![]() |
Log-Analyse und Auswertung: Fenster öffnen sich automatisch in chrome mit WerbungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
![]() |
![]() | #16 |
![]() | ![]() Fenster öffnen sich automatisch in chrome mit WerbungCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015 durchgeführt von SYSTEM auf MININT-J1ACI4R (18-09-2015 00:15:21) Gestartet von f:\ Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 Start-Modus: Recovery Standard: ControlSet001 ACHTUNG!:=====> Wenn das System startfähig ist sollte FRST im normalen oder abgesicherten Modus ausgeführt werden, um ein vollständiges Ergebnis zu erhalten. Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [30720 2015-07-10] () HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26112 2015-07-10] () HKLM\...\Winlogon: [Shell] explorer.exe [4532304 2015-08-11] () HKLM-x32\...\Winlogon: [Shell] explorer.exe [4048808 2015-08-11] () HKU\Default\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] () HKU\Default User\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] () HKU\Viktor\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.) AppInit_DLLs: C:\ProgramData\Saophase\Quoit.dll => C:\ProgramData\Saophase\Quoit.dll [985600 2015-09-15] () AppInit_DLLs-x32: C:\ProgramData\Saophase\MoveLotjob.dll => C:\ProgramData\Saophase\MoveLotjob.dll [757248 2015-09-15] () ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AJRouter; C:\Windows\System32\AJRouter.dll [23040 2015-07-10] () S3 ALG; C:\Windows\System32\alg.exe [97792 2015-07-10] () S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [43520 2015-07-10] () S3 Appinfo; C:\Windows\System32\appinfo.dll [93696 2015-07-10] () S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.) S3 AppMgmt; C:\Windows\System32\appmgmts.dll [200192 2015-07-10] () S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [165376 2015-07-10] () S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [621056 2015-07-10] () S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [2178560 2015-08-18] () S2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [280064 2015-07-30] () S2 Audiosrv; C:\Windows\System32\Audiosrv.dll [1067520 2015-08-01] () S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114176 2015-07-10] () S3 BDESVC; C:\Windows\System32\bdesvc.dll [359936 2015-07-10] () S2 BFE; C:\Windows\System32\bfe.dll [794112 2015-07-10] () S2 BITS; C:\Windows\System32\qmgr.dll [1168896 2015-07-10] () S2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [526336 2015-07-10] () S3 Browser; C:\Windows\System32\browser.dll [133120 2015-07-10] () S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] () S3 bthserv; C:\Windows\system32\bthserv.dll [85504 2015-07-10] () S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] () S3 CertPropSvc; C:\Windows\System32\certprop.dll [192000 2015-07-10] () S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2768472 2015-08-11] (Microsoft Corporation) S3 ClipSVC; C:\Windows\System32\ClipSVC.dll [658568 2015-08-01] () S2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-01] () S2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-01] () S2 CryptSvc; C:\Windows\system32\cryptsvc.dll [77312 2015-07-10] () S3 CscService; C:\Windows\System32\cscsvc.dll [733184 2015-07-10] () S2 DcomLaunch; C:\Windows\system32\rpcss.dll [873984 2015-07-10] () S3 DcpSvc; C:\Windows\system32\dcpsvc.dll [196096 2015-07-10] () S3 defragsvc; C:\Windows\System32\defragsvc.dll [495104 2015-07-10] () S2 DeviceAssociationService; C:\Windows\system32\das.dll [405504 2015-07-10] () S3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [111616 2015-07-10] () S3 DevQueryBroker; C:\Windows\system32\DevQueryBroker.dll [33280 2015-07-10] () S2 Dhcp; C:\Windows\system32\dhcpcore.dll [356352 2015-07-10] () S2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [292352 2015-07-10] () S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] () S2 DiagTrack; C:\Windows\system32\diagtrack.dll [1643872 2015-08-11] () S3 dkab_device; C:\WINDOWS\system32\DKabcoms.exe [476568 2006-10-21] ( ) S3 dkab_device; C:\WINDOWS\SysWOW64\DKabcoms.exe [508824 2006-10-21] ( ) S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] () S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] () S2 dmwappushservice; C:\Windows\system32\dmwappushsvc.dll [63488 2015-07-10] () S2 Dnscache; C:\Windows\System32\dnsrslvr.dll [276992 2015-07-10] () S2 DoSvc; C:\Windows\system32\dosvc.dll [1169408 2015-08-01] () S3 dot3svc; C:\Windows\System32\dot3svc.dll [263680 2015-07-10] () S2 DPS; C:\Windows\system32\dps.dll [168960 2015-07-10] () S3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [237568 2015-07-10] () S3 DsSvc; C:\Windows\System32\DsSvc.dll [143872 2015-07-10] () S3 Eaphost; C:\Windows\System32\eapsvc.dll [106496 2015-07-10] () S2 EFS; C:\Windows\system32\efssvc.dll [55808 2015-07-10] () S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] () S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] () S2 EventLog; C:\Windows\System32\wevtsvc.dll [1729024 2015-07-10] () S2 EventSystem; C:\Windows\system32\es.dll [472576 2015-07-10] () S2 EventSystem; C:\Windows\SysWOW64\es.dll [344576 2015-07-10] () S3 Fax; C:\Windows\system32\fxssvc.exe [651776 2015-07-10] () S3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2015-07-10] () S3 FDResPub; C:\Windows\system32\fdrespub.dll [35840 2015-07-10] () S3 fhsvc; C:\Windows\system32\fhsvc.dll [118784 2015-07-10] () S2 FontCache; C:\Windows\system32\FntCache.dll [1679360 2015-08-08] () S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2015-06-17] () S2 gpsvc; C:\Windows\System32\gpsvc.dll [1335296 2015-07-10] () S3 hidserv; C:\Windows\system32\hidserv.dll [34304 2015-07-10] () S3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2015-07-10] () S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [273408 2015-07-10] () S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [463872 2015-07-10] () S3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [381440 2015-07-10] () S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] () S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [115200 2015-07-10] () S3 IKEEXT; C:\Windows\System32\ikeext.dll [954368 2015-07-10] () S2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [954880 2015-07-10] () S3 KeyIso; C:\Windows\system32\keyiso.dll [96256 2015-07-10] () S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [69632 2015-07-10] () S3 KtmRm; C:\Windows\system32\msdtckrm.dll [378880 2015-07-10] () S2 LanmanServer; C:\Windows\system32\srvsvc.dll [283136 2015-07-10] () S2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [279040 2015-07-10] () S3 lfsvc; C:\Windows\System32\lfsvc.dll [27136 2015-07-10] () S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] () S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] () S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [279040 2015-07-10] () S3 lmhosts; C:\Windows\System32\lmhsvc.dll [23040 2015-07-10] () S2 LSM; C:\Windows\System32\lsm.dll [749056 2015-07-10] () S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] () S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) S2 MpsSvc; C:\Windows\system32\mpssvc.dll [856576 2015-07-10] () S3 MSDTC; C:\Windows\System32\msdtc.exe [147968 2015-07-10] () S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [151040 2015-07-10] () S3 msiserver; C:\Windows\System32\msiexec.exe [65536 2015-08-01] () S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [58368 2015-08-01] () S3 NcaSvc; C:\Windows\System32\ncasvc.dll [167424 2015-07-10] () S3 NcbService; C:\Windows\System32\ncbservice.dll [337408 2015-07-10] () S3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [75264 2015-07-10] () S3 Netlogon; C:\Windows\system32\netlogon.dll [836096 2015-07-10] () S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [708608 2015-07-10] () S3 Netman; C:\Windows\System32\netman.dll [265728 2015-07-10] () S3 netprofm; C:\Windows\System32\netprofmsvc.dll [550400 2015-07-10] () S3 NetSetupSvc; C:\Windows\System32\NetSetupSvc.dll [187392 2015-08-18] () S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [135848 2015-07-10] () S3 NgcCtnrSvc; C:\Windows\System32\NgcCtnrSvc.dll [268800 2015-07-10] () S3 NgcSvc; C:\Windows\system32\ngcsvc.dll [512000 2015-07-10] () S2 NlaSvc; C:\Windows\System32\nlasvc.dll [371712 2015-07-10] () S2 nsi; C:\Windows\system32\nsisvc.dll [29184 2015-07-10] () S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] () S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [351232 2015-07-10] () S3 p2psvc; C:\Windows\system32\p2psvc.dll [434176 2015-07-10] () S2 PcaSvc; C:\Windows\System32\pcasvc.dll [508768 2015-07-10] () S3 PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH) S3 PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH) S2 PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH) S3 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [1977856 2015-07-10] () S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2015-07-10] () S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] () S3 pla; C:\Windows\system32\pla.dll [1486848 2015-07-10] () S3 pla; C:\Windows\SysWOW64\pla.dll [1536512 2015-07-10] () S3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [111616 2015-07-10] () S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [27648 2015-07-10] () S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [351232 2015-07-10] () S3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [390656 2015-07-10] () S2 Power; C:\Windows\system32\umpo.dll [93184 2015-07-10] () S2 ProfSvc; C:\Windows\system32\profsvc.dll [324608 2015-07-10] () S3 QWAVE; C:\Windows\system32\qwave.dll [286720 2015-07-10] () S3 RasAuto; C:\Windows\System32\rasauto.dll [106496 2015-07-10] () S3 RasMan; C:\Windows\System32\rasmans.dll [679936 2015-07-10] () S4 RemoteAccess; C:\Windows\System32\mprdim.dll [497152 2015-07-10] () S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [410112 2015-07-10] () S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [154112 2015-07-10] () S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] () S2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79360 2015-07-10] () S3 RpcLocator; C:\Windows\system32\locator.exe [10752 2015-07-10] () S2 RpcSs; C:\Windows\system32\rpcss.dll [873984 2015-07-10] () S2 SamSs; C:\Windows\system32\lsass.exe [56344 2015-07-10] () S2 Saophase; C:\ProgramData\Saophase\Saophase.exe [33792 2015-09-01] () S4 SCardSvr; C:\Windows\System32\SCardSvr.dll [232448 2015-07-10] () S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [181760 2015-07-10] () S2 Schedule; C:\Windows\system32\schedsvc.dll [1008640 2015-08-27] () S3 SCPolicySvc; C:\Windows\System32\certprop.dll [192000 2015-07-10] () S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [150528 2015-07-10] () S3 seclogon; C:\Windows\system32\seclogon.dll [31232 2015-07-10] () S2 SENS; C:\Windows\System32\sens.dll [72192 2015-07-10] () S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-01] () S3 SensorService; C:\Windows\system32\SensorService.dll [229376 2015-07-30] () S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [177152 2015-07-10] () S3 SessionEnv; C:\Windows\system32\sessenv.dll [371200 2015-07-10] () S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [312320 2015-07-10] () S4 SharedAccess; C:\Windows\System32\ipnathlp.dll [452608 2015-07-10] () S2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [593920 2015-07-10] () S2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [544768 2015-07-10] () S3 smphost; C:\Windows\System32\smphost.dll [19968 2015-07-10] () S3 smphost; C:\Windows\SysWOW64\smphost.dll [17920 2015-07-10] () S3 SmsRouter; C:\Windows\system32\SmsRouterSvc.dll [583680 2015-07-10] () S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [15872 2015-07-10] () S3 SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation) S2 Spooler; C:\Windows\System32\spoolsv.exe [781824 2015-07-10] () S2 sppsvc; C:\Windows\system32\sppsvc.exe [6525424 2015-07-10] () S3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [243712 2015-07-10] () S3 SSScsiSV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation) S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [210944 2015-07-10] () S3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] () S3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] () S2 stisvc; C:\Windows\System32\wiaservc.dll [637440 2015-07-10] () S3 StorSvc; C:\Windows\system32\storsvc.dll [394240 2015-07-10] () S3 svsvc; C:\Windows\system32\svsvc.dll [13824 2015-07-10] () S3 swprv; C:\Windows\System32\swprv.dll [464896 2015-07-10] () S2 SysMain; C:\Windows\system32\sysmain.dll [1106432 2015-08-11] () S2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [379904 2015-07-10] () S3 TabletInputService; C:\Windows\System32\TabSvc.dll [151040 2015-08-01] () S3 TapiSrv; C:\Windows\System32\tapisrv.dll [311808 2015-07-10] () S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [254976 2015-07-10] () S3 TermService; C:\Windows\System32\termsrv.dll [1032192 2015-07-10] () S2 Themes; C:\Windows\system32\themeservice.dll [58368 2015-07-10] () S2 tiledatamodelsvc; C:\Windows\system32\tileobjserver.dll [503808 2015-08-03] () S3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [167936 2015-07-10] () S2 TrkWks; C:\Windows\System32\trkwks.dll [114176 2015-07-10] () S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [120832 2015-07-10] () S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [43008 2015-07-10] () S3 UmRdpService; C:\Windows\System32\umrdp.dll [276992 2015-07-10] () S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-01] () S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-01] () S3 upnphost; C:\Windows\System32\upnphost.dll [452096 2015-07-10] () S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [329216 2015-07-10] () S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-30] () S2 UserManager; C:\Windows\System32\usermgr.dll [717312 2015-07-10] () S3 UsoSvc; C:\Windows\system32\usocore.dll [343040 2015-08-01] () S3 VaultSvc; C:\Windows\System32\vaultsvc.dll [322048 2015-08-18] () S3 vds; C:\Windows\System32\vds.exe [665088 2015-07-10] () S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmicrdv; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmictimesync; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 vmicvss; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] () S3 VSS; C:\Windows\system32\vssvc.exe [1370112 2015-07-10] () S3 W32Time; C:\Windows\system32\w32time.dll [518656 2015-07-10] () S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] () S3 wbengine; C:\Windows\system32\wbengine.exe [1570816 2015-07-10] () S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [605184 2015-07-10] () S2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [593920 2015-08-11] () S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [471040 2015-07-10] () S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [43008 2015-07-10] () S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [33792 2015-07-10] () S3 WdiServiceHost; C:\Windows\system32\wdi.dll [98304 2015-07-10] () S3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [89600 2015-07-10] () S3 WdiSystemHost; C:\Windows\system32\wdi.dll [98304 2015-07-10] () S3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [89600 2015-07-10] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] () S3 WebClient; C:\Windows\System32\webclnt.dll [228864 2015-07-10] () S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [199680 2015-07-10] () S3 Wecsvc; C:\Windows\system32\wecsvc.dll [211456 2015-07-10] () S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [27648 2015-07-10] () S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [95744 2015-07-10] () S3 WerSvc; C:\Windows\System32\WerSvc.dll [133120 2015-07-10] () S3 WiaRpc; C:\Windows\System32\wiarpc.dll [74752 2015-07-10] () S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] () S3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [855552 2015-08-01] () S3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [667136 2015-08-01] () S2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [226304 2015-07-10] () S3 WinRM; C:\Windows\system32\WsmSvc.dll [2556928 2015-07-10] () S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2181120 2015-07-10] () S3 WlanSvc; C:\Windows\System32\wlansvc.dll [2226688 2015-08-18] () S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [2093056 2015-08-13] () S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [202752 2015-07-10] () S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1473536 2015-07-10] () S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1844736 2015-07-10] () S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [86016 2015-07-10] () S3 WpnService; C:\Windows\system32\WpnService.dll [49152 2015-07-10] () S2 wscsvc; C:\Windows\System32\wscsvc.dll [179200 2015-07-10] () S2 WSearch; C:\Windows\system32\SearchIndexer.exe [902656 2015-08-01] () S2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [712192 2015-08-01] () S3 WSService; C:\Windows\System32\WSService.dll [3467784 2015-07-10] () S3 wuauserv; C:\Windows\system32\wuaueng.dll [2235904 2015-08-20] () S3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [96256 2015-07-10] () S3 WwanSvc; C:\Windows\System32\wwansvc.dll [1178112 2015-08-11] () S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] () S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] () S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] () ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [235520 2015-07-10] () S0 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] () S0 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-08-01] () S0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] () S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [12288 2015-07-10] () S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [13312 2015-07-10] () S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [12800 2015-07-10] () S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] () S1 AFD; C:\Windows\system32\drivers\afd.sys [577888 2015-07-10] () S0 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] () S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [215552 2015-07-10] () S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [121344 2015-07-10] () S3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [118272 2015-07-10] () S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] () S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] () S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] () S3 AppID; C:\Windows\system32\drivers\appid.sys [141664 2015-07-10] () S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] () S3 AsyncMac; C:\Windows\System32\drivers\asyncmac.sys [28160 2015-07-10] () S0 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] () S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] () S1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [55296 2015-07-10] () S1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [41472 2015-07-10] () S5 BattC; C:\Windows\System32\Drivers\BattC.sys [36704 2015-07-10] () S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2015-07-10] () S1 Beep; C:\Windows\System32\Drivers\Beep.sys [9728 2015-07-10] () S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [105472 2015-07-10] () S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [42496 2015-07-10] () S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [105984 2015-07-10] () S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [65536 2015-07-30] () S3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2015-07-10] () S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [65536 2015-07-10] () S3 BthPan; C:\Windows\System32\drivers\bthpan.sys [128512 2015-07-10] () S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [929280 2015-08-20] () S3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [84992 2015-07-10] () S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [32256 2015-07-10] () S3 CapImg; C:\Windows\System32\drivers\capimg.sys [116736 2015-07-10] () S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92672 2015-07-10] () S1 cdrom; C:\Windows\System32\drivers\cdrom.sys [174080 2015-07-10] () S3 circlass; C:\Windows\System32\drivers\circlass.sys [48640 2015-07-10] () S0 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] () S3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [29184 2015-07-10] () S0 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-08-01] () S4 cnghwassist; C:\Windows\System32\DRIVERS\cnghwassist.sys [39264 2015-07-10] () S3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] () S3 condrv; C:\Windows\System32\drivers\condrv.sys [41984 2015-07-10] () S1 CSC; C:\Windows\System32\drivers\csc.sys [544768 2015-07-10] () S1 dam; C:\Windows\System32\drivers\dam.sys [61280 2015-08-01] () S1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [138240 2015-07-10] () S0 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] () S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [33792 2015-07-10] () S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [16168 2015-07-10] () S3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [1983840 2015-08-03] () S3 e1iexpress; C:\Windows\System32\drivers\e1i63x64.sys [482328 2015-07-10] () S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] () S0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] () S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] () S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [11776 2015-07-10] () S3 exfat; C:\Windows\System32\Drivers\exfat.sys [313856 2015-07-10] () S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [331104 2015-07-10] () S3 fcvsc; C:\Windows\System32\drivers\fcvsc.sys [31232 2015-07-10] () S3 fdc; C:\Windows\System32\drivers\fdc.sys [32256 2015-07-10] () S1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] () S0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] () S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [35840 2015-07-10] () S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [26112 2015-07-10] () S0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] () S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [62816 2015-07-10] () S0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] () S0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] () S0 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] () S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [13312 2015-07-10] () S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] () S3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [159072 2015-07-10] () S1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] () S3 HdAudAddService; C:\Windows\system32\DRIVERS\HdAudio.sys [379392 2015-07-10] () S3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [80896 2015-07-10] () S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [28160 2015-07-10] () S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [107520 2015-07-10] () S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [51200 2015-07-10] () S3 hidinterrupt; C:\Windows\System32\drivers\hidinterrupt.sys [50016 2015-07-10] () S3 HidIr; C:\Windows\System32\drivers\hidir.sys [46592 2015-07-10] () S3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [38400 2015-07-10] () S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] () S3 HTTP; C:\Windows\System32\drivers\HTTP.sys [1010016 2015-07-10] () S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] () S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [16384 2015-07-10] () S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [26112 2015-07-10] () S3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [114688 2015-07-10] () S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128 2015-07-10] () S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [122608 2015-07-10] () S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] () S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] () S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] () S0 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] () S0 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] () S3 intelppm; C:\Windows\System32\drivers\intelppm.sys [129536 2015-07-10] () S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] () S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [85504 2015-07-10] () S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [81408 2015-07-10] () S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [143360 2015-07-10] () S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [19456 2015-07-10] () S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] () S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [276832 2015-07-10] () S3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [62304 2015-07-10] () S3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [36864 2015-07-10] () S3 kdnic; C:\Windows\System32\drivers\kdnic.sys [23040 2015-07-10] () S0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] () S0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] () S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [26112 2015-07-10] () S2 lltdio; C:\Windows\System32\drivers\lltdio.sys [64000 2015-07-10] () S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] () S0 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] () S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] () S0 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] () S2 luafv; C:\Windows\system32\drivers\luafv.sys [127488 2015-07-10] () S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) S0 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] () S0 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] () S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] () S2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [48128 2015-07-10] () S3 Modem; C:\Windows\System32\drivers\modem.sys [41984 2015-07-10] () S3 monitor; C:\Windows\System32\drivers\monitor.sys [38400 2015-07-10] () S3 mouclass; C:\Windows\System32\drivers\mouclass.sys [59232 2015-07-10] () S3 mouhid; C:\Windows\System32\drivers\mouhid.sys [32256 2015-07-10] () S0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-04] () S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [76288 2015-07-10] () S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [143872 2015-07-10] () S3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [415232 2015-07-10] () S2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [284672 2015-07-10] () S3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [217600 2015-07-10] () S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [114688 2015-07-10] () S1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [31232 2015-07-10] () S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [46432 2015-08-03] () S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8704 2015-07-10] () S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [11776 2015-07-10] () S0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] () S3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [13824 2015-07-10] () S2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [82432 2015-07-10] () S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [10752 2015-07-10] () S3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [10752 2015-07-10] () S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [355168 2015-07-10] () S1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [43872 2015-07-10] () S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [12800 2015-07-10] () S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [15872 2015-07-10] () S0 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] () S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] () S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [529408 2015-07-10] () S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] () S0 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-08-01] () S3 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [50176 2015-07-10] () S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [129024 2015-07-10] () S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [25600 2015-07-10] () S3 Ndisuio; C:\Windows\System32\drivers\ndisuio.sys [63488 2015-07-10] () S3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [20992 2015-07-10] () S3 NdisWan; C:\Windows\System32\drivers\ndiswan.sys [188928 2015-07-10] () S3 ndiswanlegacy; C:\Windows\System32\DRIVERS\ndiswan.sys [188928 2015-07-10] () S3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [60928 2015-07-10] () S2 Ndu; C:\Windows\System32\drivers\Ndu.sys [124928 2015-07-10] () S1 NetBIOS; C:\Windows\System32\drivers\netbios.sys [57184 2015-07-10] () S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [273408 2015-07-10] () S3 netvsc; C:\Windows\System32\drivers\netvsc.sys [94720 2015-07-10] () S1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [63488 2015-07-10] () S1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [26624 2015-07-10] () S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [40448 2015-07-10] () S3 NTFS; C:\Windows\System32\Drivers\NTFS.sys [2116448 2015-07-30] () S1 Null; C:\Windows\System32\Drivers\Null.sys [7168 2015-07-10] () S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] () S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] () S0 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] () S3 Parport; C:\Windows\System32\drivers\parport.sys [96768 2015-07-10] () S0 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] () S0 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-08-01] () S0 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] () S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] () S0 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] () S0 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] () S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [721408 2015-07-10] () S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] () S0 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] () S3 PptpMiniport; C:\Windows\System32\drivers\raspptp.sys [95744 2015-07-10] () S3 Processor; C:\Windows\System32\drivers\processr.sys [117248 2015-07-10] () S1 Psched; C:\Windows\System32\drivers\pacer.sys [160096 2015-07-10] () S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [48640 2015-07-10] () S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2015-07-10] () S3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [105984 2015-07-10] () S3 Rasl2tp; C:\Windows\System32\drivers\rasl2tp.sys [104960 2015-07-10] () S3 RasPppoe; C:\Windows\System32\drivers\raspppoe.sys [81408 2015-07-10] () S3 RasSstp; C:\Windows\System32\drivers\rassstp.sys [78336 2015-07-10] () S1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [414720 2015-07-10] () S3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [26112 2015-07-10] () S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [176128 2015-07-10] () S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [29536 2015-07-10] () S0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-06] () S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [934752 2015-08-01] () S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [167936 2015-07-10] () S2 rspndr; C:\Windows\System32\drivers\rspndr.sys [80896 2015-07-10] () S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [8704 2015-07-10] () S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] () S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [43008 2015-07-10] () S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [276832 2015-07-10] () S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [92512 2015-07-10] () S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [74592 2015-07-10] () S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [155488 2015-07-10] () S3 Serenum; C:\Windows\System32\drivers\serenum.sys [24576 2015-07-10] () S3 Serial; C:\Windows\System32\drivers\serial.sys [83968 2015-07-10] () S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [27648 2015-07-10] () S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [18432 2015-07-10] () S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] () S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] () S0 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] () S3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [77664 2015-07-10] () S2 srv; C:\Windows\System32\DRIVERS\srv.sys [410624 2015-07-10] () S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [674304 2015-07-10] () S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [239616 2015-07-10] () S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] () S0 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] () S0 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] () S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [80720 2015-08-11] () S2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] () S0 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] () S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] () S3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] () S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [64000 2015-07-10] () S0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] () S3 Tcpip6; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] () S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [52224 2015-07-10] () S1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [116576 2015-07-10] () S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [38752 2015-07-10] () S3 TPM; C:\Windows\system32\drivers\tpm.sys [207712 2015-07-10] () S3 TsUsbFlt; C:\Windows\System32\drivers\TsUsbFlt.sys [61440 2015-07-10] () S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [33280 2015-07-10] () S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [155136 2015-07-30] () S0 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] () S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [77664 2015-07-10] () S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] () S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-01] () S3 Ucx01000; C:\Windows\System32\drivers\ucx01000.sys [209760 2015-07-10] () S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [321024 2015-07-10] () S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [28512 2015-07-10] () S3 Ufx01000; C:\Windows\System32\drivers\ufx01000.sys [245088 2015-07-10] () S3 UfxChipidea; C:\Windows\System32\drivers\UfxChipidea.sys [94048 2015-07-10] () S3 ufxsynopsys; C:\Windows\System32\drivers\ufxsynopsys.sys [127840 2015-07-10] () S0 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] () S3 umbus; C:\Windows\System32\drivers\umbus.sys [57344 2015-07-10] () S3 UmPass; C:\Windows\System32\drivers\umpass.sys [12800 2015-07-10] () S3 UrsChipidea; C:\Windows\System32\drivers\urschipidea.sys [28512 2015-07-10] () S3 UrsCx01000; C:\Windows\System32\drivers\urscx01000.sys [57696 2015-07-10] () S3 UrsSynopsys; C:\Windows\System32\drivers\urssynopsys.sys [27488 2015-07-10] () S3 usbaudio; C:\Windows\system32\drivers\usbaudio.sys [131584 2015-07-10] () S3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [159072 2015-07-10] () S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [102400 2015-07-10] () S3 usbehci; C:\Windows\System32\drivers\usbehci.sys [95584 2015-07-10] () S3 usbhub; C:\Windows\System32\drivers\usbhub.sys [498016 2015-08-01] () S3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [516960 2015-08-03] () S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [29184 2015-07-10] () S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [27136 2015-07-10] () S3 usbser; C:\Windows\System32\drivers\usbser.sys [67072 2015-08-01] () S3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [127840 2015-07-10] () S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [34816 2015-07-10] () S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [221184 2015-07-10] () S3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [373072 2015-08-18] () S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-07-09] (Oracle Corporation) S1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-07-09] (Oracle Corporation) S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2015-07-09] (Oracle Corporation) S0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] () S3 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [200544 2015-07-10] () S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [671584 2015-07-10] () S3 vhf; C:\Windows\System32\drivers\vhf.sys [31744 2015-07-10] () S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] () S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [25088 2015-07-10] () S0 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] () S0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] () S0 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] () S3 vpci; C:\Windows\System32\drivers\vpci.sys [74080 2015-07-10] () S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] () S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] () S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [26112 2015-07-10] () S1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [72704 2015-07-10] () S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [29696 2015-07-10] () S2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [80384 2015-07-10] () S3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [80384 2015-07-10] () S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] () S0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] () S0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] () S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [685568 2015-08-06] () S2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] () S0 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] () S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [35168 2015-07-10] () S0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] () <===== ACHTUNG Necurs Rootkit? S0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] () S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] () S3 WINUSB; C:\Windows\System32\drivers\WinUsb.sys [87552 2015-07-10] () S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] () S3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [18432 2015-07-10] () S0 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-06] () S3 wpcfltr; C:\Windows\System32\DRIVERS\wpcfltr.sys [52264 2015-08-03] () S3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [29536 2015-07-10] () S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [22528 2015-07-10] () S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [97280 2015-07-10] () S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [214016 2015-07-10] () S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] () S3 WUDFWpdMtp; C:\Windows\System32\drivers\WUDFRd.sys [214016 2015-07-10] () S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] () S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] () S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X] S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-17 23:08 - 2015-09-17 23:08 - 00016148 _____ C:\Windows\System32\VIKTOR_Viktor_HistoryPrediction.bin 2015-09-17 23:06 - 2015-09-17 23:06 - 00000000 ___HD C:\$WINDOWS.~BT 2015-09-17 22:31 - 2015-09-17 22:31 - 02191360 _____ (Farbar) C:\Users\Viktor\Downloads\FRST64 (1).exe 2015-09-17 14:42 - 2015-09-17 14:42 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity 2015-09-17 14:41 - 2015-09-17 14:42 - 00527423 _____ ( ) C:\Users\Viktor\Downloads\Lame_v3.99.3_for_Windows.exe 2015-09-17 13:51 - 2015-09-17 13:55 - 484081471 _____ C:\Users\Viktor\Downloads\Umse - Hawaiianischer Schnee (pre-order).zip 2015-09-15 22:04 - 2015-09-15 22:04 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\cef-cache 2015-09-15 22:04 - 2015-09-15 22:04 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\bwincom 2015-09-15 22:03 - 2015-09-15 22:03 - 00782256 _____ C:\Users\Viktor\Downloads\bwincomPokerSetup.exe 2015-09-15 19:34 - 2015-09-17 23:06 - 00000000 ____D C:\ProgramData\Saophase 2015-09-15 19:34 - 2015-09-17 12:09 - 00002381 _____ C:\Windows\SysWOW64\findit.xml 2015-09-15 19:34 - 2015-09-15 19:34 - 05224982 _____ (Bycatch) C:\Program Files\Common Files\sppxi3jj.exe 2015-09-15 19:19 - 2015-09-15 19:19 - 00003208 _____ C:\Windows\System32\Tasks\wxrgkekt 2015-09-15 19:19 - 2015-09-15 19:19 - 00000000 ____D C:\Program Files\Common Files\35k1z10w 2015-09-15 19:18 - 2015-09-15 19:18 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-09-13 14:09 - 2015-09-13 14:09 - 05224982 _____ (Bycatch) C:\Program Files\Common Files\yuwcre5l.exe 2015-09-13 14:09 - 2015-09-13 14:09 - 00000000 ____D C:\ProgramData\Saophases 2015-09-13 14:04 - 2015-09-17 23:09 - 00001124 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-13 14:04 - 2015-09-17 23:07 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-13 14:04 - 2015-09-13 14:04 - 00929360 _____ (Google Inc.) C:\Users\Viktor\Downloads\ChromeSetup.exe 2015-09-13 14:04 - 2015-09-13 14:04 - 00004182 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-13 14:04 - 2015-09-13 14:04 - 00003950 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-13 13:57 - 2015-09-13 13:57 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Viktor\Downloads\revosetup95.exe 2015-09-13 13:57 - 2015-09-13 13:57 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-09-13 13:50 - 2015-09-15 19:17 - 00000000 ____D C:\Users\Viktor\Downloads\FRST-OlderVersion 2015-09-12 15:38 - 2015-09-16 17:41 - 00032826 _____ C:\Users\Viktor\Downloads\Addition.txt 2015-09-12 15:37 - 2015-09-16 17:41 - 00061937 _____ C:\Users\Viktor\Downloads\FRST.txt 2015-09-12 15:37 - 2015-09-16 17:41 - 00000000 ____D C:\FRST 2015-09-12 15:37 - 2015-09-15 19:17 - 02191360 _____ (Farbar) C:\Users\Viktor\Downloads\FRST64.exe 2015-09-12 12:59 - 2015-09-12 12:59 - 01800104 _____ (Malwarebytes Corporation) C:\Users\Viktor\Downloads\JRT_7.6.1.exe 2015-09-12 11:50 - 2015-09-13 14:00 - 00000000 ____D C:\Program Files (x86)\NoVirusThanks 2015-09-12 11:49 - 2015-09-12 11:49 - 00931678 _____ (NoVirusThanks Company Srl ) C:\Users\Viktor\Downloads\hijackhunter_setup.exe 2015-09-12 11:48 - 2015-09-12 11:48 - 00574048 _____ C:\Users\Viktor\Downloads\hijackhunter_setup_CB-DL-Manager.exe 2015-09-12 11:46 - 2015-09-12 12:05 - 00011083 _____ C:\Users\Viktor\Downloads\hijackthis.log 2015-09-12 11:46 - 2015-09-12 11:46 - 00388608 _____ (Trend Micro Inc.) C:\Users\Viktor\Downloads\HijackThis.exe 2015-09-12 11:37 - 2015-09-12 11:37 - 01162528 _____ C:\Users\Viktor\Downloads\HijackThis - CHIP-Installer.exe 2015-09-09 16:34 - 2015-08-27 07:04 - 21874688 ____L C:\Windows\System32\edgehtml.dll 2015-09-09 16:34 - 2015-08-27 06:55 - 24594944 ____L C:\Windows\System32\mshtml.dll 2015-09-09 16:34 - 2015-08-27 06:23 - 19324416 ____L C:\Windows\SysWOW64\mshtml.dll 2015-09-09 16:34 - 2015-08-27 06:16 - 18806272 ____L C:\Windows\SysWOW64\edgehtml.dll 2015-09-09 16:33 - 2015-09-02 02:20 - 00077400 ____L C:\Windows\System32\acmigration.dll 2015-09-09 16:33 - 2015-09-02 01:25 - 03586560 ____L C:\Windows\System32\win32kfull.sys 2015-09-09 16:33 - 2015-09-02 01:25 - 01382912 ____L C:\Windows\System32\win32kbase.sys 2015-09-09 16:33 - 2015-08-27 07:36 - 03620736 ____L C:\Windows\System32\iertutil.dll 2015-09-09 16:33 - 2015-08-27 07:32 - 00608936 ____L C:\Windows\System32\fontdrvhost.exe 2015-09-09 16:33 - 2015-08-27 06:59 - 02880032 ____L C:\Windows\SysWOW64\iertutil.dll 2015-09-09 16:33 - 2015-08-27 06:54 - 00541248 ____L C:\Windows\SysWOW64\fontdrvhost.exe 2015-09-09 16:33 - 2015-08-27 06:54 - 00365568 ____L C:\Windows\System32\atmfd.dll 2015-09-09 16:33 - 2015-08-27 06:51 - 02350592 ____L C:\Windows\System32\authui.dll 2015-09-09 16:33 - 2015-08-27 06:51 - 01774592 ____L C:\Windows\System32\Windows.UI.Immersive.dll 2015-09-09 16:33 - 2015-08-27 06:49 - 01008640 ____L C:\Windows\System32\schedsvc.dll 2015-09-09 16:33 - 2015-08-27 06:47 - 12503552 ____L C:\Windows\System32\ieframe.dll 2015-09-09 16:33 - 2015-08-27 06:43 - 00826880 ____L C:\Windows\System32\jscript.dll 2015-09-09 16:33 - 2015-08-27 06:43 - 00576000 ____L C:\Windows\System32\vbscript.dll 2015-09-09 16:33 - 2015-08-27 06:42 - 00596480 ____L C:\Windows\System32\SettingSync.dll 2015-09-09 16:33 - 2015-08-27 06:42 - 00578560 ____L C:\Windows\System32\winlogon.exe 2015-09-09 16:33 - 2015-08-27 06:42 - 00187904 ____L C:\Windows\System32\Windows.UI.PicturePassword.dll 2015-09-09 16:33 - 2015-08-27 06:42 - 00184320 ____L C:\Windows\System32\shacct.dll 2015-09-09 16:33 - 2015-08-27 06:39 - 00045568 ____L C:\Windows\System32\atmlib.dll 2015-09-09 16:33 - 2015-08-27 06:23 - 00303104 ____L C:\Windows\SysWOW64\atmfd.dll 2015-09-09 16:33 - 2015-08-27 06:16 - 02153472 ____L C:\Windows\SysWOW64\authui.dll 2015-09-09 16:33 - 2015-08-27 06:16 - 01612288 ____L C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2015-09-09 16:33 - 2015-08-27 06:12 - 00650752 ____L C:\Windows\SysWOW64\jscript.dll 2015-09-09 16:33 - 2015-08-27 06:12 - 00504320 ____L C:\Windows\SysWOW64\vbscript.dll 2015-09-09 16:33 - 2015-08-27 06:11 - 00484352 ____L C:\Windows\SysWOW64\SettingSync.dll 2015-09-09 16:33 - 2015-08-27 06:11 - 00139776 ____L C:\Windows\SysWOW64\shacct.dll 2015-09-09 16:33 - 2015-08-27 06:09 - 11262464 ____L C:\Windows\SysWOW64\ieframe.dll 2015-09-09 16:33 - 2015-08-27 06:08 - 00037376 ____L C:\Windows\SysWOW64\atmlib.dll 2015-09-08 15:44 - 2015-09-08 15:45 - 12644316 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h44m46s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 15:33 - 2015-09-08 15:36 - 68087208 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h33m36s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 15:32 - 2015-09-08 15:32 - 10236224 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h32m02s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 15:32 - 2015-09-08 15:32 - 01941476 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h32m35s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 15:31 - 2015-09-08 15:31 - 03189984 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h31m50s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 14:59 - 2015-09-08 14:59 - 00000000 ____D C:\ProgramData\RapidSolution 2015-09-08 14:59 - 2015-09-08 14:59 - 00000000 ____D C:\Program Files (x86)\Audials 2015-09-08 14:57 - 2015-09-08 14:57 - 74047440 _____ C:\Users\Viktor\Downloads\Audials_Moviebox-Setup9700.exe 2015-09-08 14:57 - 2015-09-08 14:57 - 00000000 ____D C:\Users\Viktor\AppData\Local\RapidSolution 2015-09-08 09:59 - 2015-09-14 15:37 - 00000410 _____ C:\Users\Viktor\Desktop\Bewerbungen.txt 2015-09-08 09:36 - 2015-09-17 14:40 - 00000000 ____D C:\Users\Viktor\Desktop\MINI DISC 2015-09-08 09:35 - 2015-09-08 09:36 - 00000000 ____D C:\Users\Viktor\Desktop\Arbeitsamt 2015-09-07 16:34 - 2015-09-07 16:34 - 00003641 _____ C:\Windows\System32\LexFiles.ulf 2015-09-07 16:34 - 2015-09-07 16:34 - 00000000 ____D C:\Program Files\Dell_HostCD 2015-09-07 16:34 - 2006-10-21 11:38 - 00508824 _____ ( ) C:\Windows\SysWOW64\DKabcoms.exe 2015-09-07 16:34 - 2006-10-21 11:38 - 00476568 _____ ( ) C:\Windows\System32\DKabcoms.exe 2015-09-07 16:34 - 2006-10-21 11:38 - 00168856 _____ ( ) C:\Windows\System32\DKabppls.exe 2015-09-07 16:34 - 2006-09-16 13:20 - 00583680 _____ ( ) C:\Windows\System32\lexlog.dll 2015-09-07 16:34 - 2006-07-28 09:50 - 00449024 _____ ( ) C:\Windows\System32\DKabpmui.dll 2015-09-07 16:34 - 2006-07-28 09:48 - 01387008 _____ ( ) C:\Windows\System32\DKabserv.dll 2015-09-07 16:34 - 2006-07-28 09:41 - 01180672 _____ ( ) C:\Windows\System32\DKabip1.dll 2015-09-07 16:34 - 2006-07-28 09:41 - 00249856 _____ ( ) C:\Windows\System32\DKabcomm.dll 2015-09-07 16:34 - 2006-07-28 09:33 - 00466432 _____ ( ) C:\Windows\System32\DKabiobj.dll 2015-09-07 16:34 - 2006-07-28 09:30 - 00240128 _____ ( ) C:\Windows\System32\DKabinpa.dll 2015-09-07 16:34 - 2006-07-28 09:29 - 00029184 _____ ( ) C:\Windows\System32\DKabpplc.dll 2015-09-07 16:34 - 2006-07-28 09:28 - 00567808 _____ ( ) C:\Windows\System32\DKabcomc.dll 2015-09-07 16:34 - 2006-07-28 09:27 - 00034816 _____ ( ) C:\Windows\System32\DKabprox.dll 2015-09-07 16:34 - 2006-07-28 09:25 - 00425472 _____ ( ) C:\Windows\System32\DKabpar1.dll 2015-09-07 16:34 - 2006-07-28 09:23 - 01080832 _____ ( ) C:\Windows\System32\DKabusb1.dll 2015-09-07 16:34 - 2006-07-28 09:19 - 00453632 _____ ( ) C:\Windows\System32\DKablmpm.dll 2015-09-07 16:34 - 2006-07-28 08:55 - 00421888 _____ ( ) C:\Windows\SysWOW64\DKabcomm.dll 2015-09-07 16:34 - 2006-07-28 08:44 - 00614400 _____ ( ) C:\Windows\SysWOW64\DKabcomc.dll 2015-09-07 16:34 - 2006-07-28 08:43 - 00163840 _____ ( ) C:\Windows\SysWOW64\DKabprox.dll 2015-09-07 16:34 - 2006-06-21 08:25 - 00002244 _____ C:\Windows\SysWOW64\DKab.loc 2015-09-07 16:34 - 2006-06-21 08:25 - 00002244 _____ C:\Windows\System32\DKab.loc 2015-09-07 16:34 - 2006-04-27 11:47 - 00017879 _____ C:\Windows\System32\DKabpmui.chm 2015-09-07 16:25 - 2015-09-07 16:25 - 00000000 ____D C:\Dell 2015-09-07 16:20 - 2015-09-07 16:24 - 40883056 _____ ( ) C:\Users\Viktor\Downloads\R147093.exe 2015-09-07 16:19 - 2015-09-07 16:19 - 00052528 _____ C:\Users\Viktor\Downloads\dellw5300n.ppd 2015-09-07 14:54 - 2015-09-07 16:34 - 00001937 _____ C:\dkab.log 2015-09-07 14:49 - 2015-09-07 14:50 - 40902944 _____ C:\Users\Viktor\Downloads\R156516.zip 2015-09-07 14:35 - 2015-09-07 14:35 - 00000458 _____ C:\Windows\WindowsUpdate_AU_deprecated.log 2015-09-02 12:25 - 2015-09-02 12:25 - 00048296 _____ (RapidSolution Software AG) C:\Windows\System32\Drivers\tbhsd.sys 2015-09-02 12:25 - 2015-09-02 12:25 - 00025256 _____ (Audials AG) C:\Windows\System32\Drivers\RrNetCapFilterDriver.sys 2015-08-31 09:41 - 2015-09-10 15:22 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\PDF Architect 3 2015-08-31 09:41 - 2015-08-31 09:41 - 00000000 ____D C:\Users\Viktor\Documents\PDF Architect 2015-08-31 09:41 - 2015-08-31 09:41 - 00000000 ____D C:\Program Files (x86)\PDF Architect 3 2015-08-31 09:40 - 2015-08-31 09:41 - 00000000 ____D C:\Program Files\PDFCreator 2015-08-31 09:40 - 2015-08-31 09:40 - 00115592 _____ (pdfforge GmbH) C:\Windows\System32\pdfcmon.dll 2015-08-31 09:40 - 2015-08-31 09:40 - 00000000 ____D C:\ProgramData\PDF Architect 3 2015-08-31 09:39 - 2015-08-31 09:39 - 28754952 _____ (pdfforge GmbH) C:\Users\Viktor\Downloads\PDFCreator-2_1_2-setup.exe 2015-08-30 12:35 - 2015-09-12 12:56 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys 2015-08-30 12:35 - 2015-08-30 12:35 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Viktor\Downloads\mbam-setup- 2015-08-30 12:35 - 2015-08-30 12:35 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-08-30 12:35 - 2015-08-30 12:35 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-08-30 12:35 - 2015-06-18 07:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mwac.sys 2015-08-30 12:35 - 2015-06-18 07:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbamchameleon.sys 2015-08-30 12:35 - 2015-06-18 07:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys 2015-08-30 12:27 - 2015-08-30 12:27 - 01618432 _____ C:\Users\Viktor\Downloads\adwcleaner_5.004 (1).exe 2015-08-30 11:45 - 2015-08-30 11:45 - 00000000 ____D C:\Program Files\iTunes 2015-08-30 11:45 - 2015-08-30 11:45 - 00000000 ____D C:\Program Files\iPod 2015-08-30 11:45 - 2015-08-30 11:45 - 00000000 ____D C:\Program Files (x86)\iTunes 2015-08-30 10:38 - 2015-08-30 10:38 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\Sun 2015-08-30 10:38 - 2015-08-30 10:38 - 00000000 ____D C:\Users\Viktor\.oracle_jre_usage 2015-08-28 19:00 - 2015-08-20 07:07 - 08019296 ____L C:\Windows\System32\ntoskrnl.exe 2015-08-28 19:00 - 2015-08-20 07:02 - 22324656 ____L C:\Windows\System32\shell32.dll 2015-08-28 19:00 - 2015-08-20 06:16 - 20857848 ____L C:\Windows\SysWOW64\shell32.dll 2015-08-28 19:00 - 2015-08-20 06:13 - 02235904 ____L C:\Windows\System32\wuaueng.dll 2015-08-28 19:00 - 2015-08-18 08:56 - 02498808 ____L C:\Windows\System32\CoreUIComponents.dll 2015-08-28 19:00 - 2015-08-18 08:27 - 01771592 ____L C:\Windows\SysWOW64\CoreUIComponents.dll 2015-08-28 19:00 - 2015-08-18 07:52 - 01888768 ____L C:\Windows\System32\dwmcore.dll 2015-08-28 18:59 - 2015-08-20 07:06 - 00609592 ____L C:\Windows\System32\ci.dll 2015-08-28 18:59 - 2015-08-20 06:26 - 00168960 ____L C:\Windows\System32\InstallAgent.exe 2015-08-28 18:59 - 2015-08-20 06:21 - 00193024 ____L C:\Windows\System32\EnterpriseModernAppMgmtCSP.dll 2015-08-28 18:59 - 2015-08-20 06:09 - 00929280 ____L C:\Windows\System32\Drivers\bthport.sys 2015-08-28 18:59 - 2015-08-18 08:55 - 00373072 ____L C:\Windows\System32\Drivers\USBXHCI.SYS 2015-08-28 18:59 - 2015-08-18 08:54 - 01396064 ____L C:\Windows\System32\LicenseManager.dll 2015-08-28 18:59 - 2015-08-18 08:24 - 00963920 ____L C:\Windows\SysWOW64\LicenseManager.dll 2015-08-28 18:59 - 2015-08-18 08:13 - 00497664 ____L C:\Windows\System32\WlanMediaManager.dll 2015-08-28 18:59 - 2015-08-18 08:13 - 00387584 ____L C:\Windows\System32\NetSetupShim.dll 2015-08-28 18:59 - 2015-08-18 08:12 - 02225664 ____L C:\Windows\System32\NetworkMobileSettings.dll 2015-08-28 18:59 - 2015-08-18 08:07 - 02226688 ____L C:\Windows\System32\wlansvc.dll 2015-08-28 18:59 - 2015-08-18 08:04 - 01234944 ____L C:\Windows\System32\aitstatic.exe 2015-08-28 18:59 - 2015-08-18 08:04 - 00859136 ____L C:\Windows\System32\modernexecserver.dll 2015-08-28 18:59 - 2015-08-18 07:59 - 01294336 ____L C:\Windows\System32\wcnwiz.dll 2015-08-28 18:59 - 2015-08-18 07:59 - 00140288 ____L C:\Windows\System32\WcnApi.dll 2015-08-28 18:59 - 2015-08-18 07:58 - 00187392 ____L C:\Windows\System32\NetSetupSvc.dll 2015-08-28 18:59 - 2015-08-18 07:58 - 00117760 ____L C:\Windows\System32\dafWCN.dll 2015-08-28 18:59 - 2015-08-18 07:58 - 00112640 ____L C:\Windows\System32\fdWCN.dll 2015-08-28 18:59 - 2015-08-18 07:58 - 00050176 ____L C:\Windows\System32\WcnNetsh.dll 2015-08-28 18:59 - 2015-08-18 07:57 - 00045568 ____L C:\Windows\System32\wfdprov.dll 2015-08-28 18:59 - 2015-08-18 07:56 - 00079872 ____L C:\Windows\System32\BthRadioMedia.dll 2015-08-28 18:59 - 2015-08-18 07:55 - 02178560 ____L C:\Windows\System32\AppXDeploymentServer.dll 2015-08-28 18:59 - 2015-08-18 07:54 - 00322048 ____L C:\Windows\System32\vaultsvc.dll 2015-08-28 18:59 - 2015-08-18 07:54 - 00247296 ____L C:\Windows\System32\facecredentialprovider.dll 2015-08-28 18:59 - 2015-08-18 07:50 - 01795072 ____L C:\Windows\System32\AppXDeploymentExtensions.dll 2015-08-28 18:59 - 2015-08-18 07:49 - 01061888 ____L C:\Windows\System32\reseteng.dll 2015-08-28 18:59 - 2015-08-18 07:49 - 00274432 ____L C:\Windows\SysWOW64\NetSetupShim.dll 2015-08-28 18:59 - 2015-08-18 07:49 - 00246272 ____L C:\Windows\System32\PackageStateRoaming.dll 2015-08-28 18:59 - 2015-08-18 07:36 - 01226752 ____L C:\Windows\SysWOW64\wcnwiz.dll 2015-08-28 18:59 - 2015-08-18 07:35 - 00100352 ____L C:\Windows\SysWOW64\WcnApi.dll 2015-08-28 18:59 - 2015-08-18 07:35 - 00095744 ____L C:\Windows\SysWOW64\fdWCN.dll 2015-08-28 18:59 - 2015-08-18 07:34 - 00037376 ____L C:\Windows\SysWOW64\wfdprov.dll 2015-08-28 18:59 - 2015-08-18 07:29 - 01593344 ____L C:\Windows\SysWOW64\dwmcore.dll 2015-08-28 18:59 - 2015-08-18 07:26 - 00195584 ____L C:\Windows\SysWOW64\PackageStateRoaming.dll 2015-08-28 18:59 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\System32\ResPriHMImageList 2015-08-28 17:33 - 2015-08-28 17:36 - 95531044 _____ C:\Users\Viktor\Downloads\Large Professor - ReLiving.zip 2015-08-28 17:30 - 2015-08-28 17:31 - 270696020 _____ C:\Users\Viktor\Downloads\Juju Rogers - From the Life of a Good-For-Nothing.zip 2015-08-28 16:52 - 2015-08-28 16:52 - 01618432 _____ C:\Users\Viktor\Downloads\adwcleaner_5.004.exe 2015-08-28 16:49 - 2015-09-17 23:06 - 00000277 _____ C:\Windows\setupact.log 2015-08-28 16:49 - 2015-09-17 23:06 - 00000000 _____ C:\Windows\setuperr.log 2015-08-28 12:12 - 2015-08-28 12:12 - 00000000 ____D C:\Users\Viktor\AppData\Local\Macromedia 2015-08-25 13:51 - 2015-09-17 22:56 - 00022408 _____ C:\Windows\PFRO.log 2015-08-25 11:55 - 2015-08-25 11:55 - 00000000 ___RD C:\Users\Viktor\3D Objects 2015-08-24 22:15 - 2015-08-24 22:15 - 00000000 ____D C:\Windows\System32\appmgmt 2015-08-24 11:51 - 2015-09-17 23:08 - 00000275 _____ C:\Windows\WindowsUpdate.log 2015-08-19 14:46 - 2015-08-19 14:46 - 00000000 ____D C:\Windows\PCHEALTH 2015-08-19 14:33 - 2015-08-13 05:22 - 02093056 ____L C:\Windows\System32\wlidsvc.dll 2015-08-19 14:33 - 2015-08-13 05:20 - 00414208 ____L C:\Windows\System32\AppXDeploymentClient.dll 2015-08-19 14:33 - 2015-08-13 04:53 - 00311808 ____L C:\Windows\SysWOW64\AppXDeploymentClient.dll 2015-08-19 14:33 - 2015-08-11 11:04 - 04532304 ____L C:\Windows\explorer.exe 2015-08-19 14:33 - 2015-08-11 11:04 - 02462648 ____L C:\Windows\System32\mfcore.dll 2015-08-19 14:33 - 2015-08-11 11:04 - 01087296 ____L C:\Windows\System32\mfplat.dll 2015-08-19 14:33 - 2015-08-11 11:03 - 00442208 ____L C:\Windows\System32\Drivers\storport.sys 2015-08-19 14:33 - 2015-08-11 11:02 - 00554744 ____L C:\Windows\System32\directmanipulation.dll 2015-08-19 14:33 - 2015-08-11 11:02 - 00292856 ____L C:\Windows\System32\LockAppHost.exe 2015-08-19 14:33 - 2015-08-11 11:02 - 00080720 ____L C:\Windows\System32\Drivers\stornvme.sys 2015-08-19 14:33 - 2015-08-11 10:52 - 00993104 ____L C:\Windows\System32\ReAgent.dll 2015-08-19 14:33 - 2015-08-11 10:50 - 01643872 ____L C:\Windows\System32\diagtrack.dll 2015-08-19 14:33 - 2015-08-11 10:40 - 04048808 ____L C:\Windows\SysWOW64\explorer.exe 2015-08-19 14:33 - 2015-08-11 10:40 - 02151208 ____L C:\Windows\SysWOW64\mfcore.dll 2015-08-19 14:33 - 2015-08-11 10:40 - 00918320 ____L C:\Windows\SysWOW64\mfplat.dll 2015-08-19 14:33 - 2015-08-11 10:38 - 00454000 ____L C:\Windows\SysWOW64\directmanipulation.dll 2015-08-19 14:33 - 2015-08-11 10:37 - 00243800 ____L C:\Windows\SysWOW64\LockAppHost.exe 2015-08-19 14:33 - 2015-08-11 10:26 - 00845664 ____L C:\Windows\SysWOW64\ReAgent.dll 2015-08-19 14:33 - 2015-08-11 10:23 - 16706560 ____L C:\Windows\System32\Windows.UI.Xaml.dll 2015-08-19 14:33 - 2015-08-11 10:21 - 00148992 ____L C:\Windows\System32\tetheringservice.dll 2015-08-19 14:33 - 2015-08-11 10:21 - 00052224 ____L C:\Windows\System32\tetheringclient.dll 2015-08-19 14:33 - 2015-08-11 10:20 - 00483328 ____L C:\Windows\System32\OneDriveSettingSyncProvider.dll 2015-08-19 14:33 - 2015-08-11 10:19 - 00235520 ____L C:\Windows\System32\SettingsHandlers_Notifications.dll 2015-08-19 14:33 - 2015-08-11 10:18 - 00235008 ____L C:\Windows\System32\UserMgrProxy.dll 2015-08-19 14:33 - 2015-08-11 10:16 - 02416640 ____L C:\Windows\System32\MFMediaEngine.dll 2015-08-19 14:33 - 2015-08-11 10:14 - 00404480 ____L C:\Windows\System32\diagtrack_wininternal.dll 2015-08-19 14:33 - 2015-08-11 10:13 - 00413184 ____L C:\Windows\System32\diagtrack_win.dll 2015-08-19 14:33 - 2015-08-11 10:11 - 02446336 ____L C:\Windows\System32\InputService.dll 2015-08-19 14:33 - 2015-08-11 10:11 - 00553472 ____L C:\Windows\System32\GamePanel.exe 2015-08-19 14:33 - 2015-08-11 10:10 - 00778752 ____L C:\Windows\System32\Windows.ApplicationModel.Store.dll 2015-08-19 14:33 - 2015-08-11 10:10 - 00324096 ____L C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-08-19 14:33 - 2015-08-11 10:10 - 00293376 ____L C:\Windows\System32\TextInputFramework.dll 2015-08-19 14:33 - 2015-08-11 10:09 - 00032768 ____L C:\Windows\System32\wuautoappupdate.dll 2015-08-19 14:33 - 2015-08-11 10:08 - 00893440 ____L C:\Windows\System32\MbaeApiPublic.dll 2015-08-19 14:33 - 2015-08-11 10:08 - 00563200 ____L C:\Windows\System32\MbaeApi.dll 2015-08-19 14:33 - 2015-08-11 10:07 - 01178112 ____L C:\Windows\System32\wwansvc.dll 2015-08-19 14:33 - 2015-08-11 10:07 - 00593920 ____L C:\Windows\System32\wcmsvc.dll 2015-08-19 14:33 - 2015-08-11 10:07 - 00115712 ____L C:\Windows\System32\MbaeParserTask.exe 2015-08-19 14:33 - 2015-08-11 10:06 - 07523328 ____L C:\Windows\System32\Chakra.dll 2015-08-19 14:33 - 2015-08-11 10:06 - 02662400 ____L C:\Windows\System32\Windows.UI.Logon.dll 2015-08-19 14:33 - 2015-08-11 10:05 - 03527168 ____L C:\Windows\System32\tquery.dll 2015-08-19 14:33 - 2015-08-11 10:05 - 00996352 ____L C:\Windows\System32\RDXService.dll 2015-08-19 14:33 - 2015-08-11 10:05 - 00342016 ____L C:\Windows\System32\LocationGeofences.dll 2015-08-19 14:33 - 2015-08-11 10:05 - 00269312 ____L C:\Windows\System32\LocationFramework.dll 2015-08-19 14:33 - 2015-08-11 10:05 - 00137216 ____L C:\Windows\System32\LocationPermissions.dll 2015-08-19 14:33 - 2015-08-11 10:05 - 00078848 ____L C:\Windows\System32\LocationFrameworkInternalPS.dll 2015-08-19 14:33 - 2015-08-11 10:03 - 02558976 ____L C:\Windows\System32\mssrch.dll 2015-08-19 14:33 - 2015-08-11 10:02 - 00621056 ____L C:\Windows\System32\enterprisecsps.dll 2015-08-19 14:33 - 2015-08-11 10:02 - 00186368 ____L C:\Windows\System32\cloudAP.dll 2015-08-19 14:33 - 2015-08-11 10:01 - 01334784 ____L C:\Windows\System32\UIAutomationCore.dll 2015-08-19 14:33 - 2015-08-11 10:00 - 00336384 ____L C:\Windows\System32\SearchProtocolHost.exe 2015-08-19 14:33 - 2015-08-11 10:00 - 00274432 ____L C:\Windows\System32\syncutil.dll 2015-08-19 14:33 - 2015-08-11 09:59 - 01106432 ____L C:\Windows\System32\sysmain.dll 2015-08-19 14:33 - 2015-08-11 09:59 - 00642560 ____L C:\Windows\System32\rdbui.dll 2015-08-19 14:33 - 2015-08-11 09:59 - 00123392 ____L C:\Windows\System32\mssprxy.dll 2015-08-19 14:33 - 2015-08-11 09:59 - 00042496 ____L C:\Windows\SysWOW64\tetheringclient.dll 2015-08-19 14:33 - 2015-08-11 09:58 - 00372224 ____L C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2015-08-19 14:33 - 2015-08-11 09:57 - 13024768 ____L C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2015-08-19 14:33 - 2015-08-11 09:57 - 00159744 ____L C:\Windows\SysWOW64\UserMgrProxy.dll 2015-08-19 14:33 - 2015-08-11 09:51 - 01916928 ____L C:\Windows\SysWOW64\MFMediaEngine.dll 2015-08-19 14:33 - 2015-08-11 09:51 - 01823232 ____L C:\Windows\SysWOW64\InputService.dll 2015-08-19 14:33 - 2015-08-11 09:50 - 00420352 ____L C:\Windows\SysWOW64\GamePanel.exe 2015-08-19 14:33 - 2015-08-11 09:50 - 00200704 ____L C:\Windows\SysWOW64\TextInputFramework.dll 2015-08-19 14:33 - 2015-08-11 09:50 - 00131584 ____L C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2015-08-19 14:33 - 2015-08-11 09:49 - 00586752 ____L C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2015-08-19 14:33 - 2015-08-11 09:49 - 00247808 ____L C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-08-19 14:33 - 2015-08-11 09:48 - 00671232 ____L C:\Windows\SysWOW64\MbaeApiPublic.dll 2015-08-19 14:33 - 2015-08-11 09:47 - 00448512 ____L C:\Windows\SysWOW64\MbaeApi.dll 2015-08-19 14:33 - 2015-08-11 09:45 - 01820672 ____L C:\Windows\SysWOW64\Windows.UI.Logon.dll 2015-08-19 14:33 - 2015-08-11 09:43 - 02748416 ____L C:\Windows\SysWOW64\tquery.dll 2015-08-19 14:33 - 2015-08-11 09:42 - 05454848 ____L C:\Windows\SysWOW64\Chakra.dll 2015-08-19 14:33 - 2015-08-11 09:40 - 01964544 ____L C:\Windows\SysWOW64\mssrch.dll 2015-08-19 14:33 - 2015-08-11 09:40 - 01112064 ____L C:\Windows\SysWOW64\UIAutomationCore.dll 2015-08-19 14:33 - 2015-08-11 09:39 - 00280576 ____L C:\Windows\SysWOW64\SearchProtocolHost.exe 2015-08-19 14:33 - 2015-08-11 09:38 - 00162304 ____L C:\Windows\SysWOW64\ReInfo.dll 2015-08-19 14:33 - 2015-08-08 08:29 - 01822280 ____L C:\Windows\System32\ntdll.dll 2015-08-19 14:33 - 2015-08-08 08:01 - 01533496 ____L C:\Windows\SysWOW64\ntdll.dll 2015-08-19 14:33 - 2015-08-08 07:24 - 02415104 ____L C:\Windows\System32\DWrite.dll 2015-08-19 14:33 - 2015-08-08 07:24 - 01679360 ____L C:\Windows\System32\FntCache.dll 2015-08-19 14:33 - 2015-08-08 07:00 - 01985024 ____L C:\Windows\SysWOW64\DWrite.dll 2015-08-19 14:33 - 2015-08-06 04:17 - 00237392 ____L C:\Windows\System32\Drivers\rdyboost.sys 2015-08-19 14:33 - 2015-08-06 04:17 - 00200528 ____L C:\Windows\System32\Drivers\wof.sys 2015-08-19 14:33 - 2015-08-06 03:22 - 00685568 ____L C:\Windows\System32\Drivers\WdiWiFi.sys 2015-08-19 14:33 - 2015-08-05 05:49 - 00783112 ____L C:\Windows\System32\mfsvr.dll 2015-08-19 14:33 - 2015-08-05 05:29 - 00644128 ____L C:\Windows\SysWOW64\mfsvr.dll 2015-08-19 14:33 - 2015-08-05 05:00 - 00310784 ____L C:\Windows\System32\ActionCenter.dll 2015-08-19 14:33 - 2015-08-05 04:54 - 01274880 ____L C:\Windows\System32\wifinetworkmanager.dll 2015-08-19 14:33 - 2015-08-05 04:39 - 00261632 ____L C:\Windows\SysWOW64\ActionCenter.dll 2015-08-19 14:33 - 2015-08-04 05:07 - 00102752 ____L C:\Windows\System32\Drivers\mountmgr.sys 2015-08-19 14:33 - 2015-08-04 05:06 - 00583128 ____L C:\Windows\System32\mf.dll 2015-08-19 14:33 - 2015-08-04 05:06 - 00243248 ____L C:\Windows\System32\mfps.dll 2015-08-19 14:33 - 2015-08-04 04:23 - 00078848 ____L C:\Windows\System32\VPNv2CSP.dll 2015-08-19 14:33 - 2015-08-04 03:59 - 01212416 ____L C:\Windows\System32\RemoteNaturalLanguage.dll 2015-08-19 14:33 - 2015-08-04 03:47 - 00898560 ____L C:\Windows\SysWOW64\RemoteNaturalLanguage.dll 2015-08-19 14:33 - 2015-08-03 03:32 - 00306688 ____L C:\Windows\System32\NotificationObjFactory.dll 2015-08-19 14:33 - 2015-08-03 03:28 - 00268800 ____L C:\Windows\SysWOW64\NotificationObjFactory.dll 2015-08-19 14:33 - 2015-08-03 03:19 - 00505696 ____L C:\Windows\System32\Drivers\dxgmms2.sys 2015-08-19 14:33 - 2015-08-03 03:19 - 00393568 ____L C:\Windows\System32\Drivers\dxgmms1.sys 2015-08-19 14:33 - 2015-08-03 03:18 - 08613200 ____L C:\Windows\System32\Windows.Media.Protection.PlayReady.dll 2015-08-19 14:33 - 2015-08-03 03:18 - 01983840 ____L C:\Windows\System32\Drivers\dxgkrnl.sys 2015-08-19 14:33 - 2015-08-03 03:18 - 00594472 ____L C:\Windows\System32\Windows.Internal.Shell.Broker.dll 2015-08-19 14:33 - 2015-08-03 03:18 - 00046432 ____L C:\Windows\System32\Drivers\msgpiowin32.sys 2015-08-19 14:33 - 2015-08-03 03:17 - 00516960 ____L C:\Windows\System32\Drivers\USBHUB3.SYS 2015-08-19 14:33 - 2015-08-03 03:17 - 00052264 ____L C:\Windows\System32\Drivers\wpcfltr.sys 2015-08-19 14:33 - 2015-08-03 03:12 - 00801632 ____L C:\Windows\System32\WWAHost.exe 2015-08-19 14:33 - 2015-08-03 02:56 - 06878256 ____L C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2015-08-19 14:33 - 2015-08-03 02:49 - 00700256 ____L C:\Windows\SysWOW64\WWAHost.exe 2015-08-19 14:33 - 2015-08-03 02:31 - 00911360 ____L C:\Windows\System32\SharedStartModel.dll 2015-08-19 14:33 - 2015-08-03 02:30 - 00253952 ____L C:\Windows\System32\SettingsHandlers_UserAccount.dll 2015-08-19 14:33 - 2015-08-03 02:24 - 00503808 ____L C:\Windows\System32\tileobjserver.dll 2015-08-19 14:33 - 2015-08-03 02:24 - 00282112 ____L C:\Windows\System32\VEEventDispatcher.dll 2015-08-19 14:33 - 2015-08-03 02:24 - 00193536 ____L C:\Windows\System32\SharedStartModelShim.dll 2015-08-19 14:33 - 2015-08-03 02:23 - 00122880 ____L C:\Windows\System32\VEDataLayerHelpers.dll 2015-08-19 14:33 - 2015-08-03 02:22 - 01601536 ____L C:\Windows\System32\Windows.Media.Speech.dll 2015-08-19 14:33 - 2015-08-03 02:22 - 00317440 ____L C:\Windows\System32\configmanager2.dll 2015-08-19 14:33 - 2015-08-03 02:21 - 00179712 ____L C:\Windows\System32\coredpus.dll 2015-08-19 14:33 - 2015-08-03 02:19 - 00215040 ____L C:\Windows\System32\notepad.exe 2015-08-19 14:33 - 2015-08-03 02:19 - 00215040 ____L C:\Windows\notepad.exe 2015-08-19 14:33 - 2015-08-03 02:18 - 03780096 ____L C:\Windows\System32\SettingsHandlers_nt.dll 2015-08-19 14:33 - 2015-08-03 02:18 - 00162304 ____L C:\Windows\System32\SubscriptionMgr.dll 2015-08-19 14:33 - 2015-08-03 02:18 - 00120832 ____L C:\Windows\System32\NetworkStatus.dll 2015-08-19 14:33 - 2015-08-03 02:15 - 01290752 ____L C:\Windows\System32\Windows.UI.Shell.dll 2015-08-19 14:33 - 2015-08-03 02:15 - 00595456 ____L C:\Windows\System32\LogonController.dll 2015-08-19 14:33 - 2015-08-03 02:15 - 00573440 ____L C:\Windows\System32\Windows.Cortana.Desktop.dll 2015-08-19 14:33 - 2015-08-03 02:15 - 00384000 ____L C:\Windows\System32\LockAppBroker.dll 2015-08-19 14:33 - 2015-08-03 02:15 - 00171520 ____L C:\Windows\System32\WinBioDataModel.dll 2015-08-19 14:33 - 2015-08-03 02:14 - 00273920 ____L C:\Windows\System32\Windows.ApplicationModel.LockScreen.dll 2015-08-19 14:33 - 2015-08-03 02:12 - 00217088 ____L C:\Windows\SysWOW64\VEEventDispatcher.dll 2015-08-19 14:33 - 2015-08-03 02:12 - 00081920 ____L C:\Windows\SysWOW64\VEDataLayerHelpers.dll 2015-08-19 14:33 - 2015-08-03 02:11 - 00814080 ____L C:\Windows\System32\msctfuimanager.dll 2015-08-19 14:33 - 2015-08-03 02:10 - 01162240 ____L C:\Windows\SysWOW64\Windows.Media.Speech.dll 2015-08-19 14:33 - 2015-08-03 02:06 - 00207872 ____L C:\Windows\SysWOW64\notepad.exe 2015-08-19 14:33 - 2015-08-03 02:03 - 00494592 ____L C:\Windows\SysWOW64\LogonController.dll 2015-08-19 14:33 - 2015-08-03 02:02 - 00311808 ____L C:\Windows\SysWOW64\LockAppBroker.dll 2015-08-19 14:33 - 2015-08-03 02:02 - 00195072 ____L C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-08-19 14:33 - 2015-08-03 01:59 - 00752640 ____L C:\Windows\SysWOW64\msctfuimanager.dll ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-17 23:09 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-09-17 23:09 - 2015-07-10 10:05 - 00262144 ___SH C:\Windows\System32\config\BBI 2015-09-17 23:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\System32\sru 2015-09-17 23:08 - 2015-06-07 21:43 - 00000000 ___DO C:\Users\Viktor\OneDrive 2015-09-17 23:06 - 2015-06-07 22:59 - 00001908 _____ C:\Windows\diagwrn.xml 2015-09-17 23:06 - 2015-06-07 22:59 - 00001908 _____ C:\Windows\diagerr.xml 2015-09-17 23:04 - 2015-07-10 17:34 - 00756726 _____ C:\Windows\System32\perfh007.dat 2015-09-17 23:04 - 2015-07-10 17:34 - 00149614 _____ C:\Windows\System32\perfc007.dat 2015-09-17 22:55 - 2015-07-31 18:13 - 00000000 ____D C:\Users\Viktor\.VirtualBox 2015-09-17 22:28 - 2015-08-01 10:47 - 01790124 _____ C:\Windows\System32\PerfStringBackup.INI 2015-09-17 22:02 - 2015-07-19 12:44 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-09-17 22:00 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness 2015-09-17 21:18 - 2015-06-14 14:28 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\vlc 2015-09-17 15:08 - 2015-08-01 11:37 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\Audacity 2015-09-16 15:53 - 2015-06-07 21:38 - 00000000 ____D C:\Users\Viktor\AppData\Local\Packages 2015-09-15 19:18 - 2015-06-08 13:55 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-09-15 19:17 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\System32\GroupPolicy 2015-09-13 14:45 - 2015-06-08 13:19 - 00000000 ____D C:\Users\Viktor\AppData\Local\Google 2015-09-13 14:05 - 2015-06-08 13:19 - 00000000 ____D C:\Program Files (x86)\Google 2015-09-12 13:09 - 2015-08-01 11:51 - 00000000 ____D C:\AdwCleaner 2015-09-12 13:09 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\TAPI 2015-09-12 13:00 - 2015-07-14 20:30 - 00000952 _____ C:\Users\Viktor\Desktop\Automatisch zu iTunes hinzufügen.lnk 2015-09-12 11:49 - 2015-07-31 19:11 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\AVG 2015-09-12 11:49 - 2015-07-31 19:11 - 00000000 ____D C:\Users\Viktor\AppData\Local\Avg 2015-09-12 11:49 - 2015-07-31 19:11 - 00000000 ____D C:\ProgramData\AVG 2015-09-09 19:47 - 2015-07-10 13:20 - 00347648 _____ C:\Windows\System32\FNTCACHE.DAT 2015-09-09 19:46 - 2015-07-10 17:44 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-09 19:46 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\System32\appraiser 2015-09-09 16:39 - 2015-07-20 20:34 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-09-09 16:39 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp 2015-09-09 16:38 - 2015-06-08 13:47 - 00000000 ____D C:\Windows\System32\MRT 2015-09-08 15:18 - 2015-08-01 10:37 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2015-09-08 15:18 - 2015-08-01 10:37 - 00000000 ____D C:\Windows\System32\DAX2 2015-09-08 09:37 - 2015-08-01 09:55 - 00000000 ____D C:\Users\Viktor\Desktop\desktop 1.8.15 2015-09-07 15:05 - 2015-06-07 23:00 - 00000000 ____D C:\Users\Viktor\AppData\Local\VirtualStore 2015-09-07 14:51 - 2006-09-16 13:41 - 00807936 _____ C:\Windows\System32\softcoin.dll 2015-09-07 14:51 - 2006-09-16 13:40 - 00407040 _____ C:\Windows\System32\gencoin.dll 2015-09-02 09:18 - 2015-08-01 10:45 - 00000000 ____D C:\Users\Viktor\AppData\Local\Comms 2015-09-01 17:51 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache 2015-08-30 12:39 - 2015-08-01 10:43 - 00000000 ____D C:\Program Files\{FDB6A0B8-FB06-43B8-A738-FE00C6A660E3} 2015-08-30 12:39 - 2015-07-31 19:11 - 00000000 ____D C:\Program Files\{B8AE3E9A-A898-4445-B90B-3EFB4B444475} 2015-08-30 11:45 - 2015-06-08 14:15 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2015-08-30 11:45 - 2015-06-08 14:10 - 00000000 ____D C:\Program Files\Common Files\Apple 2015-08-30 10:38 - 2015-08-01 10:38 - 00000000 ____D C:\users\Viktor 2015-08-30 10:38 - 2015-06-07 23:42 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2015-08-30 10:38 - 2015-06-07 23:42 - 00000000 ____D C:\ProgramData\Oracle 2015-08-30 10:38 - 2015-06-07 23:42 - 00000000 ____D C:\Program Files (x86)\Java 2015-08-29 23:35 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\System32\oobe 2015-08-28 12:26 - 2015-07-19 12:43 - 00000000 ____D C:\Users\Viktor\AppData\Local\Adobe 2015-08-26 17:37 - 2015-06-08 13:47 - 134753440 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe 2015-08-19 22:57 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\System32\WinBioPlugIns Einige Dateien in TEMP: ==================== C:\Users\Viktor\AppData\Local\Temp\SIInvoker.exe ==================== Known DLLs (Nicht auf der Ausnahmeliste) ========================= [2015-07-10 11:59] - [2015-07-10 11:59] - 0298496 ___AL () C:\Windows\System32\Wow64.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0012288 ___AL () C:\Windows\System32\Wow64cpu.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0458240 ___AL () C:\Windows\System32\Wow64win.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0667344 ___AL () C:\Windows\System32\advapi32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0497896 ___AL () C:\Windows\SysWOW64\advapi32.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0654952 ___AL () C:\Windows\System32\clbcatq.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0519072 ___AL () C:\Windows\SysWOW64\clbcatq.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 2601160 ___AL () C:\Windows\System32\combase.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1811360 ___AL () C:\Windows\SysWOW64\combase.dll [2015-08-01 11:30] - [2015-08-01 11:30] - 0850432 ___AL () C:\Windows\System32\COMDLG32.dll [2015-08-01 11:30] - [2015-08-01 11:30] - 0750592 ___AL () C:\Windows\SysWOW64\COMDLG32.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0435200 ___AL () C:\Windows\System32\coml2.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0339968 ___AL () C:\Windows\SysWOW64\coml2.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0375296 ___AL () C:\Windows\System32\DifxApi.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0339968 ___AL () C:\Windows\SysWOW64\DifxApi.dll [2015-08-01 11:30] - [2015-08-01 11:30] - 1591856 ___AL () C:\Windows\System32\gdi32.dll [2015-08-01 11:30] - [2015-08-01 11:30] - 1365072 ___AL () C:\Windows\SysWOW64\gdi32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1718272 ___AL () C:\Windows\System32\gdiplus.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1467392 ___AL () C:\Windows\SysWOW64\gdiplus.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0101264 ___AL () C:\Windows\System32\IMAGEHLP.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0090400 ___AL () C:\Windows\SysWOW64\IMAGEHLP.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0211288 ___AL () C:\Windows\System32\IMM32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0168400 ___AL () C:\Windows\SysWOW64\IMM32.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0702512 ___AL () C:\Windows\System32\kernel32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0624312 ___AL () C:\Windows\SysWOW64\kernel32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1420392 ___AL () C:\Windows\System32\MSCTF.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1180704 ___AL () C:\Windows\SysWOW64\MSCTF.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0633768 ___AL () C:\Windows\System32\MSVCRT.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0773168 ___AL () C:\Windows\SysWOW64\MSVCRT.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0005120 ___AL () C:\Windows\System32\NORMALIZ.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0024312 ___AL () C:\Windows\System32\NSI.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0020160 ___AL () C:\Windows\SysWOW64\NSI.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 1314496 ___AL () C:\Windows\System32\ole32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0952968 ___AL () C:\Windows\SysWOW64\ole32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0771672 ___AL () C:\Windows\System32\OLEAUT32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0591912 ___AL () C:\Windows\SysWOW64\OLEAUT32.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0018656 ___AL () C:\Windows\System32\PSAPI.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0017048 ___AL () C:\Windows\SysWOW64\PSAPI.dll [2015-08-05 21:25] - [2015-07-30 07:17] - 1200400 ___AL () C:\Windows\System32\rpcrt4.dll [2015-08-05 21:25] - [2015-07-30 05:29] - 0705520 ___AL () C:\Windows\SysWOW64\rpcrt4.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0365224 ___AL () C:\Windows\System32\sechost.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0263432 ___AL () C:\Windows\SysWOW64\sechost.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 1860944 ___AL () C:\Windows\System32\Setupapi.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1733880 ___AL () C:\Windows\SysWOW64\Setupapi.dll [2015-08-28 19:00] - [2015-08-20 07:02] - 22324656 ___AL () C:\Windows\System32\SHELL32.dll [2015-08-28 19:00] - [2015-08-20 06:16] - 20857848 ___AL () C:\Windows\SysWOW64\SHELL32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0328488 ___AL () C:\Windows\System32\SHLWAPI.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0274768 ___AL () C:\Windows\SysWOW64\SHLWAPI.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1366168 ___AL () C:\Windows\System32\user32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1310880 ___AL () C:\Windows\SysWOW64\user32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0348160 ___AL () C:\Windows\System32\WLDAP32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0320000 ___AL () C:\Windows\SysWOW64\WLDAP32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0422560 ___AL () C:\Windows\System32\WS2_32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0372912 ___AL () C:\Windows\SysWOW64\WS2_32.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\System32\winlogon.exe [2015-09-09 16:33] - [2015-08-27 06:42] - 0578560 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\winlogon.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\wininit.exe [2015-08-01 11:30] - [2015-08-01 11:30] - 0290312 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\wininit.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\explorer.exe [2015-08-19 14:33] - [2015-08-11 11:04] - 4532304 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\explorer.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\SysWOW64\explorer.exe [2015-08-19 14:33] - [2015-08-11 10:40] - 4048808 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\SysWOW64\explorer.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\svchost.exe [2015-07-10 11:59] - [2015-07-10 11:59] - 0039856 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\svchost.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\SysWOW64\svchost.exe [2015-07-10 12:00] - [2015-07-10 12:00] - 0035176 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\SysWOW64\svchost.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\services.exe [2015-07-10 12:00] - [2015-07-10 12:00] - 0446336 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\services.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\User32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1366168 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\User32.dll => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\SysWOW64\User32.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 1310880 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\SysWOW64\User32.dll => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\userinit.exe [2015-07-10 12:00] - [2015-07-10 12:00] - 0030720 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\userinit.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\SysWOW64\userinit.exe [2015-07-10 12:00] - [2015-07-10 12:00] - 0026112 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\SysWOW64\userinit.exe => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\rpcss.dll [2015-07-10 11:59] - [2015-07-10 11:59] - 0873984 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\rpcss.dll => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\dnsapi.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0680256 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\dnsapi.dll => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\SysWOW64\dnsapi.dll [2015-07-10 12:00] - [2015-07-10 12:00] - 0534064 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\SysWOW64\dnsapi.dll => ACHTUNG: ZeroAccess. Delete reparsepoint. C:\Windows\System32\Drivers\volsnap.sys [2015-07-10 11:59] - [2015-07-10 11:59] - 0378720 ___AL () D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\Drivers\volsnap.sys => ACHTUNG: ZeroAccess. Delete reparsepoint. ACHTUNG: ====> ZeroAccess. Benutzen DeleteJunctionsIndirectory: C:\Program Files\Windows Defender ==================== Wiederherstellungspunkte ========================= ==================== Speicherinformationen =========================== Prozentuale Nutzung des RAM: 8% Installierter physikalischer RAM: 8159.14 MB Verfügbarer physikalischer RAM: 7425.63 MB Summe virtueller Speicher: 8159.14 MB Verfügbarer virtueller Speicher: 7448.42 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:118.46 GB) (Free:70.47 GB) NTFS Drive d: (Volume) (Fixed) (Total:1862.89 GB) (Free:9.87 GB) NTFS Drive e: () (Fixed) (Total:465.76 GB) (Free:453.13 GB) NTFS Drive f: (ESD-USB) (Removable) (Total:14.42 GB) (Free:14.42 GB) FAT32 Drive h: () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS Drive i: (IR3_CCSA_X64FRE_DE-DE_DV9) (CDROM) (Total:3.88 GB) (Free:0 GB) UDF Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS Drive y: (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)] ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 7317DD4A) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=118.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D4A6F0C4) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 14.4 GB) (Disk ID: 00000000) Partition: GPT. LastRegBack: 2015-09-14 17:09 ==================== Ende von FRST.txt ============================ |
![]() | #17 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() Fenster öffnen sich automatisch in chrome mit Werbung Drücke bitte die
__________________![]() Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter AppInit_DLLs: C:\ProgramData\Saophase\Quoit.dll => C:\ProgramData\Saophase\Quoit.dll [985600 2015-09-15] () AppInit_DLLs-x32: C:\ProgramData\Saophase\MoveLotjob.dll => C:\ProgramData\Saophase\MoveLotjob.dll [757248 2015-09-15] () C:\ProgramData\Saophase S2 Saophase; C:\ProgramData\Saophase\Saophase.exe [33792 2015-09-01] () 2015-09-15 19:34 - 2015-09-17 23:06 - 00000000 ____D C:\ProgramData\Saophase 2015-09-15 19:34 - 2015-09-17 12:09 - 00002381 _____ C:\Windows\SysWOW64\findit.xml 2015-09-15 19:34 - 2015-09-15 19:34 - 05224982 _____ (Bycatch) C:\Program Files\Common Files\sppxi3jj.exe 2015-09-15 19:19 - 2015-09-15 19:19 - 00003208 _____ C:\Windows\System32\Tasks\wxrgkekt 2015-09-15 19:19 - 2015-09-15 19:19 - 00000000 ____D C:\Program Files\Common Files\35k1z10w 2015-09-13 14:09 - 2015-09-13 14:09 - 05224982 _____ (Bycatch) C:\Program Files\Common Files\yuwcre5l.exe 2015-09-13 14:09 - 2015-09-13 14:09 - 00000000 ____D C:\ProgramData\Saophases
Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier. Frischen FRST Scan aus dem normalen Modus bitte.
__________________ |
![]() | #18 |
![]() | ![]() fixlogCode:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:15-09-2015 durchgeführt von SYSTEM (2015-09-21 11:40:50) Run:3 Gestartet von f:\ Start-Modus: Recovery ============================================== fixlist Inhalt: ***************** AppInit_DLLs: C:\ProgramData\Saophase\Quoit.dll => C:\ProgramData\Saophase\Quoit.dll [985600 2015-09-15] () AppInit_DLLs-x32: C:\ProgramData\Saophase\MoveLotjob.dll => C:\ProgramData\Saophase\MoveLotjob.dll [757248 2015-09-15] () C:\ProgramData\Saophase S2 Saophase; C:\ProgramData\Saophase\Saophase.exe [33792 2015-09-01] () 2015-09-15 19:34 - 2015-09-17 23:06 - 00000000 ____D C:\ProgramData\Saophase 2015-09-15 19:34 - 2015-09-17 12:09 - 00002381 _____ C:\Windows\SysWOW64\findit.xml 2015-09-15 19:34 - 2015-09-15 19:34 - 05224982 _____ (Bycatch) C:\Program Files\Common Files\sppxi3jj.exe 2015-09-15 19:19 - 2015-09-15 19:19 - 00003208 _____ C:\Windows\System32\Tasks\wxrgkekt 2015-09-15 19:19 - 2015-09-15 19:19 - 00000000 ____D C:\Program Files\Common Files\35k1z10w 2015-09-13 14:09 - 2015-09-13 14:09 - 05224982 _____ (Bycatch) C:\Program Files\Common Files\yuwcre5l.exe 2015-09-13 14:09 - 2015-09-13 14:09 - 00000000 ____D C:\ProgramData\Saophases ***************** "C:\ProgramData\Saophase\Quoit.dll" => Wert Daten erfolgreich entfernt. "C:\ProgramData\Saophase\MoveLotjob.dll" => Wert Daten erfolgreich entfernt. C:\ProgramData\Saophase => erfolgreich verschoben Saophase => Dienst erfolgreich entfernt "C:\ProgramData\Saophase" => Datei/Ordner nicht gefunden. "C:\Windows\SysWOW64\findit.xml" => Konnte nicht verschoben werden. C:\Program Files\Common Files\sppxi3jj.exe => erfolgreich verschoben C:\Windows\System32\Tasks\wxrgkekt => erfolgreich verschoben C:\Program Files\Common Files\35k1z10w => erfolgreich verschoben C:\Program Files\Common Files\yuwcre5l.exe => erfolgreich verschoben C:\ProgramData\Saophases => erfolgreich verschoben ==== Ende von Fixlog 11:40:50 ==== Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015 durchgeführt von Viktor (Administrator) auf VIKTOR (21-09-2015 11:48:45) Gestartet von C:\Users\Viktor\Downloads Geladene Profile: Viktor (Verfügbare Profile: Viktor) Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect 3\creator-ws.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\msosync.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\outlook.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16464_none_116100d161f6ab1d\TiWorker.exe (Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKU\S-1-5-21-1727194055-1442140589-871456855-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] Tcpip\..\Interfaces\{f8806c8c-e780-4202-8feb-968d8f1774e8}: [DhcpNameServer] Internet Explorer: ================== HKU\S-1-5-21-1727194055-1442140589-871456855-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOCROL5vkqiwlCw4U7jtxMRJDkycVmGjmsIFrCZWxziNeEvF2MgYuI3q_jSpXvNLeiuC4jVSxH4dl1u2g,,&q={searchTerms} HKU\S-1-5-21-1727194055-1442140589-871456855-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOOtun2cOaQlYCX762zs_TnZDpw96eKAf6Hpxi7Y2Gfqc_LPAZTFtJSMJDSRTVT5U_5Sc7b9z3fkU219A,, HKU\S-1-5-21-1727194055-1442140589-871456855-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOCROL5vkqiwlCw4U7jtxMRJDkycVmGjmsIFrCZWxziNeEvF2MgYuI3q_jSpXvNLeiuC4jVSxH4dl1u2g,,&q={searchTerms} HKU\S-1-5-21-1727194055-1442140589-871456855-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOCROL5vkqiwlCw4U7jtxMRJDkycVmGjmsIFrCZWxziNeEvF2MgYuI3q_jSpXvNLeiuC4jVSxH4dl1u2g,,&q={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL = SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOCROL5vkqiwlCw4U7jtxMRJDkycVmGjmsIFrCZWxziNeEvF2MgYuI3q_jSpXvNLeiuC4jVSxH4dl1u2g,,&q={searchTerms} SearchScopes: HKU\S-1-5-21-1727194055-1442140589-871456855-1001 -> DefaultScope {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOCROL5vkqiwlCw4U7jtxMRJDkycVmGjmsIFrCZWxziNeEvF2MgYuI3q_jSpXvNLeiuC4jVSxH4dl1u2g,,&q={searchTerms} SearchScopes: HKU\S-1-5-21-1727194055-1442140589-871456855-1001 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTwkzwGbNf1Lchis4Xjylf4bUE8mTT48FiI2kp8YeKBsXFajkFSdbUOpxVXConAE451h4g0KjT8sFloTeJJ8LHoOCROL5vkqiwlCw4U7jtxMRJDkycVmGjmsIFrCZWxziNeEvF2MgYuI3q_jSpXvNLeiuC4jVSxH4dl1u2g,,&q={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation) BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation) BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30] (Oracle Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30] (Oracle Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-06-08] (Microsoft Corporation) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-28] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-28] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] () FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-30] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-06-08] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-06-08] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2015-09-20] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2015-09-20] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: PDF Architect 3 -> C:\Program Files (x86)\PDF Architect 3\np-previewer.dll [2015-04-24] (pdfforge GmbH) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.de/ CHR StartupUrls: Default -> "hxxp://www.google.de/" CHR Profile: C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google*Übersetzer) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-09-13] CHR Extension: (Google Präsentationen) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-13] CHR Extension: (Magic Actions for YouTube™) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-09-13] CHR Extension: (Google Docs) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-13] CHR Extension: (Google Drive) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-13] CHR Extension: (YouTube) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-13] CHR Extension: (Adblock Plus) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-09-13] CHR Extension: (Adblock für Youtube™) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-09-13] CHR Extension: (Google-Suche) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-13] CHR Extension: (Amazon Trade-in Value History) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddkjgheeceokpnajnkkjjmilcipkgdfd [2015-09-13] CHR Extension: (Google Kalender) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-09-13] CHR Extension: (Video Downloader professional) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-09-13] CHR Extension: (Google Tabellen) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-13] CHR Extension: (Go to IMDb) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipkcplmpmhcmfgkgahliaabodplkjio [2015-09-13] CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-13] CHR Extension: (Der Camelizer) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo [2015-09-13] CHR Extension: (AdBlock) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-09-13] CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2015-09-13] CHR Extension: (Chromium Wheel Smooth Scroller) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb [2015-09-13] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-09-13] CHR Extension: (Dailymotion) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lekjhaoehikicbcgpdjkbhcdbhcgdkcp [2015-09-13] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-13] CHR Extension: (Citavi Picker) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2015-09-13] CHR Extension: (Click&Clean App) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-09-13] CHR Extension: (Google Mail) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-13] CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2768472 2015-08-11] (Microsoft Corporation) S3 dkab_device; C:\WINDOWS\system32\DKabcoms.exe [476568 2006-10-21] ( ) S3 dkab_device; C:\WINDOWS\SysWOW64\DKabcoms.exe [508824 2006-10-21] ( ) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert] S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) S3 PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH) S3 PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH) R2 PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH) S3 SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation) S3 SSScsiSV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-07-09] (Oracle Corporation) R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-07-09] (Oracle Corporation) S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2015-07-09] (Oracle Corporation) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X] S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-21 11:44 - 2015-09-21 11:44 - 00016148 _____ C:\WINDOWS\system32\VIKTOR_Viktor_HistoryPrediction.bin 2015-09-21 11:44 - 2015-09-21 11:44 - 00000000 ___HD C:\OneDriveTemp 2015-09-21 11:42 - 2015-09-21 11:42 - 00012992 ____N C:\bootsqm.dat 2015-09-18 00:06 - 2015-09-18 00:06 - 00000000 ___HD C:\$WINDOWS.~BT 2015-09-17 23:31 - 2015-09-17 23:31 - 02191360 _____ (Farbar) C:\Users\Viktor\Downloads\FRST64 (1).exe 2015-09-17 15:42 - 2015-09-17 15:42 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity 2015-09-17 15:41 - 2015-09-17 15:42 - 00527423 _____ ( ) C:\Users\Viktor\Downloads\Lame_v3.99.3_for_Windows.exe 2015-09-17 14:51 - 2015-09-17 14:55 - 484081471 _____ C:\Users\Viktor\Downloads\Umse - Hawaiianischer Schnee (pre-order).zip 2015-09-15 23:04 - 2015-09-15 23:04 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\cef-cache 2015-09-15 23:04 - 2015-09-15 23:04 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\bwincom 2015-09-15 23:03 - 2015-09-15 23:03 - 00782256 _____ C:\Users\Viktor\Downloads\bwincomPokerSetup.exe 2015-09-15 23:03 - 2015-09-15 23:03 - 00001696 _____ C:\ProgramData\Microsoft\Windows\Start Menu\bwin Poker.lnk 2015-09-15 23:03 - 2015-09-15 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-09-15 23:03 - 2015-09-15 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bwin Poker 2015-09-15 20:34 - 2015-09-17 13:09 - 00002381 _____ C:\WINDOWS\SysWOW64\findit.xml 2015-09-15 20:18 - 2015-09-15 20:18 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-09-13 15:05 - 2015-09-13 15:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-09-13 15:04 - 2015-09-21 11:44 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-13 15:04 - 2015-09-20 17:16 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-13 15:04 - 2015-09-20 17:10 - 00004190 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-13 15:04 - 2015-09-20 17:10 - 00003958 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-13 15:04 - 2015-09-13 15:04 - 00929360 _____ (Google Inc.) C:\Users\Viktor\Downloads\ChromeSetup.exe 2015-09-13 14:57 - 2015-09-13 14:57 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Viktor\Downloads\revosetup95.exe 2015-09-13 14:57 - 2015-09-13 14:57 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-09-13 14:50 - 2015-09-15 20:17 - 00000000 ____D C:\Users\Viktor\Downloads\FRST-OlderVersion 2015-09-12 16:38 - 2015-09-16 18:41 - 00032826 _____ C:\Users\Viktor\Downloads\Addition.txt 2015-09-12 16:37 - 2015-09-21 11:48 - 00017605 _____ C:\Users\Viktor\Downloads\FRST.txt 2015-09-12 16:37 - 2015-09-21 11:48 - 00000000 ____D C:\FRST 2015-09-12 16:37 - 2015-09-15 20:17 - 02191360 _____ (Farbar) C:\Users\Viktor\Downloads\FRST64.exe 2015-09-12 13:59 - 2015-09-12 13:59 - 01800104 _____ (Malwarebytes Corporation) C:\Users\Viktor\Downloads\JRT_7.6.1.exe 2015-09-12 12:50 - 2015-09-13 15:00 - 00000000 ____D C:\Program Files (x86)\NoVirusThanks 2015-09-12 12:49 - 2015-09-12 12:49 - 00931678 _____ (NoVirusThanks Company Srl ) C:\Users\Viktor\Downloads\hijackhunter_setup.exe 2015-09-12 12:48 - 2015-09-12 12:48 - 00574048 _____ C:\Users\Viktor\Downloads\hijackhunter_setup_CB-DL-Manager.exe 2015-09-12 12:46 - 2015-09-12 13:05 - 00011083 _____ C:\Users\Viktor\Downloads\hijackthis.log 2015-09-12 12:46 - 2015-09-12 12:46 - 00388608 _____ (Trend Micro Inc.) C:\Users\Viktor\Downloads\HijackThis.exe 2015-09-12 12:37 - 2015-09-12 12:37 - 01162528 _____ C:\Users\Viktor\Downloads\HijackThis - CHIP-Installer.exe 2015-09-09 17:34 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-09-09 17:34 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-09-09 17:34 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-09-09 17:34 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-09-09 17:33 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-09-09 17:33 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-09-09 17:33 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-09-09 17:33 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-09-09 17:33 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-09-09 17:33 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-09-09 17:33 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-09-09 17:33 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-09-09 17:33 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-09-09 17:33 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-09-09 17:33 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-09-09 17:33 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-09-09 17:33 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-09-09 17:33 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-09-09 17:33 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-09-09 17:33 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-09-09 17:33 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll 2015-09-09 17:33 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2015-09-09 17:33 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-09-09 17:33 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-09-09 17:33 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-09-09 17:33 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-09-09 17:33 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-09-09 17:33 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-09-09 17:33 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-09-09 17:33 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2015-09-09 17:33 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-09-09 17:33 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-09-08 16:44 - 2015-09-08 16:45 - 12644316 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h44m46s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 16:33 - 2015-09-08 16:36 - 68087208 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h33m36s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 16:32 - 2015-09-08 16:32 - 10236224 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h32m02s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 16:32 - 2015-09-08 16:32 - 01941476 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h32m35s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 16:31 - 2015-09-08 16:31 - 03189984 _____ C:\Users\Viktor\Documents\vlc-record-2015-09-08-16h31m50s-http___daserste_live-lh.akamaihd.net_i_daserste_de@91204_master.m3u8-.ts 2015-09-08 15:59 - 2015-09-08 15:59 - 00000000 ____D C:\ProgramData\RapidSolution 2015-09-08 15:59 - 2015-09-08 15:59 - 00000000 ____D C:\Program Files (x86)\Audials 2015-09-08 15:57 - 2015-09-08 15:57 - 74047440 _____ C:\Users\Viktor\Downloads\Audials_Moviebox-Setup9700.exe 2015-09-08 15:57 - 2015-09-08 15:57 - 00000000 ____D C:\Users\Viktor\AppData\Local\RapidSolution 2015-09-08 10:59 - 2015-09-14 16:37 - 00000410 _____ C:\Users\Viktor\Desktop\Bewerbungen.txt 2015-09-08 10:36 - 2015-09-17 15:40 - 00000000 ____D C:\Users\Viktor\Desktop\MINI DISC 2015-09-08 10:35 - 2015-09-08 10:36 - 00000000 ____D C:\Users\Viktor\Desktop\Arbeitsamt 2015-09-07 17:34 - 2015-09-07 17:34 - 00003641 _____ C:\WINDOWS\system32\LexFiles.ulf 2015-09-07 17:34 - 2015-09-07 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers 2015-09-07 17:34 - 2015-09-07 17:34 - 00000000 ____D C:\Program Files\Dell_HostCD 2015-09-07 17:34 - 2006-10-21 12:38 - 00508824 _____ ( ) C:\WINDOWS\SysWOW64\DKabcoms.exe 2015-09-07 17:34 - 2006-10-21 12:38 - 00476568 _____ ( ) C:\WINDOWS\system32\DKabcoms.exe 2015-09-07 17:34 - 2006-10-21 12:38 - 00168856 _____ ( ) C:\WINDOWS\system32\DKabppls.exe 2015-09-07 17:34 - 2006-09-16 14:20 - 00583680 _____ ( ) C:\WINDOWS\system32\lexlog.dll 2015-09-07 17:34 - 2006-07-28 10:50 - 00449024 _____ ( ) C:\WINDOWS\system32\DKabpmui.dll 2015-09-07 17:34 - 2006-07-28 10:48 - 01387008 _____ ( ) C:\WINDOWS\system32\DKabserv.dll 2015-09-07 17:34 - 2006-07-28 10:41 - 01180672 _____ ( ) C:\WINDOWS\system32\DKabip1.dll 2015-09-07 17:34 - 2006-07-28 10:41 - 00249856 _____ ( ) C:\WINDOWS\system32\DKabcomm.dll 2015-09-07 17:34 - 2006-07-28 10:33 - 00466432 _____ ( ) C:\WINDOWS\system32\DKabiobj.dll 2015-09-07 17:34 - 2006-07-28 10:30 - 00240128 _____ ( ) C:\WINDOWS\system32\DKabinpa.dll 2015-09-07 17:34 - 2006-07-28 10:29 - 00029184 _____ ( ) C:\WINDOWS\system32\DKabpplc.dll 2015-09-07 17:34 - 2006-07-28 10:28 - 00567808 _____ ( ) C:\WINDOWS\system32\DKabcomc.dll 2015-09-07 17:34 - 2006-07-28 10:27 - 00034816 _____ ( ) C:\WINDOWS\system32\DKabprox.dll 2015-09-07 17:34 - 2006-07-28 10:25 - 00425472 _____ ( ) C:\WINDOWS\system32\DKabpar1.dll 2015-09-07 17:34 - 2006-07-28 10:23 - 01080832 _____ ( ) C:\WINDOWS\system32\DKabusb1.dll 2015-09-07 17:34 - 2006-07-28 10:19 - 00453632 _____ ( ) C:\WINDOWS\system32\DKablmpm.dll 2015-09-07 17:34 - 2006-07-28 09:55 - 00421888 _____ ( ) C:\WINDOWS\SysWOW64\DKabcomm.dll 2015-09-07 17:34 - 2006-07-28 09:44 - 00614400 _____ ( ) C:\WINDOWS\SysWOW64\DKabcomc.dll 2015-09-07 17:34 - 2006-07-28 09:43 - 00163840 _____ ( ) C:\WINDOWS\SysWOW64\DKabprox.dll 2015-09-07 17:34 - 2006-06-21 09:25 - 00002244 _____ C:\WINDOWS\SysWOW64\DKab.loc 2015-09-07 17:34 - 2006-06-21 09:25 - 00002244 _____ C:\WINDOWS\system32\DKab.loc 2015-09-07 17:34 - 2006-04-27 12:47 - 00017879 _____ C:\WINDOWS\system32\DKabpmui.chm 2015-09-07 17:25 - 2015-09-07 17:25 - 00000000 ____D C:\Dell 2015-09-07 17:20 - 2015-09-07 17:24 - 40883056 _____ ( ) C:\Users\Viktor\Downloads\R147093.exe 2015-09-07 17:19 - 2015-09-07 17:19 - 00052528 _____ C:\Users\Viktor\Downloads\dellw5300n.ppd 2015-09-07 15:54 - 2015-09-07 17:34 - 00001937 _____ C:\dkab.log 2015-09-07 15:49 - 2015-09-07 15:50 - 40902944 _____ C:\Users\Viktor\Downloads\R156516.zip 2015-09-07 15:35 - 2015-09-07 15:35 - 00000458 _____ C:\WINDOWS\WindowsUpdate_AU_deprecated.log 2015-09-02 13:25 - 2015-09-02 13:25 - 00048296 _____ (RapidSolution Software AG) C:\WINDOWS\system32\Drivers\tbhsd.sys 2015-09-02 13:25 - 2015-09-02 13:25 - 00025256 _____ (Audials AG) C:\WINDOWS\system32\Drivers\RrNetCapFilterDriver.sys 2015-08-31 10:41 - 2015-09-10 16:22 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\PDF Architect 3 2015-08-31 10:41 - 2015-08-31 10:41 - 00000000 ____D C:\Users\Viktor\Documents\PDF Architect 2015-08-31 10:41 - 2015-08-31 10:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 3 2015-08-31 10:41 - 2015-08-31 10:41 - 00000000 ____D C:\Program Files (x86)\PDF Architect 3 2015-08-31 10:40 - 2015-08-31 10:41 - 00000000 ____D C:\Program Files\PDFCreator 2015-08-31 10:40 - 2015-08-31 10:40 - 00115592 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll 2015-08-31 10:40 - 2015-08-31 10:40 - 00000000 ____D C:\ProgramData\PDF Architect 3 2015-08-31 10:40 - 2015-08-31 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2015-08-31 10:39 - 2015-08-31 10:39 - 28754952 _____ (pdfforge GmbH) C:\Users\Viktor\Downloads\PDFCreator-2_1_2-setup.exe 2015-08-30 13:35 - 2015-09-12 13:56 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-08-30 13:35 - 2015-08-30 13:35 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Viktor\Downloads\mbam-setup- 2015-08-30 13:35 - 2015-08-30 13:35 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-08-30 13:35 - 2015-08-30 13:35 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-08-30 13:35 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-08-30 13:35 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-08-30 13:35 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-08-30 13:27 - 2015-08-30 13:27 - 01618432 _____ C:\Users\Viktor\Downloads\adwcleaner_5.004 (1).exe 2015-08-30 12:45 - 2015-08-30 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-08-30 12:45 - 2015-08-30 12:45 - 00000000 ____D C:\Program Files\iTunes 2015-08-30 12:45 - 2015-08-30 12:45 - 00000000 ____D C:\Program Files\iPod 2015-08-30 12:45 - 2015-08-30 12:45 - 00000000 ____D C:\Program Files (x86)\iTunes 2015-08-30 11:38 - 2015-08-30 11:38 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\Sun 2015-08-30 11:38 - 2015-08-30 11:38 - 00000000 ____D C:\Users\Viktor\.oracle_jre_usage 2015-08-28 20:00 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-08-28 20:00 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-08-28 20:00 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-08-28 20:00 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-08-28 20:00 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-08-28 20:00 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-08-28 20:00 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-08-28 19:59 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-08-28 19:59 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-08-28 19:59 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll 2015-08-28 19:59 - 2015-08-20 07:09 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2015-08-28 19:59 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-08-28 19:59 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-08-28 19:59 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-08-28 19:59 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll 2015-08-28 19:59 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2015-08-28 19:59 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-08-28 19:59 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2015-08-28 19:59 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2015-08-28 19:59 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-08-28 19:59 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll 2015-08-28 19:59 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll 2015-08-28 19:59 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2015-08-28 19:59 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll 2015-08-28 19:59 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll 2015-08-28 19:59 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll 2015-08-28 19:59 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll 2015-08-28 19:59 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll 2015-08-28 19:59 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-08-28 19:59 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll 2015-08-28 19:59 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll 2015-08-28 19:59 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-08-28 19:59 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-08-28 19:59 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2015-08-28 19:59 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll 2015-08-28 19:59 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll 2015-08-28 19:59 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll 2015-08-28 19:59 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll 2015-08-28 19:59 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll 2015-08-28 19:59 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-08-28 19:59 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll 2015-08-28 19:59 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList 2015-08-28 18:33 - 2015-08-28 18:36 - 95531044 _____ C:\Users\Viktor\Downloads\Large Professor - ReLiving.zip 2015-08-28 18:30 - 2015-08-28 18:31 - 270696020 _____ C:\Users\Viktor\Downloads\Juju Rogers - From the Life of a Good-For-Nothing.zip 2015-08-28 17:52 - 2015-08-28 17:52 - 01618432 _____ C:\Users\Viktor\Downloads\adwcleaner_5.004.exe 2015-08-28 17:49 - 2015-09-18 00:06 - 00000277 _____ C:\WINDOWS\setupact.log 2015-08-28 17:49 - 2015-09-18 00:06 - 00000000 _____ C:\WINDOWS\setuperr.log 2015-08-28 13:12 - 2015-08-28 13:12 - 00000000 ____D C:\Users\Viktor\AppData\Local\Macromedia 2015-08-25 14:51 - 2015-09-17 23:56 - 00022408 _____ C:\WINDOWS\PFRO.log 2015-08-25 12:55 - 2015-08-25 12:55 - 00000000 ___RD C:\Users\Viktor\3D Objects 2015-08-24 23:15 - 2015-08-24 23:15 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2015-08-24 12:51 - 2015-09-21 11:44 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-21 12:41 - 2015-06-08 01:25 - 00000000 _____ C:\Recovery.txt 2015-09-21 11:44 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-09-21 11:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-09-21 11:44 - 2015-06-07 22:43 - 00000000 ___DO C:\Users\Viktor\OneDrive 2015-09-21 11:36 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-09-21 11:33 - 2015-08-01 11:47 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-09-21 11:33 - 2015-07-10 18:34 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat 2015-09-21 11:33 - 2015-07-10 18:34 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat 2015-09-20 17:02 - 2015-07-19 13:44 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-09-20 16:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-09-18 00:06 - 2015-06-07 23:59 - 00001908 _____ C:\WINDOWS\diagwrn.xml 2015-09-18 00:06 - 2015-06-07 23:59 - 00001908 _____ C:\WINDOWS\diagerr.xml 2015-09-17 23:55 - 2015-07-31 19:13 - 00000000 ____D C:\Users\Viktor\.VirtualBox 2015-09-17 22:18 - 2015-06-14 15:28 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\vlc 2015-09-17 16:08 - 2015-08-01 12:37 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\Audacity 2015-09-16 16:53 - 2015-06-07 22:38 - 00000000 ____D C:\Users\Viktor\AppData\Local\Packages 2015-09-15 20:18 - 2015-06-08 14:55 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-09-15 20:17 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2015-09-15 20:12 - 2015-08-01 11:47 - 00002357 _____ C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-09-13 15:45 - 2015-06-08 14:19 - 00000000 ____D C:\Users\Viktor\AppData\Local\Google 2015-09-13 15:05 - 2015-06-08 14:19 - 00000000 ____D C:\Program Files (x86)\Google 2015-09-12 14:09 - 2015-08-01 12:51 - 00000000 ____D C:\AdwCleaner 2015-09-12 14:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\TAPI 2015-09-12 14:00 - 2015-08-01 12:37 - 00001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2015-09-12 14:00 - 2015-08-01 11:40 - 00001540 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-09-12 14:00 - 2015-07-31 20:20 - 00001105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2015-09-12 14:00 - 2015-07-14 21:30 - 00000952 _____ C:\Users\Viktor\Desktop\Automatisch zu iTunes hinzufügen.lnk 2015-09-12 14:00 - 2015-06-08 15:15 - 00002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2015-09-12 12:49 - 2015-07-31 20:11 - 00000000 ____D C:\Users\Viktor\AppData\Roaming\AVG 2015-09-12 12:49 - 2015-07-31 20:11 - 00000000 ____D C:\Users\Viktor\AppData\Local\Avg 2015-09-12 12:49 - 2015-07-31 20:11 - 00000000 ____D C:\ProgramData\AVG 2015-09-09 20:47 - 2015-07-10 14:20 - 00347648 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-09-09 20:46 - 2015-07-10 18:44 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-09 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-09-09 17:39 - 2015-07-20 21:34 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-09-09 17:39 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-09-09 17:38 - 2015-06-08 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-09-09 17:38 - 2015-06-08 14:47 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-09-08 16:18 - 2015-08-01 11:37 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2015-09-08 16:18 - 2015-08-01 11:37 - 00000000 ____D C:\WINDOWS\system32\DAX2 2015-09-08 10:37 - 2015-08-01 10:55 - 00000000 ____D C:\Users\Viktor\Desktop\desktop 1.8.15 2015-09-07 16:05 - 2015-06-08 00:00 - 00000000 ____D C:\Users\Viktor\AppData\Local\VirtualStore 2015-09-07 15:51 - 2006-09-16 14:41 - 00807936 _____ C:\WINDOWS\system32\softcoin.dll 2015-09-07 15:51 - 2006-09-16 14:40 - 00407040 _____ C:\WINDOWS\system32\gencoin.dll 2015-09-02 10:18 - 2015-08-01 11:45 - 00000000 ____D C:\Users\Viktor\AppData\Local\Comms 2015-09-01 18:51 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache 2015-08-30 13:39 - 2015-08-01 11:43 - 00000000 ____D C:\Program Files\{FDB6A0B8-FB06-43B8-A738-FE00C6A660E3} 2015-08-30 13:39 - 2015-07-31 20:11 - 00000000 ____D C:\Program Files\{B8AE3E9A-A898-4445-B90B-3EFB4B444475} 2015-08-30 12:45 - 2015-06-08 15:15 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2015-08-30 12:45 - 2015-06-08 15:10 - 00000000 ____D C:\Program Files\Common Files\Apple 2015-08-30 11:38 - 2015-08-01 11:38 - 00000000 ____D C:\Users\Viktor 2015-08-30 11:38 - 2015-06-08 00:42 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2015-08-30 11:38 - 2015-06-08 00:42 - 00000000 ____D C:\ProgramData\Oracle 2015-08-30 11:38 - 2015-06-08 00:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-08-30 11:38 - 2015-06-08 00:42 - 00000000 ____D C:\Program Files (x86)\Java 2015-08-30 00:35 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-08-28 13:26 - 2015-07-19 13:43 - 00000000 ____D C:\Users\Viktor\AppData\Local\Adobe 2015-08-26 18:37 - 2015-06-08 14:47 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-08-01 12:04 - 2015-08-01 12:04 - 0000017 _____ () C:\Users\Viktor\AppData\Local\resmon.resmoncfg 2015-08-01 11:37 - 2015-08-01 11:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\Viktor\AppData\Local\Temp\SIInvoker.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-09-14 18:09 ==================== Ende von FRST.txt ============================ |
![]() | #19 |
![]() | ![]() Fenster öffnen sich automatisch in chrome mit Werbung Moin, gestern lief alles sauber und ohne Werbung. Heute ist alles wieder da und ich kann nichmal die Startseite ändern. Wenn ich sie ändere, ist sie nach nem Neustart von Chrome wieder auf sidesearch.com geändert. Vielleicht sollte ich alles sichern und das System neu aufsetzen? Gruß Viktor |
![]() | #20 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() Fenster öffnen sich automatisch in chrome mit Werbung Kommt das nur in Chrome? Nachdem jetzt endlich die Malware endgültig weg is folgendes nochmal: Revo Uninstaller - Download - Filepony damit Chrome deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren. Dann: https://support.google.com/chrome/answer/3296214?hl=de
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() | #21 |
![]() | ![]() Fenster öffnen sich automatisch in chrome mit Werbung Moin, ich habe alles nach anleitung gemacht und nach der Neuinstallation hat google defender!? sich gemeldet und gesagt, dass unregelmäßigkeiten auftraten und ich einen scan durchführen solle. nach dem scan wurde "smartbar" gefunden und entfernt. Ich weiß nicht, ob das nötig war, weil ich ja erst neuinstalliert habe und die malware ja weg sein sollte. Wie auch immer, jetzt läuft alle sauber und ohne merkbare Probleme. Danke für deine Hilfe ![]() Viele Grüße Viktor |
![]() | #22 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() Fenster öffnen sich automatisch in chrome mit Werbung Cleanup: (Die Reihenfolge ist hier entscheidend) Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken. Falls Combofix verwendet wurde: ![]()
Alle Logs gepostet? Dann lade Dir bitte ![]()
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst... ![]() ![]() ![]() ![]() Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank. Meine Empfehlung: ![]() Emsisoft Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional: ![]() ![]() Lade Software von einem sauberen Portal wie ![]() Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwarecleaner . Abschließend noch ein paar grundsätzliche Bemerkungen: Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems. Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() |
Themen zu Fenster öffnen sich automatisch in chrome mit Werbung |
appdata, automatisch, bericht, browser, browser mit werbung, datei gelöscht, einstellungen, explorer, fenster öffnen sich, firefox, gelöscht, google, helper, internet explorer, logfiles, microsoft, proxy, registry, roaming, secure, server, software, temp, websites, werbung, win10, windows, windows 10 pro, winsock |