ (Malwarebytes) C:\Users\Charly\Downloads\adwcleaner_7.0.0.0.exe
2017-07-19 21:00 - 2017-07-19 22:04 - 00000000 ____D C:\WINDOWS\Panther
2017-07-18 18:08 - 2017-07-18 18:08 - 00056084 _____ C:\Users\Charly\Downloads\Addition.txt
2017-07-18 18:05 - 2017-07-24 12:22 - 02382336 _____ (Farbar) C:\Users\Charly\Downloads\FRST64.exe
2017-07-18 18:05 - 2017-07-24 12:22 - 00018182 _____ C:\Users\Charly\Downloads\FRST.txt
2017-07-18 18:04 - 2017-07-18 18:04 - 00000000 ____D C:\Users\Charly\AppData\Local\Microsoft Help
2017-07-18 16:54 - 2017-07-18 20:42 - 00000000 ____D C:\Users\Charly\Documents\Stuggi Schule
2017-07-16 21:05 - 2017-07-16 21:05 - 00008704 ___SH C:\Users\Charly\Downloads\Thumbs.db
2017-07-15 21:36 - 2017-07-20 18:32 - 00000548 _____ C:\Users\Charly\Desktop\JRT.txt
2017-07-15 21:29 - 2017-07-15 21:30 - 01790024 _____ (Malwarebytes) C:\Users\Charly\Downloads\JRT.exe
2017-07-15 21:18 - 2017-07-15 21:18 - 04110280 _____ C:\Users\Charly\Downloads\AdwCleaner_6.047.exe
2017-07-14 21:53 - 2017-07-15 21:06 - 00000000 ____D C:\Users\Charly\Desktop\mbar
2017-07-14 21:53 - 2017-07-15 21:06 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-07-14 21:52 - 2017-07-14 21:52 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Charly\Desktop\mbar-1.09.3.1001.exe
2017-07-13 22:52 - 2017-07-13 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-07-13 17:16 - 2017-07-13 17:38 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-07-13 17:14 - 2017-07-13 17:14 - 08798992 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Charly\Downloads\AVG_Clear.exe
2017-07-12 21:58 - 2017-07-12 21:58 - 00049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-07-12 19:40 - 2017-07-12 19:41 - 00000000 ____D C:\Users\Charly\AppData\Local\Avg
2017-07-12 18:22 - 2017-07-07 12:04 - 00808280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-07-12 18:22 - 2017-07-07 11:16 - 00700880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-07-12 18:22 - 2017-07-07 11:09 - 02945648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-07-12 18:22 - 2017-07-07 11:09 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-07-12 18:22 - 2017-07-07 11:05 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-07-12 18:22 - 2017-07-07 10:57 - 00295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-07-12 18:22 - 2017-07-07 10:35 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-07-12 18:22 - 2017-07-07 09:49 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-07-12 18:22 - 2017-07-07 09:48 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-07-12 18:22 - 2017-07-07 09:33 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-07-12 18:22 - 2017-07-07 09:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-07-12 18:22 - 2017-07-07 09:21 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-07-12 18:22 - 2017-07-07 09:17 - 02279936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-07-12 18:22 - 2017-07-07 09:08 - 00788992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-07-12 18:22 - 2017-07-07 09:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-07-12 18:22 - 2017-07-07 09:07 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-07-12 18:22 - 2017-07-07 09:03 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-07-12 18:22 - 2017-07-07 08:59 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-07-12 18:22 - 2017-07-07 08:36 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-07-12 18:22 - 2017-07-07 08:34 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-07-12 18:22 - 2017-07-07 08:33 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-07-12 18:22 - 2017-07-07 08:31 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-07-12 18:22 - 2017-07-07 08:11 - 05326848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 18:22 - 2017-06-17 11:52 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-07-12 18:22 - 2017-06-17 11:09 - 06536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-07-12 18:22 - 2017-06-17 09:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-07-12 18:22 - 2017-06-17 09:11 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-07-12 18:22 - 2017-06-17 08:54 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-07-12 18:22 - 2017-06-17 08:54 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-07-12 18:22 - 2017-06-17 08:53 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-07-12 18:22 - 2017-06-17 08:48 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-12 18:22 - 2017-06-17 08:44 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-07-12 18:22 - 2017-06-17 08:42 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-07-12 18:22 - 2017-06-17 08:39 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-07-12 18:22 - 2017-06-17 08:34 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-07-12 18:22 - 2017-06-17 08:30 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-07-12 18:22 - 2017-06-17 08:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-07-12 18:22 - 2017-06-17 08:20 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-07-12 18:22 - 2017-06-17 08:20 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-07-12 18:22 - 2017-06-17 08:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-07-12 18:22 - 2017-06-17 08:15 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-12 18:22 - 2017-06-17 08:05 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-07-12 18:22 - 2017-06-17 07:56 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-07-12 18:22 - 2017-06-17 07:53 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-07-12 18:22 - 2017-06-17 07:42 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-07-12 18:22 - 2017-06-17 07:41 - 02770432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-07-12 18:22 - 2017-06-17 07:35 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-07-12 18:22 - 2017-06-17 07:30 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-07-12 18:22 - 2017-06-17 07:27 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-12 18:22 - 2017-06-17 07:16 - 03574272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-12 18:22 - 2017-06-17 07:02 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-07-12 18:22 - 2017-03-18 18:41 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-07-12 18:21 - 2017-07-07 13:07 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-12 18:21 - 2017-07-07 13:06 - 07463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 18:21 - 2017-07-07 13:04 - 02149216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-12 18:21 - 2017-07-07 13:04 - 00384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-12 18:21 - 2017-07-07 12:51 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-12 18:21 - 2017-07-07 12:11 - 00858992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-07-12 18:21 - 2017-07-07 12:03 - 03699280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-07-12 18:21 - 2017-07-07 12:00 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-07-12 18:21 - 2017-07-07 12:00 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-07-12 18:21 - 2017-07-07 11:58 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-07-12 18:21 - 2017-07-07 11:58 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-07-12 18:21 - 2017-07-07 11:52 - 00360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-07-12 18:21 - 2017-07-07 11:21 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-07-12 18:21 - 2017-07-07 11:08 - 01090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-12 18:21 - 2017-07-07 11:08 - 00057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-07-12 18:21 - 2017-07-07 10:28 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-12 18:21 - 2017-07-07 10:22 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-07-12 18:21 - 2017-07-07 10:15 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-07-12 18:21 - 2017-07-07 10:13 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-12 18:21 - 2017-07-07 09:58 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-12 18:21 - 2017-07-07 09:57 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-12 18:21 - 2017-07-07 09:57 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-07-12 18:21 - 2017-07-07 09:56 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-12 18:21 - 2017-07-07 09:54 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-07-12 18:21 - 2017-07-07 09:51 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-12 18:21 - 2017-07-07 09:50 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-07-12 18:21 - 2017-07-07 09:45 - 01424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-12 18:21 - 2017-07-07 09:17 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-12 18:21 - 2017-07-07 09:13 - 03404800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-12 18:21 - 2017-07-07 09:10 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-07-12 18:21 - 2017-07-07 09:07 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-07-12 18:21 - 2017-07-07 09:02 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-07-12 18:21 - 2017-07-07 08:47 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-07-12 18:21 - 2017-07-07 08:44 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-12 18:21 - 2017-07-07 08:41 - 04891136 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-12 18:21 - 2017-07-07 08:37 - 22376960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 13394432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 06977024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 18:21 - 2017-07-07 08:15 - 18675200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-07-12 18:21 - 2017-07-07 08:15 - 03661312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 19345408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 12139008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 07848448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-07-12 18:21 - 2017-07-07 07:58 - 05666816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-07-12 18:21 - 2017-06-17 12:13 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-12 18:21 - 2017-06-17 12:11 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-07-12 18:21 - 2017-06-17 11:52 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-07-12 18:21 - 2017-06-17 11:07 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-07-12 18:21 - 2017-06-17 11:07 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-07-12 18:21 - 2017-06-17 10:04 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-07-12 18:21 - 2017-06-17 09:58 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-07-12 18:21 - 2017-06-17 09:51 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-12 18:21 - 2017-06-17 09:50 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-07-12 18:21 - 2017-06-17 09:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-07-12 18:21 - 2017-06-17 09:31 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-07-12 18:21 - 2017-06-17 09:30 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-07-12 18:21 - 2017-06-17 09:20 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-07-12 18:21 - 2017-06-17 09:19 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-07-12 18:21 - 2017-06-17 09:17 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-07-12 18:21 - 2017-06-17 09:13 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-07-12 18:21 - 2017-06-17 09:12 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-07-12 18:21 - 2017-06-17 09:07 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-07-12 18:21 - 2017-06-17 09:02 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-07-12 18:21 - 2017-06-17 09:01 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-07-12 18:21 - 2017-06-17 08:55 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-07-12 18:21 - 2017-06-17 08:52 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-07-12 18:21 - 2017-06-17 08:29 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-07-12 18:21 - 2017-06-17 08:12 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-07-12 18:21 - 2017-06-17 08:11 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-07-12 18:21 - 2017-06-17 07:34 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-07-12 18:21 - 2017-06-11 17:10 - 00448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-12 18:20 - 2017-07-07 10:37 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-07-12 18:20 - 2017-07-07 10:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-07-12 18:20 - 2017-07-07 09:29 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-07-12 18:20 - 2017-07-07 09:12 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 18:20 - 2017-06-17 12:16 - 01030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-07-12 18:20 - 2017-06-17 09:50 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-07-12 18:20 - 2017-06-17 09:41 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-07-12 18:20 - 2017-06-17 09:03 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-07-12 18:20 - 2017-06-17 08:49 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-12 18:20 - 2017-06-17 08:47 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-07-12 18:20 - 2017-06-17 07:40 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-12 18:20 - 2017-06-17 07:11 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-07-12 08:27 - 2017-07-12 19:26 - 00003146 _____ C:\Users\Charly\Desktop\fixlist.txt
2017-07-11 15:05 - 2017-07-11 15:05 - 00000000 ____D C:\Users\Charly\AppData\Local\UNP
2017-07-11 14:55 - 2017-07-11 14:56 - 00000000 ____D C:\Program Files\UNP
2017-07-11 14:55 - 2017-07-11 14:55 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-07-11 14:01 - 2017-07-11 14:43 - 00000000 ____D C:\AVG_Remover
2017-07-11 05:36 - 2017-07-11 05:36 - 00000000 ____D C:\Users\Charly\AppData\Local\TempTaskUpdateDetection03B36BD9-C04A-4DFC-BD38-2E59875A2990
2017-07-10 15:40 - 2017-07-11 16:19 - 00001083 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-07-10 15:40 - 2017-07-11 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-07-10 15:40 - 2017-07-10 15:40 - 00000000 ____D C:\Program Files\VS Revo Group
2017-07-09 12:14 - 2017-07-24 12:22 - 00000000 ____D C:\FRST
2017-07-03 19:35 - 2017-07-15 16:43 - 00000000 ____D C:\Users\Charly\Desktop\unneccessary
2017-06-30 16:58 - 2017-06-30 16:58 - 00338204 _____ C:\Users\Charly\Downloads\Bewerbung.pdf
2017-06-30 16:54 - 2017-06-30 17:00 - 00338193 _____ C:\Users\Charly\Documents\Bewerbung.pdf
2017-06-30 16:40 - 2017-07-01 16:39 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-06-30 16:38 - 2017-07-11 14:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-30 16:38 - 2017-06-30 16:38 - 00002128 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-06-30 16:32 - 2017-06-30 16:33 - 01205776 _____ (Adobe Systems Incorporated) C:\Users\Charly\Downloads\readerdc_de_a_install.exe
2017-06-30 16:28 - 2017-06-30 16:49 - 00973975 _____ C:\Users\Charly\Documents\Zeugnisse_Shari-Ade.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-10-21 15:36 - 2013-10-31 20:50 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2013-10-31 20:50 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.dat
2017-07-24 12:20 - 2014-08-31 22:09 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Skype
2017-07-23 00:49 - 2016-01-08 23:29 - 00001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-07-22 20:15 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-22 18:49 - 2016-01-08 23:29 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-07-22 18:45 - 2016-02-13 19:11 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5403824B-0A7F-4D64-B6C2-0AD5920140AB}
2017-07-22 18:45 - 2014-09-27 23:55 - 00000000 ____D C:\Users\Charly\AppData\Local\Adobe
2017-07-21 19:27 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-20 18:33 - 2015-08-29 19:05 - 00000000 ___HD C:\Users\Charly\.mediafire
2017-07-20 18:28 - 2014-08-13 19:25 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Spotify
2017-07-20 18:28 - 2014-08-13 19:25 - 00000000 ____D C:\Users\Charly\AppData\Local\Spotify
2017-07-20 18:27 - 2017-06-11 19:32 - 00000000 ___RD C:\Users\Charly\Creative Cloud Files
2017-07-20 18:24 - 2015-08-29 19:08 - 00000000 ___RD C:\Users\Charly\MediaFire
2017-07-20 18:23 - 2016-03-24 17:19 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-07-20 18:23 - 2016-02-13 19:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-20 18:23 - 2015-07-29 23:42 - 00000000 __SHD C:\Users\Charly\IntelGraphicsProfiles
2017-07-20 18:22 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-07-20 18:21 - 2014-09-28 16:12 - 00000000 ____D C:\AdwCleaner
2017-07-20 18:20 - 2017-03-20 07:06 - 00000000 ___HD C:\$WINDOWS.~BT
2017-07-18 16:57 - 2016-04-07 18:54 - 00000000 ____D C:\Users\Charly\AppData\Local\Deployment
2017-07-15 21:35 - 2016-01-08 23:38 - 00000000 ___RD C:\Users\Charly\Desktop\Dropbox
2017-07-15 21:25 - 2016-03-24 17:23 - 00000000 ____D C:\Users\Charly
2017-07-15 21:23 - 2017-01-18 19:01 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2017-07-15 20:04 - 2014-09-28 15:15 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-15 20:04 - 2014-09-28 15:15 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-07-14 19:26 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2017-07-13 22:53 - 2016-01-08 23:29 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-07-13 17:42 - 2014-12-02 18:43 - 00000000 ____D C:\ProgramData\AVG
2017-07-13 17:42 - 2014-12-02 13:50 - 00000000 ____D C:\Program Files (x86)\AVG
2017-07-13 17:25 - 2016-02-13 18:59 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2017-07-13 17:25 - 2016-02-13 18:59 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2017-07-13 17:25 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-07-13 17:25 - 2015-07-29 23:30 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-12 19:38 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-07-12 19:36 - 2016-02-13 10:21 - 00351968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-07-12 18:31 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-12 18:26 - 2014-08-16 14:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 18:23 - 2014-08-16 14:53 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 08:37 - 2015-08-06 20:52 - 00000000 ____D C:\Users\Charly\AppData\LocalLow\Temp
2017-07-11 14:33 - 2017-04-06 19:33 - 00004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-07-11 14:32 - 2017-04-06 19:33 - 00353232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgvmm.sys.149977641370304
2017-07-10 20:05 - 2016-03-24 17:18 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-06 14:27 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-30 16:43 - 2014-09-28 00:03 - 00000000 ____D C:\ProgramData\Adobe
2017-06-30 16:42 - 2014-09-28 02:10 - 00000000 ____D C:\Users\Charly\AppData\LocalLow\Adobe
2017-06-30 16:42 - 2014-08-14 00:47 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Adobe
2017-06-30 16:37 - 2014-09-28 00:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-06-30 15:43 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 15:43 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-26 21:09 - 2014-08-13 23:42 - 00002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-26 21:09 - 2014-08-13 23:42 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-24 22:05 - 2015-03-28 22:54 - 00000000 ____D C:\Program Files (x86)\Minecraft
2017-06-24 22:02 - 2016-07-08 15:34 - 00000000 ____D C:\Users\Charly\AppData\Roaming\.minecraft

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-04-12 15:48 - 2015-04-12 15:48 - 0195315 _____ () C:\Users\Charly\AppData\Local\4A594BA6_stp.CIS
2015-04-12 15:48 - 2015-04-12 15:48 - 0000290 _____ () C:\Users\Charly\AppData\Local\4A594BA6_stp.CIS.part
2015-04-12 15:48 - 2015-04-12 15:48 - 0385602 _____ () C:\Users\Charly\AppData\Local\5D515C96_stp.CIS
2015-04-12 15:48 - 2015-04-12 15:48 - 0000220 _____ () C:\Users\Charly\AppData\Local\5D515C96_stp.CIS.part
2017-03-25 03:35 - 2017-03-25 03:35 - 0000846 _____ () C:\Users\Charly\AppData\Local\recently-used.xbel
2016-03-24 17:20 - 2016-03-24 17:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-07-18 22:05

==================== Ende von FRST.txt ============================

Ani73 27.07.2017 08:14
Hallo Cosinus,

muss jetzt noch was gemacht werden?
LG
Ani

cosinus 27.07.2017 09:40
ich warte imme rnoch auf das andere Log (addition.txt)...

Ani73 27.07.2017 10:49
Es muss wohl was schief gelaufen sein. Erst jetzt wurden zwei Log Dateien angezeigt.

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-07-2017
durchgeführt von Charly (Administrator) auf RENÉ (27-07-2017 11:38:34)
Gestartet von C:\Users\Charly\Downloads
Geladene Profile: Charly (Verfügbare Profile: Charly)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\WINDOWS\System32\atiesrxx.exe
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
() C:\WINDOWS\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_watch.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_hub.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\MediaFire Desktop.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_filetransfer.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_browser.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_central_control.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_monitor.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Spotify Ltd) C:\Users\Charly\AppData\Local\Spotify\Update\spotify_installer-1.0.59.395.ge6ca9946-18.exe
() C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_dialogs.exe
(Spotify Ltd) C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Charly\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\WINDOWS\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\AppVShNotify.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Microsoft Corporation) C:\Program Files\rempl\remsh.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16102.10341.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\MMLoadDrvPXDiscrete.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\MMLoadDrvPXDiscrete.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\MMLoadDrvPXDiscrete.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\MMLoadDrvPXDiscrete.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\MMLoadDrvPXDiscrete.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\MMLoadDrvPXDiscrete.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.870_none_7645b64e266be2c8\TiWorker.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\WINDOWS\System32\DeviceCensus.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [415128 2015-10-15] ()
HKLM\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2406496 2017-06-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3486520 2017-07-12] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [MediaFire Tray] => C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_watch.exe [4075008 2016-03-08] ()
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Spotify] => C:\Users\Charly\AppData\Roaming\Spotify\Spotify.exe [15849072 2017-07-26] (Spotify Ltd)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\Run: [Spotify Web Helper] => C:\Users\Charly\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1579120 2017-07-26] (Spotify Ltd)
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\RunOnce: [Uninstall C:\Users\Charly\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Charly\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64"

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{af5a0a85-6121-4e8e-ab1c-cd3c47d75fdc}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> DefaultScope {91BD0348-48CB-4924-B633-EEA242BA7533} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C014DE662D20160105&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> {1516485F-8427-49EF-8F3F-A19DAC4B0769} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2170906037-549936913-1423911947-1001 -> {91BD0348-48CB-4924-B633-EEA242BA7533} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C014DE662D20160105&p={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-06-13] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-09-19] (DVDVideoSoft Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Charly\AppData\Roaming\Mozilla\Firefox\Profiles\rzTTZNwE.default [2017-07-15]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-06-04] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-10-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-06-04] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default [2017-07-27]
CHR Extension: (Google Docs) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Dark Skin for Youtube™) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2017-04-29]
CHR Extension: (YouTube) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (AVG Secure Search) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-07-20]
CHR Extension: (Google-Suche) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-20]
CHR Extension: (Skype) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-07-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-13]
CHR Extension: (Mein Chrome-Design) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2015-08-29]
CHR Extension: (Marc Ecko) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [2017-07-11]
CHR Extension: (Google Mail) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-13]
CHR Profile: C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-12]
CHR Extension: (Google Präsentationen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-22]
CHR Extension: (Google Docs) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-22]
CHR Extension: (Google Drive) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-22]
CHR Extension: (YouTube) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-22]
CHR Extension: (Google-Suche) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-22]
CHR Extension: (Google Tabellen) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-22]
CHR Extension: (SiteAdvisor) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-09-22]
CHR Extension: (Skype Click to Call) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-22]
CHR Extension: (Google Wallet) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-22]
CHR Extension: (Google Mail) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-22]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2170906037-549936913-1423911947-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-06-04] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-08] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-08] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-07-12] (Dropbox, Inc.)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-10] (ELAN Microelectronics Corp.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370064 2015-10-15] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-18] (Acer Incorporate)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MF NTFS Monitor; C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe [456176 2016-03-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-06-17] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [97184 2017-01-25] (Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R2 mfmonitor; C:\WINDOWS\System32\DRIVERS\mfmonitor_x64.sys [20696 2016-03-07] (Windows (R) Win 7 DDK provider)
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-07-27 11:36 - 2017-07-27 11:36 - 00003356 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2170906037-549936913-1423911947-1001
2017-07-25 23:12 - 2017-07-25 23:12 - 00000000 ___HD C:\$WINDOWS.~BT
2017-07-25 15:48 - 2017-07-25 15:48 - 00524754 _____ C:\Users\Charly\Documents\Zeugnisse_S.Ade.pdf
2017-07-25 15:23 - 2017-07-25 15:23 - 00338877 _____ C:\Users\Charly\Documents\Bewerbung.pdf
2017-07-24 12:22 - 2017-07-27 11:38 - 00000000 ____D C:\Users\Charly\Downloads\FRST-OlderVersion
2017-07-21 19:26 - 2017-07-21 21:42 - 00000000 ____D C:\Program Files\rempl
2017-07-20 18:18 - 2017-07-20 18:18 - 08162248 _____ (Malwarebytes) C:\Users\Charly\Downloads\adwcleaner_7.0.0.0.exe
2017-07-19 21:00 - 2017-07-25 23:13 - 00000000 ____D C:\WINDOWS\Panther
2017-07-18 18:08 - 2017-07-24 12:26 - 00054984 _____ C:\Users\Charly\Downloads\Addition.txt
2017-07-18 18:05 - 2017-07-27 11:38 - 02382848 _____ (Farbar) C:\Users\Charly\Downloads\FRST64.exe
2017-07-18 18:05 - 2017-07-27 11:38 - 00022354 _____ C:\Users\Charly\Downloads\FRST.txt
2017-07-18 18:04 - 2017-07-18 18:04 - 00000000 ____D C:\Users\Charly\AppData\Local\Microsoft Help
2017-07-18 16:54 - 2017-07-25 15:18 - 00000000 ____D C:\Users\Charly\Documents\Stuggi Schule
2017-07-18 16:50 - 2017-07-25 15:37 - 00528213 _____ C:\Users\Charly\Documents\Zeugnisse.pdf
2017-07-16 21:05 - 2017-07-16 21:05 - 00008704 ___SH C:\Users\Charly\Downloads\Thumbs.db
2017-07-15 21:36 - 2017-07-20 18:32 - 00000548 _____ C:\Users\Charly\Desktop\JRT.txt
2017-07-15 21:29 - 2017-07-15 21:30 - 01790024 _____ (Malwarebytes) C:\Users\Charly\Downloads\JRT.exe
2017-07-15 21:18 - 2017-07-15 21:18 - 04110280 _____ C:\Users\Charly\Downloads\AdwCleaner_6.047.exe
2017-07-14 21:53 - 2017-07-15 21:06 - 00000000 ____D C:\Users\Charly\Desktop\mbar
2017-07-14 21:53 - 2017-07-15 21:06 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-07-14 21:52 - 2017-07-14 21:52 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Charly\Desktop\mbar-1.09.3.1001.exe
2017-07-13 22:52 - 2017-07-13 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-07-13 17:16 - 2017-07-13 17:38 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-07-13 17:14 - 2017-07-13 17:14 - 08798992 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Charly\Downloads\AVG_Clear.exe
2017-07-12 21:58 - 2017-07-12 21:58 - 00049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-07-12 21:58 - 2017-07-12 21:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-07-12 19:40 - 2017-07-12 19:41 - 00000000 ____D C:\Users\Charly\AppData\Local\Avg
2017-07-12 18:22 - 2017-07-07 12:04 - 00808280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-07-12 18:22 - 2017-07-07 11:16 - 00700880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-07-12 18:22 - 2017-07-07 11:09 - 02945648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-07-12 18:22 - 2017-07-07 11:09 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-07-12 18:22 - 2017-07-07 11:05 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-07-12 18:22 - 2017-07-07 10:57 - 00295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-07-12 18:22 - 2017-07-07 10:35 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-07-12 18:22 - 2017-07-07 09:49 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-07-12 18:22 - 2017-07-07 09:48 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-07-12 18:22 - 2017-07-07 09:33 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-07-12 18:22 - 2017-07-07 09:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-07-12 18:22 - 2017-07-07 09:21 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-07-12 18:22 - 2017-07-07 09:17 - 02279936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-07-12 18:22 - 2017-07-07 09:08 - 00788992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-07-12 18:22 - 2017-07-07 09:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-07-12 18:22 - 2017-07-07 09:07 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-07-12 18:22 - 2017-07-07 09:03 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-07-12 18:22 - 2017-07-07 08:59 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-07-12 18:22 - 2017-07-07 08:36 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-07-12 18:22 - 2017-07-07 08:34 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-07-12 18:22 - 2017-07-07 08:33 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-07-12 18:22 - 2017-07-07 08:31 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-07-12 18:22 - 2017-07-07 08:11 - 05326848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 18:22 - 2017-06-17 11:52 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-07-12 18:22 - 2017-06-17 11:09 - 06536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-07-12 18:22 - 2017-06-17 09:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-07-12 18:22 - 2017-06-17 09:11 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-07-12 18:22 - 2017-06-17 08:54 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-07-12 18:22 - 2017-06-17 08:54 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-07-12 18:22 - 2017-06-17 08:53 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-07-12 18:22 - 2017-06-17 08:48 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-12 18:22 - 2017-06-17 08:44 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-07-12 18:22 - 2017-06-17 08:42 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-07-12 18:22 - 2017-06-17 08:39 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-07-12 18:22 - 2017-06-17 08:34 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-07-12 18:22 - 2017-06-17 08:30 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-07-12 18:22 - 2017-06-17 08:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-07-12 18:22 - 2017-06-17 08:20 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-07-12 18:22 - 2017-06-17 08:20 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-07-12 18:22 - 2017-06-17 08:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-07-12 18:22 - 2017-06-17 08:15 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-12 18:22 - 2017-06-17 08:05 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-07-12 18:22 - 2017-06-17 07:56 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-07-12 18:22 - 2017-06-17 07:53 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-07-12 18:22 - 2017-06-17 07:42 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-07-12 18:22 - 2017-06-17 07:41 - 02770432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-07-12 18:22 - 2017-06-17 07:35 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-07-12 18:22 - 2017-06-17 07:30 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-07-12 18:22 - 2017-06-17 07:27 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-12 18:22 - 2017-06-17 07:16 - 03574272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-12 18:22 - 2017-06-17 07:02 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-07-12 18:22 - 2017-03-18 18:41 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-07-12 18:21 - 2017-07-07 13:07 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-12 18:21 - 2017-07-07 13:06 - 07463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 18:21 - 2017-07-07 13:04 - 02149216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-12 18:21 - 2017-07-07 13:04 - 00384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-12 18:21 - 2017-07-07 12:51 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-12 18:21 - 2017-07-07 12:11 - 00858992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-07-12 18:21 - 2017-07-07 12:03 - 03699280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-07-12 18:21 - 2017-07-07 12:00 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-07-12 18:21 - 2017-07-07 12:00 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-07-12 18:21 - 2017-07-07 11:58 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-07-12 18:21 - 2017-07-07 11:58 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-07-12 18:21 - 2017-07-07 11:52 - 00360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-07-12 18:21 - 2017-07-07 11:21 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-07-12 18:21 - 2017-07-07 11:08 - 01090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-12 18:21 - 2017-07-07 11:08 - 00057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-07-12 18:21 - 2017-07-07 10:28 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-12 18:21 - 2017-07-07 10:22 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-07-12 18:21 - 2017-07-07 10:15 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-07-12 18:21 - 2017-07-07 10:13 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-12 18:21 - 2017-07-07 09:58 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-12 18:21 - 2017-07-07 09:57 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-12 18:21 - 2017-07-07 09:57 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-07-12 18:21 - 2017-07-07 09:56 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-12 18:21 - 2017-07-07 09:54 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-07-12 18:21 - 2017-07-07 09:51 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-12 18:21 - 2017-07-07 09:50 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-07-12 18:21 - 2017-07-07 09:45 - 01424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-12 18:21 - 2017-07-07 09:17 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-12 18:21 - 2017-07-07 09:13 - 03404800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-12 18:21 - 2017-07-07 09:10 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-07-12 18:21 - 2017-07-07 09:07 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-07-12 18:21 - 2017-07-07 09:02 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-07-12 18:21 - 2017-07-07 08:47 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-07-12 18:21 - 2017-07-07 08:44 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-12 18:21 - 2017-07-07 08:41 - 04891136 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-12 18:21 - 2017-07-07 08:37 - 22376960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 13394432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-12 18:21 - 2017-07-07 08:27 - 06977024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 18:21 - 2017-07-07 08:15 - 18675200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-07-12 18:21 - 2017-07-07 08:15 - 03661312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 19345408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 12139008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-07-12 18:21 - 2017-07-07 08:13 - 07848448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-07-12 18:21 - 2017-07-07 07:58 - 05666816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-07-12 18:21 - 2017-06-17 12:13 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-12 18:21 - 2017-06-17 12:11 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-07-12 18:21 - 2017-06-17 11:52 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-07-12 18:21 - 2017-06-17 11:07 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-07-12 18:21 - 2017-06-17 11:07 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-07-12 18:21 - 2017-06-17 10:04 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-07-12 18:21 - 2017-06-17 09:58 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-07-12 18:21 - 2017-06-17 09:51 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-12 18:21 - 2017-06-17 09:50 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-07-12 18:21 - 2017-06-17 09:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-07-12 18:21 - 2017-06-17 09:31 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-07-12 18:21 - 2017-06-17 09:30 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-07-12 18:21 - 2017-06-17 09:20 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-07-12 18:21 - 2017-06-17 09:19 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-07-12 18:21 - 2017-06-17 09:17 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-07-12 18:21 - 2017-06-17 09:13 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-07-12 18:21 - 2017-06-17 09:12 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-07-12 18:21 - 2017-06-17 09:07 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-07-12 18:21 - 2017-06-17 09:02 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-07-12 18:21 - 2017-06-17 09:01 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-07-12 18:21 - 2017-06-17 08:55 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-07-12 18:21 - 2017-06-17 08:52 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-07-12 18:21 - 2017-06-17 08:29 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-07-12 18:21 - 2017-06-17 08:12 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-07-12 18:21 - 2017-06-17 08:11 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-07-12 18:21 - 2017-06-17 07:34 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-07-12 18:21 - 2017-06-11 17:10 - 00448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-12 18:20 - 2017-07-07 10:37 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-07-12 18:20 - 2017-07-07 10:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-07-12 18:20 - 2017-07-07 09:29 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-07-12 18:20 - 2017-07-07 09:12 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 18:20 - 2017-06-17 12:16 - 01030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-07-12 18:20 - 2017-06-17 09:50 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-07-12 18:20 - 2017-06-17 09:41 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-07-12 18:20 - 2017-06-17 09:03 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-07-12 18:20 - 2017-06-17 08:49 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-12 18:20 - 2017-06-17 08:47 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-07-12 18:20 - 2017-06-17 07:40 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-12 18:20 - 2017-06-17 07:11 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-07-12 08:27 - 2017-07-12 19:26 - 00003146 _____ C:\Users\Charly\Desktop\fixlist.txt
2017-07-11 15:05 - 2017-07-11 15:05 - 00000000 ____D C:\Users\Charly\AppData\Local\UNP
2017-07-11 14:55 - 2017-07-11 14:56 - 00000000 ____D C:\Program Files\UNP
2017-07-11 14:55 - 2017-07-11 14:55 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-07-11 14:01 - 2017-07-11 14:43 - 00000000 ____D C:\AVG_Remover
2017-07-11 05:36 - 2017-07-11 05:36 - 00000000 ____D C:\Users\Charly\AppData\Local\TempTaskUpdateDetection03B36BD9-C04A-4DFC-BD38-2E59875A2990
2017-07-10 15:40 - 2017-07-11 16:19 - 00001083 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-07-10 15:40 - 2017-07-11 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-07-10 15:40 - 2017-07-10 15:40 - 00000000 ____D C:\Program Files\VS Revo Group
2017-07-09 12:14 - 2017-07-27 11:38 - 00000000 ____D C:\FRST
2017-07-03 19:35 - 2017-07-15 16:43 - 00000000 ____D C:\Users\Charly\Desktop\unneccessary
2017-06-30 16:58 - 2017-06-30 16:58 - 00338204 _____ C:\Users\Charly\Downloads\Bewerbung.pdf
2017-06-30 16:54 - 2017-07-25 15:12 - 00338113 _____ C:\Users\Charly\Documents\Bewerbung Plath.pdf
2017-06-30 16:40 - 2017-07-01 16:39 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-06-30 16:38 - 2017-07-11 14:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-30 16:38 - 2017-06-30 16:38 - 00002128 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-06-30 16:32 - 2017-06-30 16:33 - 01205776 _____ (Adobe Systems Incorporated) C:\Users\Charly\Downloads\readerdc_de_a_install.exe
2017-06-30 16:28 - 2017-06-30 16:49 - 00973975 _____ C:\Users\Charly\Documents\Zeugnisse_Shari-Ade.pdf
2017-06-30 15:38 - 2017-06-30 16:59 - 00068277 ____H C:\Users\Charly\Documents\~WRL1333.tmp

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-10-21 15:36 - 2013-10-31 20:50 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2013-10-31 20:50 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.dat
2017-07-27 11:42 - 2014-08-31 22:09 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Skype
2017-07-27 11:36 - 2015-07-29 23:51 - 00002424 _____ C:\Users\Charly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-27 11:36 - 2015-07-29 23:51 - 00000000 ___RD C:\Users\Charly\OneDrive
2017-07-27 11:34 - 2014-08-13 19:25 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Spotify
2017-07-27 11:34 - 2014-08-13 19:25 - 00000000 ____D C:\Users\Charly\AppData\Local\Spotify
2017-07-26 16:49 - 2016-01-08 23:29 - 00001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-07-26 16:38 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-07-26 16:37 - 2014-10-10 17:18 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-07-26 15:26 - 2016-02-13 19:11 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5403824B-0A7F-4D64-B6C2-0AD5920140AB}
2017-07-26 15:26 - 2015-08-29 19:05 - 00000000 ___HD C:\Users\Charly\.mediafire
2017-07-26 15:23 - 2017-06-11 19:32 - 00000000 ___RD C:\Users\Charly\Creative Cloud Files
2017-07-26 15:23 - 2014-09-27 23:55 - 00000000 ____D C:\Users\Charly\AppData\Local\Adobe
2017-07-26 15:20 - 2015-08-29 19:08 - 00000000 ___RD C:\Users\Charly\MediaFire
2017-07-26 15:19 - 2016-03-24 17:19 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-07-26 15:19 - 2016-01-08 23:29 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-07-26 15:19 - 2015-07-29 23:42 - 00000000 __SHD C:\Users\Charly\IntelGraphicsProfiles
2017-07-25 23:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2017-07-25 23:03 - 2016-02-13 19:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-25 23:02 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-07-25 15:02 - 2016-04-07 18:54 - 00000000 ____D C:\Users\Charly\AppData\Local\Deployment
2017-07-24 23:36 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-24 23:29 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-07-22 20:15 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-21 19:27 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-20 18:21 - 2014-09-28 16:12 - 00000000 ____D C:\AdwCleaner
2017-07-15 21:35 - 2016-01-08 23:38 - 00000000 ___RD C:\Users\Charly\Desktop\Dropbox
2017-07-15 21:25 - 2016-03-24 17:23 - 00000000 ____D C:\Users\Charly
2017-07-15 21:23 - 2017-01-18 19:01 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2017-07-15 20:04 - 2014-09-28 15:15 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-15 20:04 - 2014-09-28 15:15 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-07-13 22:53 - 2016-01-08 23:29 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-07-13 17:42 - 2014-12-02 18:43 - 00000000 ____D C:\ProgramData\AVG
2017-07-13 17:42 - 2014-12-02 13:50 - 00000000 ____D C:\Program Files (x86)\AVG
2017-07-13 17:25 - 2016-02-13 18:59 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2017-07-13 17:25 - 2016-02-13 18:59 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2017-07-13 17:25 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-07-13 17:25 - 2015-07-29 23:30 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-12 19:38 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-07-12 19:36 - 2016-02-13 10:21 - 00351968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 19:33 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-07-12 18:26 - 2014-08-16 14:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 18:23 - 2014-08-16 14:53 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 08:37 - 2015-08-06 20:52 - 00000000 ____D C:\Users\Charly\AppData\LocalLow\Temp
2017-07-11 14:33 - 2017-04-06 19:33 - 00004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-07-11 14:32 - 2017-04-06 19:33 - 00353232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgvmm.sys.149977641370304
2017-07-10 20:05 - 2016-03-24 17:18 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-06 14:27 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-30 16:43 - 2014-09-28 00:03 - 00000000 ____D C:\ProgramData\Adobe
2017-06-30 16:42 - 2014-09-28 02:10 - 00000000 ____D C:\Users\Charly\AppData\LocalLow\Adobe
2017-06-30 16:42 - 2014-08-14 00:47 - 00000000 ____D C:\Users\Charly\AppData\Roaming\Adobe
2017-06-30 16:37 - 2014-09-28 00:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-06-30 15:43 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 15:43 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-04-12 15:48 - 2015-04-12 15:48 - 0195315 _____ () C:\Users\Charly\AppData\Local\4A594BA6_stp.CIS
2015-04-12 15:48 - 2015-04-12 15:48 - 0000290 _____ () C:\Users\Charly\AppData\Local\4A594BA6_stp.CIS.part
2015-04-12 15:48 - 2015-04-12 15:48 - 0385602 _____ () C:\Users\Charly\AppData\Local\5D515C96_stp.CIS
2015-04-12 15:48 - 2015-04-12 15:48 - 0000220 _____ () C:\Users\Charly\AppData\Local\5D515C96_stp.CIS.part
2017-03-25 03:35 - 2017-03-25 03:35 - 0000846 _____ () C:\Users\Charly\AppData\Local\recently-used.xbel
2016-03-24 17:20 - 2016-03-24 17:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-07-18 22:05

==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-07-2017
durchgeführt von Charly (27-07-2017 11:44:50)
Gestartet von C:\Users\Charly\Downloads
Windows 10 Home Version 1511 (X64) (2016-03-26 04:45:20)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2170906037-549936913-1423911947-500 - Administrator - Disabled)
Charly (S-1-5-21-2170906037-549936913-1423911947-1001 - Administrator - Enabled) => C:\Users\Charly
DefaultAccount (S-1-5-21-2170906037-549936913-1423911947-503 - Limited - Disabled)
Gast (S-1-5-21-2170906037-549936913-1423911947-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2170906037-549936913-1423911947-1010 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3005 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2022 - Acer Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.1.1.202 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{E3CA751C-E133-0BF1-3151-7A6D3FB88015}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1390 - DsNET Corp)
Catalyst Control Center Next Localization BR (HKLM\...\{3E245378-BF77-6946-C6F6-096DBE5EAB82}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{51F85784-6799-5CA3-97B2-2E5904FC3E58}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{55A4D3AB-C8DF-26B2-89A8-7E16E1E40700}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{365AEAB2-4CF3-7CBB-0DAC-E9E14B688E65}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{45907537-804A-514F-5280-5F4F12A6DCBC}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{8E6F5592-ED7E-9C50-74AC-BF417B1FE291}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{7ABC6D83-816E-6D48-E65D-B0CEDD294E4E}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{962364E4-08BB-347D-32E7-2B789F37BF8A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{AD28960A-6190-C991-C964-308B86EAA2E2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{84C3F2C5-F7B2-2F08-CDF4-79EF7CC55D74}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{A0407E39-2AA4-60B3-885F-3C5347B6909E}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{C3EE628C-7394-FE2C-0C90-C05284EB528D}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0989D0EA-AFF3-5F9A-3D25-20EE133E409B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0E8A3B17-D603-B1B6-C205-1685EBDD23E9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{2F544F46-5F6E-97BB-3550-A0242A3C5754}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{1E7D3072-1D28-E33A-99DF-85D9F7ECD06E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{A8689A0F-5928-7300-B82B-C5E85131B7BA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{FC4086D6-E345-5F43-08BB-280FB57DAF49}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{76AAF56B-93D8-161D-809A-EC05F3B913DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{BA26B70C-3D8C-2D14-4122-211FB3E6F691}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{F8EBE530-A4D5-BF51-F623-3787E6B8A878}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{063CED74-F5F0-870E-DC9C-2D78FDEDA3EE}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{42FBD43F-DE53-6D4D-5134-E3C93B45CBEF}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{5FEACE78-C338-9AED-FF05-7DE7E273C774}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{13BB60AA-88F7-4B1F-2DEC-D81EEDE8B3AA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A3795528-F572-6314-C4E3-EE9DAF0FBF02}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{AC85CF50-9A55-0103-ADBF-365C37603AA4}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{37AA6227-FF2C-95AC-87C0-45DCC0BB87DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{4853A56D-7931-A08B-5BA7-8E2D61043DF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{B349892D-B015-033C-4CA8-3635E6B655D7}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{B28CF677-E2C8-12CA-52BB-19B6F066D36A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{BE8D6AB1-3049-2F0C-67FA-00C0A5D321A3}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{EB328356-1DF0-1CCE-3607-6361DD329219}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{26567561-DFB2-2B63-9BA8-6A490ED37016}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{43F6D22B-E0E9-EE90-9B62-1C5FC5D15A55}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{87E6EC29-AEC5-28CB-F773-93EB6C1B8A2B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{0809FEC1-EF86-51E9-8210-DC1B1BDB6745}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{CA55697D-BD74-3ED8-6B21-D7EDAD3B7D02}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{D4490E0F-8E7B-1097-B56A-7643C75F1C28}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{5FD706FF-6AD8-E372-A35A-879409982655}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{CFC860C8-4F51-E08C-A74C-2E444ED06160}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{DAB44116-0266-C65B-B643-AC11217C3041}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3AF70346-52C7-0334-606F-118D1C1CB7A2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9338D693-38B7-1ED4-9B42-BFA1D5600CCB}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{A4E7CA0C-84EB-5E29-2F04-06C4E4790C2F}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{53AE8AC7-5213-67AF-0DC0-CED696B77643}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{59D2664C-949B-7FA7-9880-ECB993B6616A}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{C971C145-258D-6650-7088-13DDB161327A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{970A40CA-46AB-986C-1798-976ED0EA00FA}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{DC9DFCBF-87DA-892C-6151-99CC9EF46E3E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{EBA09DAF-14B4-7BE7-676E-6E2FB21EDBDD}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4707CBFC-8ED4-463E-0FF9-DE86F4A743E9}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{9AA4DD93-94BF-22EA-C9D2-7084F304A31B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C1EFF2A2-DF4A-F6D1-B99C-1ED194AE9E78}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{379D900B-A785-6DB0-012E-434356A365B3}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{46EB68BE-8AAC-8C2B-7284-8DEDE6B5CD2A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{C14A3A5B-8A86-C239-37D7-158211778C54}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{366C4FB5-CF6E-258B-418D-E6D29549A278}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{7A6E431B-CF43-EC3E-FD7E-0A0AAB1B25FC}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{A50C89BC-8D8E-8828-824A-7171F6D583D5}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{0B5633F0-C415-2F08-671E-4C9E2FAACD45}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{89A1F076-19B8-A2B1-D5A3-E8247EFAF157}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{B10089DE-934F-6E0F-683A-B788F89348DF}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 30.4.22 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Free YouTube Download version 3.2.61.805 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.61.805 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
KB4023057 (HKLM\...\{27C6D60B-CAD4-4C70-A1F2-299C731EA8F7}) (Version: 2.0.0.0 - Microsoft Corporation)
League of Legends (HKLM-x32\...\{C56877FD-6BEB-4717-81B3-1254FA1FD7FC}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
MAGIX Speed burnR (MSI) (HKLM\...\{6C855B1C-FC55-4A00-9CCB-5ED6DB8770BF}) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{6C855B1C-FC55-4A00-9CCB-5ED6DB8770BF}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (HKLM\...\{9E2FEB28-7407-4009-9DC4-203EF2EF6BB7}) (Version: 13.0.0.28 - MAGIX AG) Hidden
MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{9E2FEB28-7407-4009-9DC4-203EF2EF6BB7}) (Version: 13.0.0.28 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MediaFire Desktop (HKLM-x32\...\MediaFire Desktop 1.6.16.10941) (Version: 1.9.5.11053 - MediaFire)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4945.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.3 - OBS Project)
OEM Application Profile (HKLM-x32\...\{ECA361B3-855E-EEAB-C4E9-FFA6F25A4DF4}) (Version: 1.00.0000 - Ihr Firmenname)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4945.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4945.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0407-0000-0000000FF1CE}) (Version: 15.0.4945.1001 - Microsoft Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
PX Profile Update (HKLM-x32\...\{F1642ACD-1F50-FCC2-BDA6-C83762316958}) (Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
TeamSpeak 3 Client (HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2170906037-549936913-1423911947-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-28356DD1EA23}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2170906037-549936913-1423911947-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [] -> {b5458932-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayError.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458930-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySynced.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458934-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayReadOnly.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458933-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayLock.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [] -> {b5458931-3c8c-4131-ba1e-f0b5350e4e1e} => C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySyncing.dll [2016-03-07] ()
ShellIconOverlayIdentifiers: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ShellIconOverlayIdentifiers: [1MediaFireIconError] -> {5EE8C634-CDC0-453D-9731-DF0B19F4E807} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [1MediaFireIconReadOnly] -> {7995D0FC-769B-4197-AEC0-991921CB99E1} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [1MediaFireIconSynched] -> {9A3B79CB-D899-40B5-8DBC-20447F1ADC8F} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [1MediaFireIconSyncing] -> {C4D81971-6B13-4173-AB21-F83AD20CCC04} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [MediaFireIconLock] -> {759F3E92-F4E8-4953-8315-238B8B17E0F3} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ContextMenuHandlers01: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [MFShellExt] -> {729a9bf2-11e8-45fa-a274-b8442fcfe2f2} => C:\Program Files (x86)\MediaFire Desktop\bin\MFDesktopShellExtx64.dll [2016-03-07] ()
ContextMenuHandlers04: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers05: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-04-24] (Advanced Micro Devices, Inc.)
ContextMenuHandlers05: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-10-15] (Intel Corporation)
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2017-05-26] ()
ContextMenuHandlers06: [MFShellExt] -> {729a9bf2-11e8-45fa-a274-b8442fcfe2f2} => C:\Program Files (x86)\MediaFire Desktop\bin\MFDesktopShellExtx64.dll [2016-03-07] ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0277ABBA-D9C9-4BF6-8F35-AD0165C8AECB} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-ch4rlysun@web.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {0CC61EB4-E43E-4287-BD0A-F79D8E4C393A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {1B6F0AFC-6AB7-4EB9-882F-C7AAA236F153} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG
Task: {22F23436-7DE1-41AC-B5EB-8F9F3D068E18} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {24987A8A-FED9-4441-8A8D-BA56CF697CF9} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-06-18] (Acer Incorporate)
Task: {276900CE-3874-45B5-AC7A-81CE2C48496A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {3258AD87-329B-4A32-BC40-55E2AD5A1527} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-08] (Dropbox, Inc.)
Task: {417CD2AD-97A0-415A-9015-FB697B9E1957} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock => C:\Program Files\rempl\remsh.exe [2017-07-12] (Microsoft Corporation)
Task: {42E79FBD-574E-488D-96FD-52391D3EA1E5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {48017C56-7A45-43C2-9D0A-367C4C86A3C1} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\remsh.exe [2017-07-12] (Microsoft Corporation)
Task: {4DA65828-9105-44C0-96EE-F2663A7B4E39} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {550AB1BF-4E46-4CA0-9496-92B0745D52F0} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {5A6C6E41-47E2-419F-9AD0-5CDAECCD90FF} - System32\Tasks\Java(TM) Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15] (Oracle Corporation)
Task: {7A3E324A-91C1-4739-9926-8CF4209D725B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {8750CB3F-5F28-42BF-8B83-7D784A1D24A7} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe
Task: {8DC29586-7F6E-470E-ADC5-A0ED83F54CC1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {91D260A5-5E9B-41FE-BE89-7623FC7051FA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-08] (Dropbox, Inc.)
Task: {995FB0DD-A824-46E8-A6AA-61D351F20F9F} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {A788564F-7F0C-47F6-A033-3075CE5E8558} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {B27C306A-9E19-4725-9346-AB24A5F561DF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {BD9C7092-C996-4A26-8E35-38CE54AFBE1C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {C731FC09-8A35-41F0-A5FE-BA79F2C775E5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {CAA947D7-B147-43C8-992E-5E5183C737E0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-04-24] (Advanced Micro Devices, Inc.)
Task: {CCD8F6A1-C1E3-4A6B-BFBE-DF2232745E39} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-07-12] (Microsoft Corporation)
Task: {D3FABFEE-BDF1-4A5B-B4DC-A9B635138045} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DA23F6F5-6DFC-498C-BFE7-CF9DCF2350B5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {DA2C4783-232B-4B9E-BE90-1C5D7A1A8016} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {E1C6BB4A-BCC1-4BBB-B01D-60A5FCDF21D7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


Shortcut: C:\Users\Charly\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2017-03-15 18:59 - 2017-03-04 07:31 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2014-10-23 15:04 - 2017-01-17 04:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-08-29 18:57 - 2016-03-08 00:46 - 00456176 _____ () C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe
2017-07-12 18:21 - 2017-06-17 12:13 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayError.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySynced.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayReadOnly.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayLock.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00235008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySyncing.dll
2016-03-30 23:39 - 2016-03-07 23:35 - 00312832 _____ () C:\Program Files (x86)\MediaFire Desktop\bin\MFDesktopShellExtx64.dll
2015-10-15 22:05 - 2015-10-15 22:05 - 00415128 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-02-13 19:02 - 2016-02-13 19:02 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-13 01:42 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2017-03-15 18:58 - 2017-03-04 05:19 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 18:58 - 2017-03-04 05:14 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-09 21:51 - 2017-04-28 01:46 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-07-12 18:21 - 2017-06-17 07:15 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-14 02:59 - 2016-09-14 02:59 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-14 02:59 - 2016-09-14 02:59 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-14 03:00 - 2016-09-14 03:00 - 00191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2015-08-29 18:57 - 2016-03-08 00:46 - 04075008 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_watch.exe
2015-08-29 18:56 - 2016-03-08 00:46 - 01290752 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_hub.exe
2015-08-29 18:56 - 2016-03-08 00:46 - 05757440 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\MediaFire Desktop.exe
2015-08-29 18:57 - 2016-03-08 00:46 - 04428800 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_filetransfer.exe
2015-08-29 18:57 - 2016-03-08 00:46 - 04987392 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_browser.exe
2015-08-29 18:56 - 2016-03-08 00:46 - 11100160 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_central_control.exe
2015-08-29 18:56 - 2016-03-08 00:46 - 02470912 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_monitor.exe
2015-08-29 18:57 - 2016-03-08 00:46 - 08389632 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mf_dialogs.exe
2017-05-15 02:38 - 2017-05-15 02:38 - 34957896 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-06-26 21:09 - 2017-06-23 05:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
2017-06-26 21:09 - 2017-06-23 05:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
2017-07-21 19:26 - 2017-07-21 19:26 - 24054272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-07-21 19:26 - 2017-07-21 19:26 - 09161728 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-07-14 15:21 - 2017-07-14 15:23 - 03500456 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-07-21 19:26 - 2017-07-21 19:26 - 10910208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\EntPlat.dll
2017-03-15 18:58 - 2017-03-04 10:02 - 03081560 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2017-04-24 13:38 - 2017-04-24 13:38 - 02567168 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.2.831.0_x64__8wekyb3d8bbwe\People.BackgroundTasks.dll
2017-04-24 13:38 - 2017-04-24 13:38 - 00138752 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.2.831.0_x64__8wekyb3d8bbwe\PeopleUtilRT.Windows.dll
2015-08-29 18:56 - 2016-03-07 23:56 - 00112142 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\libgcc_s_dw2-1.dll
2015-08-29 18:56 - 2016-03-07 23:56 - 01000974 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\libstdc++-6.dll
2017-04-26 15:19 - 2017-04-26 15:19 - 02005976 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2015-08-29 18:57 - 2016-03-07 23:37 - 04587073 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\libsqlite3cc.dll
2015-08-29 18:56 - 2016-03-07 23:35 - 00042496 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\win32overlay.dll
2015-08-29 18:56 - 2016-03-07 23:35 - 00007680 _____ () C:\Users\Charly\AppData\Local\MediaFire Desktop\mfmonitor.dll
2017-06-04 07:19 - 2017-06-04 07:19 - 52051552 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2017-07-13 22:52 - 2017-07-12 21:58 - 00746816 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-07-13 22:52 - 2017-07-12 21:58 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-06-27 21:35 - 2017-07-12 21:58 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00125904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 01862992 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-07-13 22:52 - 2017-07-12 21:58 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-07-13 22:52 - 2017-07-12 21:58 - 00020432 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-07-13 22:52 - 2017-07-12 21:58 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-06-27 21:35 - 2017-07-12 21:58 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-07-13 22:52 - 2017-07-12 21:58 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-07-13 22:52 - 2017-07-12 21:58 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-06-27 21:35 - 2017-07-12 21:58 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-07-13 22:52 - 2017-07-12 21:58 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-07-13 22:52 - 2017-07-12 21:59 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-07-13 22:52 - 2017-07-12 21:58 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-07-13 22:52 - 2017-07-12 21:59 - 00181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-06-27 21:35 - 2017-07-12 22:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-07-13 22:52 - 2017-07-12 21:59 - 00024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-07-13 22:52 - 2017-07-12 21:59 - 01637688 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-06-27 21:35 - 2017-07-12 22:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-06-27 21:35 - 2017-07-12 22:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-07-13 22:52 - 2017-07-12 22:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2015-05-24 00:58 - 2017-07-26 15:21 - 67117168 _____ () C:\Users\Charly\AppData\Roaming\Spotify\libcef.dll
2015-05-24 00:58 - 2017-07-26 15:21 - 02253424 _____ () C:\Users\Charly\AppData\Roaming\Spotify\libglesv2.dll
2015-05-24 00:58 - 2017-07-26 15:21 - 00086640 _____ () C:\Users\Charly\AppData\Roaming\Spotify\libegl.dll
2013-10-31 21:11 - 2013-02-20 23:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2017-05-30 01:39 - 2017-05-30 01:39 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-05-30 01:39 - 2017-05-30 01:39 - 00214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-05-30 01:38 - 2017-05-30 01:38 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2017-05-30 01:39 - 2017-05-30 01:39 - 00125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-06-04 07:47 - 2017-06-04 07:47 - 00099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2017-05-30 01:39 - 2017-05-30 01:39 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2017-05-19 23:49 - 2017-05-19 23:49 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-05-19 23:49 - 2017-05-19 23:49 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2017-05-19 23:49 - 2017-05-19 23:49 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-05-19 23:50 - 2017-05-19 23:50 - 00214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-06-04 07:43 - 2017-06-04 07:43 - 00099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2017-05-19 23:49 - 2017-05-19 23:49 - 00098816 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2017-05-19 23:50 - 2017-05-19 23:50 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2170906037-549936913-1423911947-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charly\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2170906037-549936913-1423911947-1001\...\StartupApproved\Run: => "Discord"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{A5DF1B28-4914-45CC-A52B-ED1054427052}] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{722FC5D9-E1C7-406C-AE3D-7F718CE9E05A}] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{CDF859D1-0B16-4AC9-80D3-34A90509E99E}] => (Block) C:\users\charly\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{2964E611-569D-4DDB-A5AB-12C37A3B12AE}] => (Block) C:\users\charly\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EFDCB505-13C3-41C7-B8D5-96B76BF62E38}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{A120EF44-F137-497E-894F-C2A125145112}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{2E8F2E0F-D6BD-42DE-9266-CA93612806ED}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{1C0BC04C-A28C-4535-8132-F3C9A38E12DF}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{85AE3844-1362-4779-A38C-8AC51F93606C}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{2605EB22-19E0-4C4F-9BD7-8C289F854EC4}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{DDDF68FD-5BE6-4BA4-87AE-0A60BCBD451A}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{B15AE4E0-525A-4C8F-A8BE-23345724FA21}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{83372F0A-B2BE-428F-8DBD-27B7441AAF5A}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{5177D192-25A1-4739-BA25-CD0169BF7FF9}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [UDP Query User{00C56E25-88CA-4D43-A64F-6032E091C55C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{101E4702-5C23-4C6A-9547-FC03EE0A3858}C:\users\charly\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{5D5EBC16-EA70-4DEF-9A4D-79A215E6ED10}C:\users\charly\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B6A72B33-A7CE-4569-B643-EF0B044F869B}] => (Block) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [{44C8514F-5B2E-4203-BF5A-D2131E5E7E20}] => (Block) C:\users\charly\appdata\roaming\spotify\spotify.exe
FirewallRules: [{059A39BA-1071-4433-A0C5-CDF28B622D0E}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [{8C7D3343-D132-4BB4-8196-65B1C699FB2B}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [{8892DA1D-1511-4D86-BC09-36B3DC911D0F}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [{0538DF19-7785-463C-9DF5-767E128CB9C8}] => (Allow) C:\Users\Charly\Downloads\LeagueofLegends_EUW_Installer_2016_11_10.exe
FirewallRules: [TCP Query User{93468028-73E8-47F4-B3F1-34DA62FA40B2}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0E4DF9E3-9B64-4A31-9771-C475A4837EFB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{7FF3B3A4-D6EE-469E-886B-B9B4B0F14E41}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{5D0051D6-D5BE-41A5-8926-4F3ED8F3EC00}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F67EB794-F50D-4B76-805F-C2524EAD74DC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{81A7A3B4-56CB-4915-9FA8-49866416F552}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Wiederherstellungspunkte =========================

15-07-2017 21:31:04 JRT Pre-Junkware Removal
16-07-2017 21:15:20 JRT Pre-Junkware Removal
20-07-2017 18:26:58 JRT Pre-Junkware Removal
24-07-2017 22:53:01 Windows Modules Installer
24-07-2017 23:27:58 Windows Modules Installer

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (07/25/2017 03:44:15 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (07/24/2017 11:28:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (07/24/2017 10:53:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (07/24/2017 06:10:37 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/24/2017 03:23:48 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/24/2017 01:05:04 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (07/24/2017 12:21:16 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/22/2017 10:25:43 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/22/2017 06:43:03 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (07/21/2017 11:23:09 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error


Systemfehler:
=============
Error: (07/26/2017 03:23:00 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (07/25/2017 11:14:35 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200d fehlgeschlagen: Funktionsupdate für Windows 10, Version 1703

Error: (07/25/2017 11:05:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde mit folgendem Fehler beendet:
Es wurde versucht, auf ein Token zuzugreifen, das nicht vorhanden ist.

Error: (07/25/2017 11:00:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Benutzerdatenspeicher _413e9 erreicht.

Error: (07/25/2017 11:00:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_413e9 erreicht.

Error: (07/25/2017 11:00:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_413e9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/25/2017 11:00:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _413e9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/25/2017 11:00:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_413e9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/25/2017 11:00:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_413e9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/24/2017 11:00:42 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


CodeIntegrity:
===================================
  Date: 2017-07-24 23:31:38.638
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-07-24 22:57:18.902
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-07-12 20:24:31.837
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-07-12 19:37:37.816
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-21 21:53:10.190
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-21 17:56:32.268
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-14 22:23:57.957
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-06-11 23:20:21.811
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 22:45:00.085
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 14:51:16.572
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz
Prozentuale Nutzung des RAM: 75%
Installierter physikalischer RAM: 3976.27 MB
Verfügbarer physikalischer RAM: 982.81 MB
Summe virtueller Speicher: 8328.27 MB
Verfügbarer virtueller Speicher: 4236.04 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:448.75 GB) (Free:348.64 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CA515DF8)

Partition: GPT.

==================== Ende von Addition.txt ============================

cosinus 27.07.2017 11:01
FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
HKLM\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
CHR Extension: (AVG Secure Search) - C:\Users\Charly\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-07-20]
CHR HomePage: Default -> mysearch.avg.com
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
Task: {0CC61EB4-E43E-4287-BD0A-F79D8E4C393A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {1B6F0AFC-6AB7-4EB9-882F-C7AAA236F153} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG
Task: {22F23436-7DE1-41AC-B5EB-8F9F3D068E18} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {42E79FBD-574E-488D-96FD-52391D3EA1E5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {4DA65828-9105-44C0-96EE-F2663A7B4E39} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {995FB0DD-A824-46E8-A6AA-61D351F20F9F} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {A788564F-7F0C-47F6-A033-3075CE5E8558} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {BD9C7092-C996-4A26-8E35-38CE54AFBE1C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {C731FC09-8A35-41F0-A5FE-BA79F2C775E5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {DA23F6F5-6DFC-498C-BFE7-CF9DCF2350B5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {DA2C4783-232B-4B9E-BE90-1C5D7A1A8016} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {E1C6BB4A-BCC1-4BBB-B01D-60A5FCDF21D7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {8750CB3F-5F28-42BF-8B83-7D784A1D24A7} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe
C:\ProgramData\AVG
C:\Users\Charly\AppData\Local\Avg
C:\Program Files (x86)\AVG
emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Alle Zeitangaben in WEZ +1. Es ist jetzt 22:24 Uhr.
Seite 3 von 4 12 3 4
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131