![]() |
|
Alles rund um Windows: Windows Explorer funktioniert nicht mehr - Win7Windows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
![]() | #1 |
![]() ![]() | ![]() Problem: Windows Explorer funktioniert nicht mehr - Win7 Hi Ihr potenziell Helfende, seit einiger Zeit erscheint die Fehlermeldung "windows explorer funktioniert nicht mehr", wenn ich den windows explorer schließe. ich bin der Meinung, dass dieses einige Zeit später auftauchte, nachdem ich google drive installierte. Eine Deinstallation von google drive brachte allerdings keine Besserung. Starte ich win7 im abgesicherten Modus, tritt dass Problem nicht auf. Alle Windows updates habe ich eingespielt. Avira zeigt keine Funde. Malewarebytes ebenfalls nicht: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 06.12.2014 Suchlauf-Zeit: 14:24:03 Logdatei: malewarbaytes.log_20141206.txt Administrator: Ja Version: 2.00.4.1028 Malware Datenbank: v2014.12.06.05 Rootkit Datenbank: v2014.12.03.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x86 Dateisystem: NTFS Benutzer: hennin Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 409509 Verstrichene Zeit: 42 Min, 36 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Warnen PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 0 (Keine schädliche Elemente erkannt) Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 0 (Keine schädliche Elemente erkannt) Dateien: 0 (Keine schädliche Elemente erkannt) Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-12-2014 02 Ran by hennin (administrator) on HENNIN-PC on 06-12-2014 18:59:05 Running from C:\Users\hennin\Downloads Loaded Profiles: hennin & (Available profiles: hennin & insi & ritter) Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe () C:\Users\hennin\AppData\Roaming\Host System\host.exe (Deutsche Telekom AG) C:\Program Files\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Star Finanz - Software Entwicklung und Vertriebs GmbH) C:\Program Files\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe (Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files\StarMoney 9.0 apoEdition\ouservice\StarMoneyOnlineUpdate.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe (shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe () C:\Windows\PLFSetI.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\concentr.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\wfcrun32.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (T-Systems Enterprise Services GmbH) C:\Program Files\DSL-Manager\DslMgr.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (T-Systems Enterprise Services GmbH) C:\Program Files\DSL-Manager\DslMgrSvc.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (Microsoft Corporation) C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [FreePDF Assistant] => C:\Program Files\FreePDF_XP\fpassist.exe [371200 2011-02-23] (shbox.de) HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2011-07-16] () HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421736 2011-11-13] (Apple Inc.) HKLM\...\Run: [ConnectionCenter] => C:\Program Files\Citrix\ICA Client\concentr.exe [300472 2010-05-12] (Citrix Systems, Inc.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2221352 2011-03-31] (Synaptics Incorporated) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [703736 2014-11-19] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated) HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [124208 2014-10-22] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X] HKU\S-1-5-21-3374427329-3499852293-1971439536-1001\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation) HKU\S-1-5-21-3374427329-3499852293-1971439536-1001\...\Policies\Explorer: [DisallowRun] 1 HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation) HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: [DisallowRun] 1 HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [PC Suite Tray] => "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [QuickTime Task] => "C:\Program Files\QuickTime\QTTask.exe" -atboottime HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\insi\AppData\Roaming\Spotify\Spotify.exe [7880664 2012-12-14] (Spotify Ltd) HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\insi\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1199576 2012-12-14] (Spotify Ltd) AppInit_DLLs: ÿ => ÿ File Not Found Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk ShortcutTarget: DSL-Manager.lnk -> C:\Program Files\DSL-Manager\DslMgr.exe (T-Systems Enterprise Services GmbH) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk ShortcutTarget: DSL-Manager.lnk -> C:\Program Files\DSL-Manager\DslMgr.exe (T-Systems Enterprise Services GmbH) Startup: C:\Users\insi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk ShortcutTarget: DSL-Manager.lnk -> C:\Program Files\DSL-Manager\DslMgr.exe (T-Systems Enterprise Services GmbH) Startup: C:\Users\ritter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk ShortcutTarget: DSL-Manager.lnk -> C:\Program Files\DSL-Manager\DslMgr.exe (T-Systems Enterprise Services GmbH) Startup: C:\Users\ritter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mediencenter Assistent.lnk ShortcutTarget: Mediencenter Assistent.lnk -> C:\Program Files\Telekom\Mediencenter\MediencenterSoftware.exe (Deutsche Telekom AG) ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-3374427329-3499852293-1971439536-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-3374427329-3499852293-1971439536-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-3374427329-3499852293-1971439536-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = HKU\S-1-5-21-3374427329-3499852293-1971439536-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/ HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1D51ADBCD716CA01 HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=66028 HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1001 -> DefaultScope {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=foxysecurity SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1001 -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=foxysecurity SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1001 -> {4789AD42-591C-4B3A-9465-DB0DBED7E143} URL = hxxp://www.google.de/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=foxysecurity SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=foxysecurity SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {4789AD42-591C-4B3A-9465-DB0DBED7E143} URL = hxxp://www.google.de/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://www.crawler.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=66028 SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {4789AD42-591C-4B3A-9465-DB0DBED7E143} URL = hxxp://www.google.de/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd BHO: No Name -> {269D0B18-45D0-46D0-A644-2D60D928BC7F} -> C:\Users\hennin\AppData\LocalLow\Internet Explorer BHO\bho.dll () BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Skype Plug-In -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKU\S-1-5-21-3374427329-3499852293-1971439536-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - No File Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL No File [ ] Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: @real.com/nppl3260;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprjplug;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpplugin;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\CCMSDK.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\cgpcfg.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\CgpCore.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\confmgr.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ctxlogging.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ctxmui.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\icafile.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\icalogon.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npicaN.dll () FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll (RealNetworks, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\sslsdk_b.dll (Citrix Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\TcpPServ.dll (Citrix Systems, Inc.) FF SearchPlugin: C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\searchplugins\11-suche.xml FF SearchPlugin: C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\searchplugins\englische-ergebnisse.xml FF SearchPlugin: C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\searchplugins\gmx-suche.xml FF SearchPlugin: C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\searchplugins\lastminute.xml FF SearchPlugin: C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\searchplugins\webde-suche.xml FF Extension: Flagfox - C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2014-06-28] FF Extension: Adblock Plus - C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-28] FF Extension: Skype extension - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-11-23] FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-10-06] Chrome: ======= CHR HKLM\...\Chrome\Extension: [caeaobpemokdfnidgaebncaooofnbfha] - C:\Users\hennin\ChromeExtensions\caeaobpemokdfnidgaebncaooofnbfha\amazon-icon-fwde.crx [2014-10-02] CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [432888 2014-11-19] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [432888 2014-11-19] (Avira Operations GmbH & Co. KG) R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [164656 2014-10-22] (Avira Operations GmbH & Co. KG) R2 HostService; C:\Users\hennin\AppData\Roaming\Host System\host.exe [536576 2014-07-23] () [File not signed] R2 MCSWASVR; C:\Program Files\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe [12800 2012-08-13] (Deutsche Telekom AG) [File not signed] R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [17536800 2014-07-25] (NVIDIA Corporation) S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [633856 2011-06-08] (Nokia) [File not signed] R2 StarMoney 8.0 OnlineUpdate; C:\Program Files\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe [699680 2012-12-21] (Star Finanz - Software Entwicklung und Vertriebs GmbH) R2 StarMoney 9.0 OnlineUpdate; C:\Program Files\StarMoney 9.0 apoEdition\ouservice\StarMoneyOnlineUpdate.exe [697488 2014-07-04] (Star Finanz-Software Entwicklung und Vertriebs GmbH) R3 TDslMgrService; C:\Program Files\DSL-Manager\DslMgrSvc.exe [307200 2008-10-23] (T-Systems Enterprise Services GmbH) [File not signed] S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 acedrv11; C:\Windows\system32\drivers\acedrv11.sys [295432 2010-01-20] (Protect Software GmbH) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [98160 2014-10-15] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-10-15] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-30] (Avira Operations GmbH & Co. KG) R1 DslMNLwf; C:\Windows\System32\DRIVERS\dslmnlwf.sys [16448 2007-08-01] (T-Systems Enterprise Services GmbH) S3 NPF; C:\Windows\System32\drivers\npf.sys [34064 2007-11-06] (CACE Technologies) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19232 2014-07-25] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation) R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH) U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) S3 catchme; \??\C:\Users\hennin\AppData\Local\Temp\catchme.sys [X] S3 cpuz136; \??\C:\Users\hennin\AppData\Local\Temp\cpuz136\cpuz136_x32.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-12-06 18:58 - 2014-12-06 18:58 - 00000000 ____D () C:\Users\hennin\Downloads\FRST-OlderVersion 2014-12-06 14:18 - 2014-12-06 14:20 - 00028822 _____ () C:\Users\hennin\Downloads\Addition.txt 2014-12-06 14:16 - 2014-12-06 18:59 - 00024833 _____ () C:\Users\hennin\Downloads\FRST.txt 2014-12-06 14:16 - 2014-12-06 18:59 - 00000000 ____D () C:\FRST 2014-12-06 14:02 - 2014-12-06 18:58 - 01111040 _____ (Farbar) C:\Users\hennin\Downloads\FRST.exe 2014-12-06 13:59 - 2014-12-06 14:02 - 00000000 ____D () C:\AdwCleaner 2014-12-06 13:59 - 2014-12-06 13:59 - 00000055 _____ () C:\AdwCleanerDebug.txt 2014-12-06 13:57 - 2014-12-06 13:58 - 02153472 _____ () C:\Users\hennin\Downloads\AdwCleaner_4.104.exe 2014-12-05 22:09 - 2014-12-05 22:09 - 00244264 _____ () C:\Users\hennin\Downloads\Firefox Setup Stub 34.0.5.exe 2014-12-05 21:44 - 2014-12-05 21:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2014-12-05 21:42 - 2014-12-05 21:43 - 00880784 _____ (Google Inc.) C:\Users\hennin\Downloads\googledrivesync.exe 2014-12-05 20:50 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2014-12-05 20:50 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2014-12-05 20:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-12-05 20:49 - 2014-12-05 20:50 - 00000000 ____D () C:\Users\hennin\AppData\Local\NVIDIA Corporation 2014-12-05 20:49 - 2014-12-05 20:49 - 00000000 ____D () C:\Users\hennin\AppData\Local\NVIDIA 2014-12-05 20:49 - 2014-12-05 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-12-05 20:49 - 2014-07-25 15:01 - 01291280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge.dll 2014-12-05 20:49 - 2014-07-25 15:01 - 01126480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll 2014-12-05 20:48 - 2014-07-02 06:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin 2014-12-05 20:47 - 2014-07-02 21:54 - 00061728 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2014-12-05 20:44 - 2014-08-11 21:19 - 00895264 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll 2014-12-05 20:44 - 2014-08-11 21:19 - 00162592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys 2014-12-05 20:44 - 2014-08-11 21:19 - 00068384 _____ (NVIDIA Corporation) C:\Windows\system32\nvapo32v.dll 2014-12-05 20:44 - 2014-08-11 21:19 - 00028448 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 24198088 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 16122344 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 15296456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 14498552 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 11283344 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 11222048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 10681176 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-12-05 20:44 - 2014-07-02 21:54 - 03988952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 02814656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 01054552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3234052.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 00907552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3234052.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 00907096 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 00869152 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll 2014-12-05 20:44 - 2014-07-02 21:54 - 00021215 _____ () C:\Windows\system32\nvinfo.pb 2014-12-05 20:44 - 2014-03-31 17:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll 2014-12-05 20:44 - 2014-03-31 17:42 - 00034080 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys 2014-12-05 20:31 - 2014-12-05 20:35 - 218685256 _____ (NVIDIA Corporation) C:\Users\hennin\Downloads\340.52-notebook-win8-win7-32bit-international-whql.exe 2014-12-05 20:09 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-12-05 20:09 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2014-12-05 20:09 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-12-05 20:09 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2014-12-05 20:09 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-12-05 20:06 - 2013-10-02 01:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2014-12-05 20:06 - 2013-10-02 01:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-12-05 20:06 - 2013-10-02 01:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-12-05 20:06 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2014-12-05 20:06 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2014-12-05 20:06 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-12-05 20:06 - 2013-10-02 00:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-12-05 20:06 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-12-05 20:06 - 2013-10-02 00:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2014-12-05 20:06 - 2013-10-01 23:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2014-12-05 20:06 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-12-05 20:06 - 2013-10-01 21:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-12-05 19:56 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2014-12-05 19:53 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2014-12-05 19:53 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2014-12-05 19:53 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2014-12-05 19:53 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2014-12-05 19:53 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2014-12-05 19:53 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2014-12-05 19:53 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2014-12-05 19:53 - 2012-06-02 15:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2014-12-05 19:52 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2014-12-05 19:52 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2014-12-05 19:49 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-12-05 19:49 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll 2014-12-05 19:49 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys 2014-12-05 19:49 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2014-12-05 19:49 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2014-12-05 19:49 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2014-12-05 19:49 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2014-12-05 19:49 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2014-12-05 19:49 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll 2014-12-05 19:49 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2014-12-05 19:49 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2014-12-05 19:49 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe 2014-12-05 19:48 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-12-05 19:48 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-12-05 19:48 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-12-05 19:48 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-12-05 19:48 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-12-05 19:48 - 2014-07-08 23:30 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-12-05 19:48 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2014-12-05 19:48 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2014-12-05 19:48 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2014-12-05 19:48 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2014-12-05 19:48 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll 2014-12-05 19:48 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2014-12-05 19:48 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll 2014-12-05 19:48 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs 2014-12-05 19:48 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs 2014-12-05 19:48 - 2011-03-11 06:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys 2014-12-05 19:48 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2014-12-05 19:47 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2014-12-05 19:47 - 2014-02-04 03:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-12-05 19:47 - 2014-02-04 03:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-12-05 19:47 - 2014-02-04 03:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys 2014-12-05 19:47 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2014-12-05 19:47 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll 2014-12-05 19:47 - 2014-01-24 03:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2014-12-05 19:47 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2014-12-05 19:47 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll 2014-12-05 19:47 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2014-12-05 19:47 - 2012-10-03 17:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2014-12-05 19:47 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll 2014-12-05 19:47 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2014-12-05 19:47 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll 2014-12-05 19:47 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll 2014-12-05 19:47 - 2012-10-03 17:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll 2014-12-05 19:47 - 2012-10-03 16:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys 2014-12-05 19:47 - 2012-08-21 21:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe 2014-12-05 19:47 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll 2014-12-05 19:47 - 2011-03-11 06:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys 2014-12-05 19:47 - 2011-03-11 06:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys 2014-12-05 19:47 - 2011-03-11 06:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys 2014-12-05 19:47 - 2011-03-11 06:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys 2014-12-05 19:47 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe 2014-12-05 19:47 - 2011-03-11 05:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2014-12-05 19:46 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-12-05 19:46 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-12-05 19:46 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-12-05 19:46 - 2014-01-28 03:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2014-12-05 19:46 - 2013-03-19 04:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll 2014-12-05 19:46 - 2013-01-24 05:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-12-05 19:46 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2014-12-05 19:46 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2014-12-05 19:46 - 2012-08-22 18:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2014-12-05 19:46 - 2012-07-04 20:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys 2014-12-05 19:46 - 2012-05-05 08:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-12-05 19:46 - 2012-05-01 05:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2014-12-05 19:46 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2014-12-05 19:46 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll 2014-12-05 19:46 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe 2014-12-05 19:45 - 2014-06-25 02:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-12-05 19:35 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll 2014-12-05 19:35 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll 2014-12-05 19:35 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll 2014-12-05 19:35 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll 2014-12-05 19:35 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2014-12-05 19:35 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe 2014-12-05 19:35 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe 2014-12-05 19:35 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe 2014-12-05 19:35 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe 2014-12-03 19:47 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-12-03 19:47 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-12-03 19:47 - 2014-11-06 04:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-12-03 19:47 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-12-03 19:47 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-12-03 19:47 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-12-03 19:47 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-12-03 19:47 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-12-03 19:47 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-12-03 19:47 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-12-03 19:47 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-12-03 19:47 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-12-03 19:47 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-12-03 19:47 - 2014-11-06 03:59 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-12-03 19:47 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-12-03 19:47 - 2014-11-06 03:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-12-03 19:47 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-12-03 19:47 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-12-03 19:47 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-12-03 19:47 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-12-03 19:47 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-12-03 19:47 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-12-03 19:47 - 2014-11-06 03:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-12-03 19:47 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-12-03 19:47 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-12-03 19:47 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-12-03 19:47 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-12-03 19:47 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-12-03 19:47 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-12-03 19:47 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-12-03 16:59 - 2014-10-10 01:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-12-03 16:59 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-12-03 16:59 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-12-03 16:47 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-12-03 16:47 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll 2014-12-03 16:46 - 2014-10-14 02:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-12-03 16:46 - 2014-10-14 02:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-12-03 16:46 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-12-03 16:46 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2014-12-03 16:46 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2014-12-03 16:46 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-12-03 16:46 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-12-03 16:46 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-12-03 16:46 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-12-03 16:46 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-12-03 16:46 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2014-12-03 16:46 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-12-03 16:46 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-12-03 16:46 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2014-12-03 16:46 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-12-03 16:46 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-12-03 16:46 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL 2014-12-03 16:45 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-12-03 16:44 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-11-23 20:54 - 2014-12-06 18:02 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-11-07 21:31 - 2014-08-23 02:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-11-07 21:30 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll 2014-11-07 21:30 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2014-11-07 21:30 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2014-11-07 21:30 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-11-07 21:30 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2014-11-07 21:29 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2014-11-07 21:29 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-11-07 21:29 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2014-11-07 21:29 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll 2014-11-07 21:17 - 2014-11-07 21:17 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-11-07 21:16 - 2014-11-07 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-07 21:16 - 2014-11-07 21:15 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-11-07 21:16 - 2014-11-07 21:15 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-11-07 21:16 - 2014-11-07 21:15 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-11-07 21:16 - 2014-11-07 21:15 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-11-07 17:56 - 2014-11-07 17:56 - 00002097 _____ () C:\Users\Public\Desktop\StarMoney 9.0 apoEdition.lnk 2014-11-07 17:56 - 2014-11-07 17:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarMoney 9.0 apoEdition 2014-11-07 17:52 - 2014-12-04 21:03 - 00000000 ____D () C:\Program Files\StarMoney 9.0 apoEdition 2014-11-07 17:41 - 2014-11-07 17:41 - 00001109 _____ () C:\Users\Public\Desktop\Avira.lnk 2014-11-07 17:26 - 2014-11-07 17:56 - 00000000 ____D () C:\ProgramData\StarMoney 9.0 2014-11-07 16:51 - 2014-11-07 17:17 - 184705392 _____ () C:\Users\hennin\Downloads\SM_9_apo.exe 2014-11-06 20:26 - 2014-12-05 22:11 - 00001123 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-11-06 20:23 - 2014-11-06 20:24 - 00244392 _____ () C:\Users\hennin\Downloads\Firefox Setup Stub 33.0.2.exe 2014-11-06 19:53 - 2014-11-06 19:53 - 00000000 ____D () C:\Users\Default\AppData\Local\Google 2014-11-06 19:53 - 2014-11-06 19:53 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-12-06 18:38 - 2010-02-27 17:58 - 01992779 _____ () C:\Windows\WindowsUpdate.log 2014-12-06 18:18 - 2013-07-19 20:02 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-12-06 18:12 - 2009-07-14 05:34 - 00023680 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-12-06 18:12 - 2009-07-14 05:34 - 00023680 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-12-06 18:07 - 2014-05-10 19:19 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-12-06 18:02 - 2014-05-10 19:18 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-12-06 18:02 - 2013-07-19 20:02 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-12-06 18:02 - 2012-04-25 21:02 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-12-06 18:02 - 2010-02-27 18:44 - 00190310 _____ () C:\Windows\PFRO.log 2014-12-06 18:02 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-12-06 18:02 - 2009-07-14 05:39 - 00193637 _____ () C:\Windows\setupact.log 2014-12-06 14:23 - 2014-05-10 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-12-06 14:23 - 2012-03-11 18:15 - 00001078 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-12-06 13:04 - 2011-09-02 18:24 - 00001142 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3374427329-3499852293-1971439536-1004UA.job 2014-12-06 13:04 - 2011-09-02 18:24 - 00001120 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3374427329-3499852293-1971439536-1004Core.job 2014-12-05 22:11 - 2011-09-29 18:36 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-12-05 21:46 - 2014-10-26 16:22 - 00001723 _____ () C:\Users\hennin\Desktop\Google Drive.lnk 2014-12-05 21:46 - 2014-10-26 16:22 - 00000000 ___RD () C:\Users\hennin\Google Drive 2014-12-05 21:44 - 2011-09-15 19:15 - 00000000 ____D () C:\Program Files\Google 2014-12-05 21:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-12-05 21:14 - 2010-02-27 18:14 - 01626920 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-12-05 20:52 - 2010-08-30 19:56 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-12-05 20:49 - 2011-12-08 22:35 - 00000000 ____D () C:\TEMP 2014-12-05 20:49 - 2010-03-02 01:08 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-12-05 20:48 - 2010-02-27 18:51 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-12-05 20:21 - 2009-07-14 05:46 - 00001515 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2014-12-05 20:20 - 2010-02-27 18:15 - 00123656 _____ () C:\Users\hennin\AppData\Local\GDIPFONTCACHEV1.DAT 2014-12-05 20:17 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2014-12-05 20:16 - 2009-07-14 05:33 - 00440792 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-12-05 20:12 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE 2014-12-05 20:12 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE 2014-12-05 20:01 - 2010-03-01 23:52 - 00000000 ____D () C:\Program Files\Microsoft.NET 2014-12-05 14:53 - 2010-03-05 11:32 - 00000000 ____D () C:\Users\hennin\AppData\Local\FreePDF_XP 2014-12-04 21:27 - 2010-04-05 13:30 - 00000000 ____D () C:\ProgramData\Installations 2014-12-04 21:26 - 2010-04-05 13:30 - 00000000 ____D () C:\Program Files\Nokia 2014-12-04 21:26 - 2010-03-02 01:22 - 00131090 _____ () C:\Windows\DPINST.LOG 2014-12-04 21:07 - 2013-10-20 17:15 - 00000000 ____D () C:\Users\hennin\AppData\Roaming\Dropbox 2014-12-03 18:38 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache 2014-12-03 17:44 - 2010-03-05 09:09 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-12-03 17:39 - 2013-08-21 19:43 - 00000000 ____D () C:\Windows\system32\MRT 2014-12-03 17:22 - 2010-03-05 11:53 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-11-24 14:04 - 2010-02-27 18:28 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-11-21 06:14 - 2014-05-10 19:18 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-11-21 06:14 - 2014-05-10 19:18 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-11-21 06:14 - 2011-11-17 21:19 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-11-16 20:49 - 2014-10-24 20:17 - 00000000 ____D () C:\Users\hennin\Documents\dorette-von-stern-strasse 16 2014-11-07 21:17 - 2013-12-30 21:20 - 00000000 ____D () C:\ProgramData\Oracle 2014-11-07 21:08 - 2010-02-27 18:15 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-11-07 17:53 - 2009-07-14 03:04 - 00017486 _____ () C:\Windows\system32\Drivers\etc\services 2014-11-07 17:41 - 2014-08-14 20:36 - 00000000 ____D () C:\ProgramData\Package Cache 2014-11-07 17:41 - 2012-11-02 23:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2014-11-07 17:41 - 2012-11-02 23:48 - 00000000 ____D () C:\Program Files\Avira Some content of TEMP: ==================== C:\Users\hennin\AppData\Local\Temp\2048Portable_2.1_English.paf.exe C:\Users\hennin\AppData\Local\Temp\amazonicon_fwde.exe C:\Users\hennin\AppData\Local\Temp\amazoninstallernircmdc.exe C:\Users\hennin\AppData\Local\Temp\avgnt.exe C:\Users\hennin\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnskuzz.dll C:\Users\hennin\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe C:\Users\hennin\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe C:\Users\hennin\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe C:\Users\hennin\AppData\Local\Temp\NEventMessages.dll C:\Users\hennin\AppData\Local\Temp\NOSEventMessages.dll C:\Users\hennin\AppData\Local\Temp\sdan.exe C:\Users\hennin\AppData\Local\Temp\sdapk.exe C:\Users\hennin\AppData\Local\Temp\sdaspwn.exe C:\Users\hennin\AppData\Local\Temp\WEB.DE_MailCheck_FF_Setup_2.10.1.1735.exe C:\Users\hennin\AppData\Local\Temp\_is7BF8.exe C:\Users\insi\AppData\Local\Temp\0a50e25a83046228c11dcaa7eeed09bb.exe C:\Users\insi\AppData\Local\Temp\AskSLib.dll C:\Users\insi\AppData\Local\Temp\SkypeSetup.exe C:\Users\ritter\AppData\Local\Temp\0a50e25a83046228c11dcaa7eeed09bb.exe C:\Users\ritter\AppData\Local\Temp\AskSLib.dll C:\Users\ritter\AppData\Local\Temp\avgnt.exe C:\Users\ritter\AppData\Local\Temp\IcqUpdater.exe C:\Users\ritter\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe C:\Users\ritter\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-12-03 18:28 ==================== End Of Log ============================ Code:
ATTFilter # AdwCleaner v4.104 - Bericht erstellt am 06/12/2014 um 19:05:47 # Aktualisiert 05/12/2014 von Xplode # Database : 2014-12-03.1 [Live] # Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits) # Benutzername : hennin - HENNIN-PC # Gestartet von : C:\Users\hennin\Downloads\AdwCleaner_4.104.exe # Option : Suchen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Datei Gefunden : C:\Users\hennin\AppData\Roaming\Mozilla\Firefox\Profiles\72hd323l.default-1403946598414\searchplugins\11-suche.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin.gif Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin.src Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-1.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-10.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-11.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-12.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-13.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-14.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-15.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-16.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-17.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-18.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-19.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-2.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-20.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-21.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-22.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-23.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-24.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-25.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-26.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-27.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-28.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-3.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-4.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-5.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-6.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-7.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-8.xml Datei Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\searchplugins\icqplugin-9.xml Datei Gefunden : C:\Users\ritter\AppData\Roaming\Mozilla\Firefox\Profiles\cqodsjvp.default\foxydeal.sqlite Datei Gefunden : C:\Users\ritter\Desktop\Continue SweetIM Installation.lnk Datei Gefunden : C:\Users\ritter\Desktop\sweetpcfix.url Ordner Gefunden : C:\Program Files\Common Files\DVDVideoSoft\TB Ordner Gefunden : C:\Program Files\Conduit Ordner Gefunden : C:\Users\hennin\AppData\Local\CrashRpt Ordner Gefunden : C:\Users\hennin\AppData\Local\PackageAware Ordner Gefunden : C:\Users\hennin\AppData\LocalLow\Conduit Ordner Gefunden : C:\Users\hennin\AppData\LocalLow\Internet Explorer BHO Ordner Gefunden : C:\Users\hennin\AppData\Roaming\dvdvideosoftiehelpers Ordner Gefunden : C:\Users\insi\AppData\LocalLow\Conduit Ordner Gefunden : C:\Users\insi\AppData\Roaming\Mozilla\Firefox\Profiles\jiuyz6oe.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07} Ordner Gefunden : C:\Users\ritter\AppData\LocalLow\Conduit ***** [ Tasks ] ***** ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit Schlüssel Gefunden : HKCU\Software\AppDataLow\Toolbar Schlüssel Gefunden : HKCU\Software\YahooPartnerToolbar Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\Extension.DLL Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT2405280 Schlüssel Gefunden : HKLM\SOFTWARE\Conduit Schlüssel Gefunden : HKLM\SOFTWARE\ParetoLogic ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.17420 -\\ Mozilla Firefox v34.0.5 (x86 de) [jiuyz6oe.default] - Zeile gefunden : user_pref("browser.startup.homepage", "hxxp://start.icq.com/"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.allowSendURL", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.defSearchChange", true); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.displayHistory", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.engineVerified", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.firstTbRun", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.geolastmodified", 1379500277); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.historyCapacity", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.icqgeo", 49); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.installTime", "1345190976"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.installsource", "1"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.itbsitescount", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.newtab_most_visited_state", "0"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.newtab_recently_closed_state", "1"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.newtab_state", "1"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.numberOfSearches", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.previousFFVersion", "23.0.1"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.searchOnDrop", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.showSitesPanel", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.skip_default_search", "no"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.suggestions", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.uniqueID", "127832301912783231821278926501747"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.usageStatstTimestamp", 1379500280); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.userEngineApproved", true); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.version", "1.5.3"); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.voucherHideClicks", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.voucherMoreLinkClicks", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.voucherRedeemClicks", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.voucherWasShown", 0); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.xmlEnableSuggestions", false); [jiuyz6oe.default] - Zeile gefunden : user_pref("icqtoolbar.xmlLanguage", "de"); [jiuyz6oe.default] - Zeile gefunden : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q="); [cqodsjvp.default] - Zeile gefunden : user_pref("extensions.enabledAddons", "DivXWebPlayer%40divx.com:2.0.2.039,ich%40maltegoetz.de:1.5.5,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:31.0"); ************************* AdwCleaner[R0].txt - [9350 octets] - [06/12/2014 13:59:38] AdwCleaner[R1].txt - [9225 octets] - [06/12/2014 19:05:47] ########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [9285 octets] ########## danke+gruss henning |
Themen zu Windows Explorer funktioniert nicht mehr - Win7 |
antivir, browser, desktop, explorer, explorer funktioniert nicht, fehlermeldung, funktioniert nicht mehr, google, microsoft, mozilla, nvidia, problem, registry, rundll, safer networking, schutz, services.exe, software, starmoney, superantispyware, svchost.exe, updates, windows, windows explorer funktioniert nicht mehr, windows updates |