| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Komme nicht mehr ins Internet, Google Chrome wird nicht mehr geöffnetWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.10.2015, 19:40
| #1 |
 |  Komme nicht mehr ins Internet, Google Chrome wird nicht mehr geöffnet Hallo ihr Lieben, heute bitte ich für meine Tochter um eure Hilfe. Sie kommt mit dem PC nicht mehr ins Internet, jetzt will sie den PC auf "Auslieferungszustand" zurückstellen. Leider funktioniert das nicht. Vermutlich hat sie sich einen Virus eingefangen. Könnt ihr uns bitte helfen? Vielen Dank! Lilian-Rose |
|
30.10.2015, 20:17
| #2 |
| /// the machine /// TB-Ausbilder    | Komme nicht mehr ins Internet, Google Chrome wird nicht mehr geöffnet hi,
__________________von anderem PC laden: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
30.10.2015, 23:37
| #3 |
| | Komme nicht mehr ins Internet, Google Chrome wird nicht mehr geöffnet Danke Schrauber, dass Du uns hilfst!
__________________Ich hoffe, dass die Eingaben so passen... Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:29-10-2015
durchgeführt von Conny (2015-10-30 23:30:25)
Gestartet von C:\Users\Conny\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2011-01-10 21:04:06)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-185569535-4180466776-3876511590-500 - Administrator - Disabled)
Conny (S-1-5-21-185569535-4180466776-3876511590-1000 - Administrator - Enabled) => C:\Users\Conny
Gast (S-1-5-21-185569535-4180466776-3876511590-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-185569535-4180466776-3876511590-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 19.0.0.190 - Adobe Systems Incorporated)
Adobe Digital Editions 2.0 (HKLM\...\Adobe Digital Editions 2.0) (Version: 2.0.1 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.0.162 - Adobe Systems, Inc.)
ALDI SÜD Mah Jong (HKLM\...\ALDI SÜD Mah Jong) (Version: - )
Amazon Kindle (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Amazon Kindle) (Version: - Amazon)
AMD Catalyst Install Manager (HKLM\...\{DC7723BE-A2BB-58A0-4820-5630F9B82198}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{235EBB33-3DA1-46DF-AADE-9955123409CB}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.83 (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.3 - Ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.3.2223 - AVAST Software)
BERNINA ARTlink 7 (HKLM\...\{CA812D88-2139-4107-97B5-1B2D2A1DD04D}) (Version: 18.0.94.7011 - BERNINA)
BERNINA ARTlink 7 (Version: 18.0.94.7011 - Wilcom) Hidden
BERNINA Universal Communication Server (HKLM\...\{CF27C964-3902-4CA3-9C71-B0EAEB302AB5}) (Version: 1.27.70 - BERNINA)
Blackboard Collaborate Launcher (HKLM\...\{7D82D616-8BD8-4BE3-B19C-C4BC772E8426}) (Version: 1.2.0.0 - Blackboard)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
CANON iMAGE GATEWAY MyCamera Download Plugin (HKLM\...\MyCamera Download Plugin) (Version: 3.1.1.2 - Canon Inc.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM\...\CANON iMAGE GATEWAY Task) (Version: 1.9.0.9 - Canon Inc.)
Canon iP3600 series Benutzerregistrierung (HKLM\...\Canon iP3600 series Benutzerregistrierung) (Version: - )
Canon iP3600 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3600_series) (Version: - )
Canon MOV Decoder (HKLM\...\Canon MOV Decoder) (Version: 1.8.0.7 - Canon Inc.)
Canon MOV Encoder (HKLM\...\Canon MOV Encoder) (Version: 1.7.0.3 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.8.0.5 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC8) (Version: 8.5.0.7 - Canon Inc.)
Canon Utilities CameraWindow Launcher (HKLM\...\CameraWindowLauncher) (Version: 7.5.0.2 - Canon Inc.)
Canon Utilities Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities Movie Uploader for YouTube (HKLM\...\MovieUploaderForYouTube) (Version: 1.2.0.7 - Canon Inc.)
Canon Utilities My Printer (HKLM\...\CanonMyPrinter) (Version: - )
Canon Utilities MyCamera (HKLM\...\MyCamera) (Version: 7.4.0.2 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Solution Menu (HKLM\...\CanonSolutionMenu) (Version: - )
Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.7.2.33 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM\...\ZoomBrowser EX Memory Card Utility) (Version: 1.5.1.10 - Canon Inc.)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5000 - CDBurnerXP)
Conexant Polaris Unused CIR Function (HKLM\...\Uninstaller51278dcd0) (Version: 1.0.0.0 - Conexant Systems)
Conexant Polaris Unused CIR Function (HKLM\...\Uninstaller52b3284a0) (Version: 1.0.0.0 - Conexant Systems)
Conexant Polaris Unused CIR Function (HKLM\...\Uninstaller52d266760) (Version: 1.0.0.0 - Conexant Systems)
CorelDRAW Essentials 4 - Content (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Draw (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Filters (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - ICA (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - IPM - No VBA (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang BR (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang DE (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang EN (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang ES (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang FR (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang IT (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang NL (Version: 4.0 - Uw bedrijfsnaam) Hidden
CorelDRAW Essentials 4 - PHOTO-PAINT (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Windows Shell Extension (HKLM\...\_{CF0ADC18-6D8F-4353-8EAA-DF45456B7853}) (Version: - Corel Corporation)
CorelDRAW Essentials 4 - Windows Shell Extension (Version: 1.1 - Corel Corporation) Hidden
CorelDRAW Essentials 4 (HKLM\...\_{C0237AA4-1BFB-46EA-860D-7B0EB365CA13}) (Version: - Corel Corporation)
CorelDRAW Essentials 4 (Version: 4.0 - Corel Corporation) Hidden
CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.)
CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 9.0.0.3815a - CyberLink Corp.)
CyberLink PowerDVD Copy (HKLM\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)
DivX-Setup (HKLM\...\DivX Setup) (Version: 2.7.0.31 - DivX, LLC)
Dropbox (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Dropbox) (Version: 3.10.8 - Dropbox, Inc.)
easyFly 3 Starter Edition (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\{7CBD5083-2ADF-4DF1-8DC1-D7AB2F7040E0}) (Version: 3.0.1.11 - IPACS)
e-Sword (HKLM\...\{8E436940-A944-4D67-A45B-1876E23BB9C0}) (Version: 9.08.0003 - Rick Meyers)
FRITZ!Box starter (HKLM\...\{4E9F7AD8-E3EC-4636-BD25-A5AD97E73C64}) (Version: 2.04.02 - AVM Berlin)
GIMP 2.8.0 (HKLM\...\GIMP-2_is1) (Version: 2.8.0 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
HijackThis 2.0.2 (HKLM\...\HijackThis) (Version: 2.0.2 - TrendMicro)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Java 7 Update 80 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217080FF}) (Version: 7.0.800 - Oracle)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Lernout & Hauspie TruVoice American English TTS Engine (HKLM\...\tv_enua) (Version: - )
Lexware Info Service (HKLM\...\{8AE7E507-BC49-4DF0-A236-26878691AB53}) (Version: 2.90.00.0009 - Haufe-Lexware GmbH & Co.KG)
Lexware online banking (HKLM\...\{A64DF516-9CDC-4299-BD34-2B2C80CD453B}) (Version: 19.00.00.0059 - Haufe-Lexware GmbH & Co.KG)
MAGIX Audio Cleaning Lab 16 deluxe (HKLM\...\mclab_16dlx) (Version: 16.0.0.0 - MAGIX AG)
MAGIX Audio Cleaning Lab 16 deluxe (Version: 16.0.0.0 - MAGIX AG) Hidden
MAGIX PC Check & Tuning 2010 5.0.22.687 (D) (HKLM\...\MAGIX PC Check & Tuning 2010 D) (Version: 5.0.22.687 - MAGIX AG)
MAGIX Screenshare (HKLM\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (HKLM\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
MEDION GoPal Assistant (HKLM\...\{A6C8CD51-1AE4-474D-BA2D-125CDBEADD03}) (Version: 6.2.0.12196 - MEDION)
Medion Home Cinema (HKLM\...\InstallShield_{AB770FDE-8087-4C98-9A85-BD64262C104C}) (Version: 6.0.0000 - CyberLink Corp.)
Medion Home Cinema (Version: 6.0.0000 - CyberLink Corp.) Hidden
Mein CEWE FOTOBUCH (HKLM\...\Mein CEWE FOTOBUCH) (Version: - )
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4763.1003 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [DEU] (HKLM\...\{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 de) (HKLM\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 de) (HKLM\...\Mozilla Thunderbird 38.2.0 (x86 de)) (Version: 38.2.0 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 de) (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Mozilla Thunderbird 38.3.0 (x86 de)) (Version: 38.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
my editor v5.00 (HKLM\...\{6B435248-5F4F-4CE9-A533-CB3D8D97A210}) (Version: 5.00.8505.2014 - Wings Systems Ltd.)
Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.0.1 - Nikon)
Nikon Movie Editor (HKLM\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.2.1 - Nikon)
Notepad++ (HKLM\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
OpenOffice.org 3.2 (HKLM\...\{DFFC0648-BC4B-47D1-93D2-6CA6B9457641}) (Version: 3.2.9502 - OpenOffice.org)
Picture Control Utility (HKLM\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.3.0 - Nikon)
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Profili 2 (HKLM\...\Profili 2) (Version: - )
Quicken DELUXE 2014 (HKLM\...\{E60036CF-1E46-4DFE-832F-5476574B30FF}) (Version: 21.32.00.0004 - Haufe-Lexware GmbH & Co.KG)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6136 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Samsung New PC Studio (HKLM\...\InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
Samsung New PC Studio (Version: 1.00.0000 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.650.0 - SAMSUNG Electronics Co., Ltd.)
Schrankplaner (HKLM\...\{C92CE7AF-B104-4710-8F5C-9F833976D308}) (Version: 3.01.00 - schrankplaner.de)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.12 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Sweet Home 3D version 3.1 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Uniblue RegistryBooster (HKLM\...\{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1) (Version: - Uniblue Systems Ltd)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Video Grabber (HKLM\...\Uninstaller51278dcb0) (Version: 1.0.0.0 - Conexant Systems)
Video Grabber (HKLM\...\Uninstaller52b328480) (Version: 1.0.0.0 - Conexant Systems)
Video Grabber (HKLM\...\Uninstaller52d266740) (Version: 1.0.0.0 - Conexant Systems)
ViewNX 2 (HKLM\...\{E64C137C-D0B7-467A-B47F-460AAB30F0A3}) (Version: 2.2.1 - Nikon)
VoipStunt (HKLM\...\VoipStunt_is1) (Version: 4.09 build 661 - Finarea S.A. Switzerland)
Watchtower Library 2011 - Deutsch (HKLM\...\{8BE514E8-4486-4730-8B68-FA15EEDC942E}) (Version: 13.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Watchtower Library 2012 - Deutsch (HKLM\...\{CFDF0961-77C7-4392-96EE-624DFE81C3C2}) (Version: 14.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Watchtower Library 2012 - hrvatsko izdanje (HKLM\...\{56067BE8-31E8-4796-9EA2-164CDB5ACCF7}) (Version: 14.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Watchtower Library 2013 - Deutsch (HKLM\...\{61118DEB-78F1-4158-97ED-78A457550FE7}) (Version: 15.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Wilcom TrueSizer e3.0 (HKLM\...\{E801DDB4-3CFC-496E-9E04-781EC2445D82}) (Version: 17.0.185.7427 - Wilcom)
Wilcom TrueSizer e3.0 (Version: 17.0.185.7427 - Wilcom) Hidden
Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Mobile-Gerätecenter (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows Mobile-Gerätecenter: Treiberupdate (HKLM\...\{E7044E25-3038-4A76-9064-344AC038043E}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinZip 19.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EC}) (Version: 19.5.11532 - WinZip Computing, S.L. )
WISO Steuer-Sparbuch 2012 (HKLM\...\{0CC1DAFB-40C8-4903-953D-471E541477C7}) (Version: 19.00.7303 - Buhl Data Service GmbH)
WISO Steuer-Sparbuch 2013 (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\{D6CC2FAF-F827-4091-96A1-D32CC9B69C79}) (Version: 20.00.8137 - Buhl Data Service GmbH)
WISO Steuer-Sparbuch 2014 (HKLM\...\{F59E5CEE-7FFB-47FA-B30C-17A0A5C75FD3}) (Version: 21.00.8480 - Buhl Data Service GmbH)
WISO Steuer-Sparbuch 2015 (HKLM\...\{F8738EA4-CE8F-4D4B-8478-6ADB18B165F4}) (Version: 22.00.8811 - Buhl Data Service GmbH)
Wuala (HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Wuala) (Version: 1.0.444.0 - LaCie)
Wuala CBFS (HKLM\...\Wuala CBFS) (Version: 3.2.107.0 - LaCie)
Wuala OverlayIcons (HKLM\...\Wuala OverlayIcons) (Version: 1.0.0.2 - LaCie)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Conny\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{80A95F12-94C2-4B1D-8AE3-F0CBE5E96E85}\InprocServer32 -> C:\Users\Conny\AppData\Local\ASKTOO~1\DOWNLO~1\AVIRAW~1.DLL => Keine Datei
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.dll ()
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-185569535-4180466776-3876511590-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll => Keine Datei
==================== Wiederherstellungspunkte =========================
21-09-2015 10:05:36 Windows Update
24-09-2015 10:11:53 Windows Update
27-09-2015 10:30:17 Windows Update
27-09-2015 17:52:40 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
27-09-2015 17:54:41 Installiert WISO Steuer-Sparbuch 2015
01-10-2015 11:47:41 Windows Update
04-10-2015 15:27:49 Windows Update
08-10-2015 12:30:17 Windows Update
08-10-2015 23:17:28 Windows Update
12-10-2015 14:34:31 Windows Update
14-10-2015 22:24:22 Windows Update
15-10-2015 22:13:53 Windows Update
20-10-2015 12:48:50 Windows Update
24-10-2015 11:46:29 Windows Update
28-10-2015 13:55:44 Windows Update
29-10-2015 09:09:26 Windows-Sicherung
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:04 - 2014-03-07 16:01 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0694FA8A-71C8-4F5D-AACA-0D7E0EC23467} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {1146A79F-834C-4E3E-AE60-25376A2F0C32} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-185569535-4180466776-3876511590-1000UA => C:\Users\Conny\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-12] (Dropbox, Inc.)
Task: {3A8999C1-503A-488B-8E56-B275069BBB90} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {508DFAA9-A4C7-43C0-B9EB-1CF6D6BF0159} - System32\Tasks\{AB34AA99-BADE-4F56-8BE7-B62F817BA872} => pcalua.exe -a "C:\Program Files\Avira\AntiVir Desktop\setup.exe" -c /REMOVE
Task: {5962BB5D-E22C-48DF-8BFF-A58FEDFD8EDB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)
Task: {72660B4F-A773-4C60-8F36-EA5EBFD568E1} - System32\Tasks\Start Registry Reviver => C:\Program Files\Reviversoft\Registry Reviver\RegistryReviver.exe
Task: {8CAD2820-C022-46E1-830B-D9AF430A0078} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {A56D78C3-8218-48CE-BCC6-F9BCD07BFEA9} - System32\Tasks\{D6C07A53-11F0-44F1-8FB2-A2B09B196048} => pcalua.exe -a C:\Users\Conny\Downloads\ADE_2.0_Installer.exe -d C:\Users\Conny\Downloads
Task: {BB1571C3-45D2-4BD6-AF06-4628247E13B5} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-185569535-4180466776-3876511590-1000Core => C:\Users\Conny\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-12] (Dropbox, Inc.)
Task: {BCB02A2D-B5D2-4EE5-A114-BE16B94B4678} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {E5EE64D2-F42F-4C48-8D87-4AF66A1D44AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E9E1F514-54AB-4250-B4B6-4B5C81A5488B} - System32\Tasks\{1D3FF1F2-CC6B-4C77-A161-109C6F1A455A} => pcalua.exe -a C:\Users\Conny\AppData\Local\Temp\Temp1_profile_version_3206.zip\setup.exe
Task: {F92D8508-9933-4CF7-BB8F-6BECA4BE71AD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-20] (AVAST Software)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-185569535-4180466776-3876511590-1000Core.job => C:\Users\Conny\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-185569535-4180466776-3876511590-1000UA.job => C:\Users\Conny\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-07-20 20:00 - 2015-07-20 20:00 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-20 20:00 - 2015-07-20 20:00 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-10-29 23:14 - 2015-10-29 23:14 - 03014096 _____ () C:\Program Files\AVAST Software\Avast\defs\15102902\algo.dll
2015-10-30 22:53 - 2015-10-30 22:53 - 03014096 _____ () C:\Program Files\AVAST Software\Avast\defs\15103001\algo.dll
2014-10-11 13:06 - 2014-10-11 13:06 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-19 10:54 - 2015-10-07 18:01 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2014-01-12 11:01 - 2012-06-22 09:29 - 00247152 ____N () C:\Program Files\CyberLink\Shared files\RichVideo.exe
2015-07-20 20:00 - 2015-07-20 20:01 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-10 06:26 - 2014-01-10 06:26 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe
2014-01-10 06:28 - 2014-01-10 06:28 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2014-10-23 14:03 - 2014-09-18 12:50 - 01428760 _____ () C:\Program Files\WISO\Steuersoftware 2014\mshaktuell.exe
2014-10-23 14:00 - 2014-09-18 12:50 - 09726232 _____ () C:\Program Files\WISO\Steuersoftware 2014\wgui14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 00035608 _____ () C:\Program Files\WISO\Steuersoftware 2014\rsdcom48.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 00309016 _____ () C:\Program Files\WISO\Steuersoftware 2014\rscorewinapi48.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 00322840 _____ () C:\Program Files\WISO\Steuersoftware 2014\rsguiwinapi48.dll
2014-10-23 14:00 - 2014-09-18 12:51 - 03902232 _____ () C:\Program Files\WISO\Steuersoftware 2014\wcore14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 00136472 _____ () C:\Program Files\WISO\Steuersoftware 2014\rsodbc48.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 02752280 _____ () C:\Program Files\WISO\Steuersoftware 2014\wfvie14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 02125592 _____ () C:\Program Files\WISO\Steuersoftware 2014\wsteu14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01933080 _____ () C:\Program Files\WISO\Steuersoftware 2014\wreli14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 04325656 _____ () C:\Program Files\WISO\Steuersoftware 2014\wauff14.dll
2014-10-23 14:00 - 2014-02-11 10:53 - 01043456 _____ () C:\Program Files\WISO\Steuersoftware 2014\clucene-core.dll
2014-10-23 14:00 - 2014-02-11 10:53 - 00094720 _____ () C:\Program Files\WISO\Steuersoftware 2014\clucene-shared.dll
2014-10-23 14:00 - 2014-02-11 10:53 - 00250368 _____ () C:\Program Files\WISO\Steuersoftware 2014\clucene-contribs-lib.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01572632 _____ () C:\Program Files\WISO\Steuersoftware 2014\wmain14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 05302040 _____ () C:\Program Files\WISO\Steuersoftware 2014\wbae114.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01740568 _____ () C:\Program Files\WISO\Steuersoftware 2014\wbae214.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01812248 _____ () C:\Program Files\WISO\Steuersoftware 2014\wbae314.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01633560 _____ () C:\Program Files\WISO\Steuersoftware 2014\wbae414.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01117976 _____ () C:\Program Files\WISO\Steuersoftware 2014\whau114.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01340696 _____ () C:\Program Files\WISO\Steuersoftware 2014\whau214.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01312536 _____ () C:\Program Files\WISO\Steuersoftware 2014\wwerb14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 07357208 _____ () C:\Program Files\WISO\Steuersoftware 2014\wkont14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01287448 _____ () C:\Program Files\WISO\Steuersoftware 2014\wimp14.dll
2014-10-23 14:00 - 2014-09-18 12:50 - 01331480 _____ () C:\Program Files\WISO\Steuersoftware 2014\wfabu14.dll
2015-10-30 10:53 - 2015-10-30 10:53 - 00071168 _____ () c:\users\conny\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbjzpke.dll
2015-07-29 17:57 - 2015-09-24 00:07 - 00012800 _____ () C:\Users\Conny\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 22:45 - 2015-09-24 00:07 - 00779776 _____ () C:\Users\Conny\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-29 17:57 - 2015-09-24 00:07 - 00056320 _____ () C:\Users\Conny\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-07-29 17:57 - 2015-09-24 00:07 - 00012288 _____ () C:\Users\Conny\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2014-10-18 16:55 - 2014-10-18 16:55 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3d576cbc4ffc5ad06fd61510c5d8f326\IsdiInterop.ni.dll
2010-08-30 19:04 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-10-02 22:44 - 2015-10-02 22:44 - 00153768 _____ () C:\Program Files\Mozilla Thunderbird\NSLDAP32V60.dll
2015-10-02 22:44 - 2015-10-02 22:44 - 00023208 _____ () C:\Program Files\Mozilla Thunderbird\NSLDAPPR32V60.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Conny\Desktop\FRST.exe:com.dropbox.attributes
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Conny\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: FsUsbExService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: idsvc => 3
MSCONFIG\Services: IGDCTRL => 2
MSCONFIG\Services: PSI_SVC_2 => 2
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B5BB3F09-3F28-4037-ADDF-ED0D9521AD3F}] => (Allow) C:\Program Files\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{7E1E0E25-5811-48BA-8112-A999DE7DA7F1}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{5D17EE8E-2B60-4228-90AE-0DF6430EF885}] => (Allow) svchost.exe
FirewallRules: [{811CA0F5-D2BB-4A4D-BE17-4014C5E8BC67}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{1D853E59-2575-4067-9F21-DE76C38A37B7}] => (Allow) C:\Program Files\1&1\IGDCTRL.EXE
FirewallRules: [{30E69FC8-3BEF-4B3C-B402-933778084EAA}] => (Allow) C:\Program Files\1&1\IGDCTRL.EXE
FirewallRules: [{9E4248B8-B08B-4A20-9DBE-8BBD3F09CECC}] => (Allow) C:\Program Files\1&1\FBoxUpd.exe
FirewallRules: [{4687042B-D555-4A1A-8039-1AD75E458545}] => (Allow) C:\Program Files\1&1\FBoxUpd.exe
FirewallRules: [{961DDA7A-4319-4911-9776-A89874CE5335}] => (Allow) C:\Program Files\1&1\WebwaIgd.exe
FirewallRules: [{34DA1426-B63B-474F-8DEF-EB5235221BDD}] => (Allow) C:\Program Files\1&1\WebwaIgd.exe
FirewallRules: [TCP Query User{6B778748-C7B6-4A46-81D2-56ADEA63F1A7}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{FED1122E-4925-4558-BB06-142DCA1E502E}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [TCP Query User{2605EEA3-C05C-459A-87D1-842F42681013}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [UDP Query User{38E3F568-5839-4423-B7F7-825F441E9A3F}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [{C1A531C8-1DCD-4DFA-82BE-CE5888CD32FD}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe
FirewallRules: [{7172C1E6-B85E-41BD-96A0-91C9CFA8119A}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe
FirewallRules: [{CE46AC23-B67F-4108-B551-AFF5D9782AD8}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe
FirewallRules: [{F877EC4A-9159-4A64-ABC7-2C95CD583B21}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe
FirewallRules: [TCP Query User{E73F7B8C-8D61-423F-92F6-41B4EE6DEAD8}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [UDP Query User{3C609447-8057-4BCF-B11B-5FCA7ECC5A3C}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [TCP Query User{39DCAE11-5CF4-4AC2-94EA-3595A667BBF9}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [UDP Query User{B5B309C3-7463-4C30-AD15-7700AD51E9E5}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [{796C015A-E095-4D97-8615-A51836C2BB2E}] => (Allow) C:\Windows\explorer.exe
FirewallRules: [{E533F68C-9F2E-4D27-B503-8603931A946A}] => (Allow) C:\Windows\explorer.exe
FirewallRules: [TCP Query User{69A98C7C-2D08-429A-BDD8-F97B185625D2}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [UDP Query User{FD8D8E36-1BB4-4BBB-AFB4-89635DFB6CE7}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [TCP Query User{130F31E3-FF6C-4582-9B49-4194BAEB4B39}C:\program files\voipstunt.com\voipstunt\voipstunt.exe] => (Allow) C:\program files\voipstunt.com\voipstunt\voipstunt.exe
FirewallRules: [UDP Query User{635854E1-9AB3-49FD-AD53-26ABE6288B52}C:\program files\voipstunt.com\voipstunt\voipstunt.exe] => (Allow) C:\program files\voipstunt.com\voipstunt\voipstunt.exe
FirewallRules: [TCP Query User{4957885E-9DC6-48AF-A709-0FD7610930C7}C:\program files\voipstunt.com\voipstunt\voipstunt.exe] => (Block) C:\program files\voipstunt.com\voipstunt\voipstunt.exe
FirewallRules: [UDP Query User{0CBAC78E-6FDF-485D-99DA-654A55EF276E}C:\program files\voipstunt.com\voipstunt\voipstunt.exe] => (Block) C:\program files\voipstunt.com\voipstunt\voipstunt.exe
FirewallRules: [{692BDFF9-D89E-4F8D-95AE-221810CAE02F}] => (Allow) C:\Windows\System32\msiexec.exe
FirewallRules: [{2C43FFDD-B6BD-41A4-8BD6-AA2AB5E8ACAD}] => (Allow) C:\Windows\System32\msiexec.exe
FirewallRules: [{1C9A6C83-81BF-4563-BDCD-CC9BB4160B55}] => (Allow) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
FirewallRules: [{350386DF-4A82-427C-9962-B7EB9BD6D34E}] => (Allow) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
FirewallRules: [{91395ADC-2BDE-4B46-8494-9EB27A9F6BD5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{C6E35A0B-6B7A-4247-B0D4-51F114611254}] => (Allow) C:\Users\Conny\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D91B19E8-D1DB-4CCC-9FD6-8BDAFD9CF437}] => (Allow) C:\Users\Conny\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D8CD9CAA-3253-4250-AE28-A3473F8B19B6}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{01DFA9BD-033B-45E3-8995-A7F5E4645E4A}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F3306F5C-2F22-4574-B627-437CC875CB06}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{9ED28E55-2CA2-4F42-8E9D-B7F789F2B6CD}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{1CEE4FDC-A750-422E-BF02-54313427F605}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{071C0213-F2D1-4E87-8E3A-164870268B8D}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{5BFFFE32-342A-4DBF-A20D-25DFB5BF308B}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{243400B4-CA6D-4A25-8CAA-42EDCB018C28}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{18E738B9-3F17-4BBA-9045-1E4375E39A6E}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR9.EXE
FirewallRules: [{627658B7-DB21-4DE6-8548-530E847DBE8B}] => (Allow) C:\Users\Conny\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{FA30B07B-7F14-4D50-92AF-EEFCA9D3D396}] => (Allow) C:\Program Files\PhoenixRC\OnlineInstaller.exe
FirewallRules: [{FE75D3F4-E8D1-4CFB-933D-6209B76DFF6C}] => (Allow) C:\Program Files\PhoenixRC\OnlineInstaller.exe
FirewallRules: [{0A4EC1A1-3B46-45A0-9BF7-910C850A4A46}] => (Allow) C:\Program Files\PhoenixRC\phoenixRC.exe
FirewallRules: [{A5BDF030-2E00-440F-8298-3EE9A52D72B3}] => (Allow) C:\Program Files\PhoenixRC\phoenixRC.exe
FirewallRules: [TCP Query User{0EA845AE-B769-468C-BC49-64CA7AF58BE5}C:\program files\phoenixrc\simulator.exe] => (Allow) C:\program files\phoenixrc\simulator.exe
FirewallRules: [UDP Query User{C5E5ECF1-9DF5-4D24-8CD9-FB695F96D803}C:\program files\phoenixrc\simulator.exe] => (Allow) C:\program files\phoenixrc\simulator.exe
FirewallRules: [TCP Query User{7134D83D-E8E8-4235-A798-2FE8D9DA33F4}C:\program files\phoenixrc\phoenixrc.exe] => (Block) C:\program files\phoenixrc\phoenixrc.exe
FirewallRules: [UDP Query User{7CB4C706-0C27-4B19-865D-815C72462270}C:\program files\phoenixrc\phoenixrc.exe] => (Block) C:\program files\phoenixrc\phoenixrc.exe
FirewallRules: [TCP Query User{E3B3F49D-318B-458B-9996-94602E7A3B4C}C:\program files\phoenixrc\simulator.exe] => (Allow) C:\program files\phoenixrc\simulator.exe
FirewallRules: [UDP Query User{2CBE49FE-1280-4E63-84CD-6A6B240E6A94}C:\program files\phoenixrc\simulator.exe] => (Allow) C:\program files\phoenixrc\simulator.exe
FirewallRules: [TCP Query User{8C617366-DC95-4B51-AC60-3619F4EE1DE5}C:\program files\java\jre7\bin\jp2launcher.exe] => (Allow) C:\program files\java\jre7\bin\jp2launcher.exe
FirewallRules: [UDP Query User{8049D308-47AD-4656-B8E4-FF0389C5D98C}C:\program files\java\jre7\bin\jp2launcher.exe] => (Allow) C:\program files\java\jre7\bin\jp2launcher.exe
FirewallRules: [TCP Query User{944C753C-8B4D-4193-8F20-0269D1175512}C:\users\conny\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe] => (Allow) C:\users\conny\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{0E0A14D1-5FE6-4430-BCD0-DC3481E510DA}C:\users\conny\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe] => (Allow) C:\users\conny\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe
FirewallRules: [{73FE0611-6B7C-44E0-A9F2-F78142FB7FC6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AE19B7A7-4403-4BC4-8281-661A9265FB98}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AA0C48A7-A4EA-4EE4-9C93-1A05765AF979}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A8274CD7-8D0E-4CEB-A85D-7D2D260C6077}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{05DB99BC-CB68-457B-859C-9EC460476FA8}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{5E9E69BC-6EC8-4A84-BC79-6C6F7872BF2C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{EB4831F9-9BE1-44B9-AAEC-71C5B4077093}C:\users\conny\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\conny\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{B17B8E5F-4C83-4DD8-9665-A2B50F2029F2}C:\users\conny\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\conny\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{200C6D82-A0ED-4E15-917B-F41277C0081E}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8F33AE0D-E430-42CB-8C6B-71E0C3E0349F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{DBDD8041-CAD2-4CBF-83FC-0D30AD8185AA}C:\program files\divx\divx media server\divxmediaserver.exe] => (Block) C:\program files\divx\divx media server\divxmediaserver.exe
FirewallRules: [UDP Query User{A32D8C8E-4BF5-4C68-8B07-959AE85FF082}C:\program files\divx\divx media server\divxmediaserver.exe] => (Block) C:\program files\divx\divx media server\divxmediaserver.exe
FirewallRules: [{E4355044-8680-4492-A43A-904A15EEC2F5}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{78AF9F1A-8246-4DC5-82AE-C4FC7F0EA340}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{A6B220F1-D801-47D9-A621-2277B6B58787}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{2E4C625E-CF03-4FBA-A9EB-E85B654360D3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/29/2015 11:00:18 AM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Die Sicherung war nicht erfolgreich. Fehler: "Auf diesem Laufwerk ist nicht genügend Speicherplatz zum Speichern der Sicherung verfügbar. Löschen Sie ältere Sicherungen und nicht benötigte Daten, um Speicherplatz freizugeben, oder ändern Sie die Sicherungseinstellungen. (0x81000005)"
Error: (10/28/2015 11:06:17 PM) (Source: UniversalCommunicationServer) (EventID: 0) (User: )
Description: Universal Communication Server Terminating: True
reason: System.UnhandledExceptionEventArgs
Stack: TraceEnvironment.XTrace+AssertionFailedException: unexpected message length 4
at TraceEnvironment.XTrace.Assert(Boolean aCondition, String aFormat, Object[] aObjects)
at UniversalCommunicationServer.ServerConnection.stateConnectedOnServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.stateConnected.onServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.Consume(Object aEvent)
at MultiThreading.Reactive.MainLoop()
at System.Threading.ThreadHelper.ThreadStart_Context(Object state)
at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
at System.Threading.ThreadHelper.ThreadStart()
Error: (10/25/2015 07:00:08 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "F:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"
Error: (10/23/2015 07:06:08 PM) (Source: UniversalCommunicationServer) (EventID: 0) (User: )
Description: Universal Communication Server Terminating: True
reason: System.UnhandledExceptionEventArgs
Stack: TraceEnvironment.XTrace+AssertionFailedException: unexpected message length 4
at TraceEnvironment.XTrace.Assert(Boolean aCondition, String aFormat, Object[] aObjects)
at UniversalCommunicationServer.ServerConnection.stateConnectedOnServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.stateConnected.onServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.Consume(Object aEvent)
at MultiThreading.Reactive.MainLoop()
at System.Threading.ThreadHelper.ThreadStart_Context(Object state)
at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
at System.Threading.ThreadHelper.ThreadStart()
Error: (10/22/2015 05:38:46 PM) (Source: UniversalCommunicationServer) (EventID: 0) (User: )
Description: Universal Communication Server Terminating: True
reason: System.UnhandledExceptionEventArgs
Stack: TraceEnvironment.XTrace+AssertionFailedException: unexpected message length 4
at TraceEnvironment.XTrace.Assert(Boolean aCondition, String aFormat, Object[] aObjects)
at UniversalCommunicationServer.ServerConnection.stateConnectedOnServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.stateConnected.onServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.Consume(Object aEvent)
at MultiThreading.Reactive.MainLoop()
at System.Threading.ThreadHelper.ThreadStart_Context(Object state)
at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
at System.Threading.ThreadHelper.ThreadStart()
Error: (10/20/2015 09:07:00 PM) (Source: UniversalCommunicationServer) (EventID: 0) (User: )
Description: Universal Communication Server Terminating: True
reason: System.UnhandledExceptionEventArgs
Stack: TraceEnvironment.XTrace+AssertionFailedException: unexpected message length 4
at TraceEnvironment.XTrace.Assert(Boolean aCondition, String aFormat, Object[] aObjects)
at UniversalCommunicationServer.ServerConnection.stateConnectedOnServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.stateConnected.onServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.Consume(Object aEvent)
at MultiThreading.Reactive.MainLoop()
at System.Threading.ThreadHelper.ThreadStart_Context(Object state)
at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
at System.Threading.ThreadHelper.ThreadStart()
Error: (10/20/2015 12:37:44 PM) (Source: SecurityCenter) (EventID: 3) (User: )
Description: Das Windows-Sicherheitscenter konnte keine Ereignisabfragen mit der WMI herstellen, um Antiviren, AntiSpyware- und Firewallprogramme von Drittanbietern zu überwachen.
Error: (10/20/2015 12:37:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_LanmanServer, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc100
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x4fc
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_LanmanServer0
Pfad der fehlerhaften Anwendung: svchost.exe_LanmanServer1
Pfad des fehlerhaften Moduls: svchost.exe_LanmanServer2
Berichtskennung: svchost.exe_LanmanServer3
Error: (10/18/2015 08:18:51 PM) (Source: UniversalCommunicationServer) (EventID: 0) (User: )
Description: Universal Communication Server Terminating: True
reason: System.UnhandledExceptionEventArgs
Stack: TraceEnvironment.XTrace+AssertionFailedException: unexpected message length 4
at TraceEnvironment.XTrace.Assert(Boolean aCondition, String aFormat, Object[] aObjects)
at UniversalCommunicationServer.ServerConnection.stateConnectedOnServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.stateConnected.onServerDataReceived(evServerDataReceived aEvent)
at UniversalCommunicationServer.ServerConnection.Consume(Object aEvent)
at MultiThreading.Reactive.MainLoop()
at System.Threading.ThreadHelper.ThreadStart_Context(Object state)
at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
at System.Threading.ThreadHelper.ThreadStart()
Error: (10/18/2015 06:00:09 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "F:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"
Systemfehler:
=============
Error: (10/30/2015 08:46:43 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "TS",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{9A295CD5-A244-421C-A8EF-9E3A343737CB}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (10/30/2015 08:18:41 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "TS",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{9A295CD5-A244-421C-A8EF-9E3A343737CB}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (10/30/2015 10:51:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tmcomm" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/30/2015 10:51:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "wntpport" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/29/2015 07:10:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tmcomm" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/29/2015 07:10:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "wntpport" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/29/2015 09:01:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tmcomm" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/29/2015 09:01:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "wntpport" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/28/2015 11:06:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Universal Communication Server" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/28/2015 01:59:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definitionsupdate für Microsoft Security Essentials – KB2310138 (Definition 1.209.754.0)
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz
Prozentuale Nutzung des RAM: 67%
Installierter physikalischer RAM: 2039.11 MB
Verfügbarer physikalischer RAM: 662.18 MB
Summe virtueller Speicher: 4078.23 MB
Verfügbarer virtueller Speicher: 1803.66 MB
==================== Laufwerke ================================
Drive c: (Boot) (Fixed) (Total:1356.17 GB) (Free:1086.47 GB) NTFS
Drive d: (Recover) (Fixed) (Total:40 GB) (Free:0 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 1397.3 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1356.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)
==================== Ende vom Addition.txt ============================
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:29-10-2015
durchgeführt von Conny (Administrator) auf CONNY-PC (30-10-2015 23:28:38)
Gestartet von C:\Users\Conny\Desktop
Geladene Profile: Conny (Verfügbare Profile: Conny)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(BERNINA International AG) C:\Program Files\BERNINA\UCS\UniversalCommunicationServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Nico Mak Computing) C:\Program Files\WinZip\FAH\FAHWindow32.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe
() C:\Program Files\WISO\Steuersoftware 2014\mshaktuell.exe
(Dropbox, Inc.) C:\Users\Conny\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [LexwareInfoService] => C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-07-20] (AVAST Software)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-11-17] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748256 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2015-04-10] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-01-10] (Google Inc.)
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Run: [Dropbox Update] => C:\Users\Conny\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-12] (Dropbox, Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-07-20] (AVAST Software)
ShellIconOverlayIdentifiers: [0WualaOverlayIcon1] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Wuala OverlayIcons\OverlayIcon.dll [2012-05-02] (LaCie AG)
ShellIconOverlayIdentifiers: [0WualaOverlayIcon2] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Wuala OverlayIcons\OverlayIcon.dll [2012-05-02] (LaCie AG)
ShellIconOverlayIdentifiers: [0WualaOverlayIcon3] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Wuala OverlayIcons\OverlayIcon.dll [2012-05-02] (LaCie AG)
ShellIconOverlayIdentifiers: [0WualaOverlayIcon4] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Wuala OverlayIcons\OverlayIcon.dll [2012-05-02] (LaCie AG)
ShellIconOverlayIdentifiers: [1EldosIconOverlay] -> {3B713BCF-458F-4A2A-BAD2-9784208C169D} => C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09] (EldoS Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Conny\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll Keine Datei
ShellIconOverlayIdentifiers: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09] (EldoS Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2015-10-09]
ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAH\FAHConsole.exe (Nico Mak Computing)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-06-01]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Keine Datei)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2015-10-09]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WISO Mein Steuer-Sparbuch heute.lnk [2014-10-23]
ShortcutTarget: WISO Mein Steuer-Sparbuch heute.lnk -> C:\Program Files\WISO\Steuersoftware 2014\mshaktuell.exe ()
Startup: C:\Users\Conny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-10-16]
ShortcutTarget: Dropbox.lnk -> C:\Users\Conny\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{732048A9-7E8D-428F-9AF3-D5BE1F66BC7A}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{9A295CD5-A244-421C-A8EF-9E3A343737CB}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKU\S-1-5-21-185569535-4180466776-3876511590-1000\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=de-DE&Src=MSE&Tid=00033BB0&OHP=about%3Ablank&OSP=https%3A%2F%2Fde.search.yahoo.com%2Fyhs%2Fsearch%3Ftype%3Davastbcl%26hspart%3Davast%26hsimp%3Dyhs%2D001%26p%3D%7BsearchTerms%7D
SearchScopes: HKLM -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-185569535-4180466776-3876511590-1000 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-185569535-4180466776-3876511590-1000 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Kein Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Keine Datei
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO: Kein Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Keine Datei
BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-10-09] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-20] (AVAST Software)
BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-10-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-10-09] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-185569535-4180466776-3876511590-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_67-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0067-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_67-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_67-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default
FF DefaultSearchUrl:
FF SearchEngineOrder.1: Ask.com
FF Homepage: hxxp://www.jw.org/de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-02-05] (CANON INC.)
FF Plugin: @canon.com/MycameraPlugin -> C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin: @java.com/DTPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-10-09] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-10-09] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\searchplugins\ask-search.xml [2014-08-06]
FF SearchPlugin: C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\searchplugins\avira-safesearch.xml [2014-11-29]
FF SearchPlugin: C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\searchplugins\computer-bild-suche.xml [2015-09-28]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\Extensions\2020Player_IKEA@2020Technologies.com [2014-10-16] [ist nicht signiert]
FF Extension: Avira Browser Safety - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\Extensions\abs@avira.com [2015-01-15] [ist nicht signiert]
FF Extension: Hilfe Assistent - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\Extensions\{} [2014-11-03] [ist nicht signiert]
FF Extension: Ghostery - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\Extensions\firefox@ghostery.com.xpi [2015-09-18]
FF Extension: CookieCuller - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\7eu8aj4x.default\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2015-05-29]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-07-20] [ist nicht signiert]
FF HKU\S-1-5-21-185569535-4180466776-3876511590-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: Kein Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [ist nicht signiert]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-06-15] <==== ACHTUNG
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl", "hxxps://de.yahoo.com/?fr=hp-avast&type=avastbcl"
CHR DefaultSearchURL: Default -> hxxp://feed.snap.do/?publisher=QuickOB&dpid=QuickOB&co=DE&userid=f96bdea8-0d1c-43b5-bfc4-62d7f6d6a2b0&searchtype=ds&q={searchTerms}&installDate=01/01/1970
CHR DefaultSearchKeyword: Default -> search.snap.do
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\40.0.2214.111\gcswf32.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll => Keine Datei
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\40.0.2214.111\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\40.0.2214.111\pdf.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.210.6) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 6 U21) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Oracle)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (NPCIG.dll) - C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => Keine Datei
CHR Profile: C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-19]
CHR Extension: (YouTube) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-16]
CHR Extension: (McAfee Security Scan+) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-28]
CHR Extension: (Google-Suche) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-03]
CHR Extension: (Avira Browserschutz) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-02-16]
CHR Extension: (Skype Click to Call) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-19]
CHR Extension: (Google Wallet) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-28]
CHR Extension: (Google Mail) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-08]
CHR HKLM\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-20]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-20] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-07-20] (Avast Software)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1883320 2015-10-07] (Microsoft Corporation)
S4 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S4 IGDCTRL; C:\Program Files\1&1\IGDCTRL.EXE [87344 2007-10-25] (AVM Berlin)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2012-06-22] ()
R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
R2 UniversalCommunicationServer; C:\Program Files\BERNINA\UCS\UniversalCommunicationServer.exe [90496 2013-05-02] (BERNINA International AG)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [26112 2010-04-29] (Google Inc)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-07-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-07-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-07-20] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-07-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788784 2015-07-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433264 2015-07-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-07-20] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-07-20] (AVAST Software)
R1 cbfs3; C:\Windows\system32\drivers\cbfs3.sys [299024 2012-04-09] (EldoS Corporation)
R0 DiskSec; C:\Windows\system32\Drivers\DiskSec.sys [14208 2008-04-04] (MAGIX) [Datei ist nicht signiert]
S3 DxVGrb; C:\Windows\System32\drivers\DxVGrb.sys [179200 2012-06-22] (Dexetek )
S3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [Datei ist nicht signiert]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R0 ngvss; C:\Windows\system32\Drivers\ngvss.sys [95112 2015-07-20] (AVAST Software)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [64904 2010-04-27] (Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [146568 2010-04-27] (Renesas Electronics Corporation)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2010-04-27] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2010-04-27] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2010-04-27] (MCCI Corporation)
S3 SydexFDD; C:\Windows\system32\Drivers\sydexfdd.sys [13359 2012-10-16] (Windows (R) 2000 DDK provider) [Datei ist nicht signiert]
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-07-20] (Avast Software)
S3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [27416 2006-11-30] (X10 Wireless Technology, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Conny\AppData\Local\Temp\catchme.sys [X]
S3 cpuz132; \??\C:\Users\Conny\AppData\Local\Temp\cpuz132\cpuz132_x32.sys [X]
S2 tmcomm; system32\DRIVERS\tmcomm.sys [X]
S2 wntpport; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-30 23:28 - 2015-10-30 23:29 - 00029560 _____ C:\Users\Conny\Desktop\FRST.txt
2015-10-30 23:25 - 2015-10-30 23:25 - 01701888 _____ (Farbar) C:\Users\Conny\Desktop\FRST.exe
2015-10-30 18:12 - 2015-10-30 18:14 - 00000000 ____D C:\Users\Conny\Desktop\2015-10-30 Kaufvertrag BMW
2015-10-29 23:11 - 2015-10-29 23:20 - 00006173 _____ C:\Users\Conny\Documents\Garantie Thermomix.odt
2015-10-24 20:59 - 2015-10-24 20:59 - 00011341 _____ C:\Users\Conny\Documents\Pony von Perlenblume.odt
2015-10-24 13:01 - 2015-10-24 13:01 - 00441703 _____ C:\Users\Conny\Documents\Giraffe 2 grau nähen.odt
2015-10-24 12:58 - 2015-10-24 12:58 - 00248411 _____ C:\Users\Conny\Documents\Giraffe 2 nähen.odt
2015-10-22 15:57 - 2015-10-22 16:14 - 00018010 _____ C:\Users\Conny\Documents\Kalium.odt
2015-10-20 21:11 - 2015-10-20 21:30 - 00014696 _____ C:\Users\Conny\Documents\Kulturbeutel.odt
2015-10-20 18:27 - 2015-10-20 18:27 - 00007857 _____ C:\Users\Conny\Documents\Mini.odt
2015-10-19 14:20 - 2015-10-19 23:12 - 00169741 _____ C:\Users\Conny\Documents\Ihr bedürft des Ausharrens.odt
2015-10-17 21:21 - 2015-10-17 21:30 - 00008235 _____ C:\Users\Conny\Documents\Eule Kulla nähen.odt
2015-10-17 10:54 - 2015-10-17 10:54 - 01509431 _____ C:\Users\Conny\Documents\Freebooks Mama hoch zwei.odt
2015-10-16 10:27 - 2015-10-17 09:46 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-16 09:52 - 2015-10-16 09:52 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-16 08:49 - 2015-10-16 08:49 - 00000000 ____D C:\Users\Conny\AppData\Local\TempTaskUpdateDetection81C795B6-4B1C-46BD-95DC-BBD35080DC8A
2015-10-15 14:22 - 2015-09-18 18:47 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-15 14:22 - 2015-09-18 18:44 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 14:22 - 2015-09-18 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 14:22 - 2015-09-18 18:44 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 14:22 - 2015-09-18 18:44 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 14:22 - 2015-09-18 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 14:22 - 2015-09-18 18:35 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-14 22:29 - 2015-10-14 22:34 - 00000000 ____D C:\eb4e6b39f6f824416ec07f08
2015-10-14 22:06 - 2015-10-14 22:21 - 00005043 _____ C:\Users\Conny\Documents\Ciabatta.odt
2015-10-14 10:28 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 10:28 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 10:27 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-14 10:27 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 10:27 - 2015-09-29 04:02 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-14 10:27 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-14 10:27 - 2015-09-29 03:58 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-14 10:27 - 2015-09-29 03:58 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-14 10:27 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-14 10:27 - 2015-09-29 03:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-14 10:27 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-14 10:27 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-14 10:27 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-14 10:27 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-14 10:27 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-14 10:27 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-14 10:27 - 2015-09-29 02:43 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-14 10:27 - 2015-09-29 02:43 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-14 10:27 - 2015-09-29 02:43 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-14 10:27 - 2015-09-15 18:42 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-14 10:27 - 2015-09-15 18:42 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-14 10:27 - 2015-09-15 18:36 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-14 10:27 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-14 10:27 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-14 10:27 - 2015-09-15 18:36 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-14 10:27 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-14 10:27 - 2015-09-15 18:36 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-14 10:27 - 2015-09-15 18:35 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-14 10:26 - 2015-10-01 18:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 10:26 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 10:26 - 2015-10-01 18:50 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 10:26 - 2015-10-01 18:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 10:26 - 2015-10-01 18:50 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 10:26 - 2015-10-01 17:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 10:26 - 2015-09-25 18:59 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-14 10:26 - 2015-09-25 18:59 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-14 10:26 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-14 10:26 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-14 10:26 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-14 10:26 - 2015-09-25 18:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-14 10:26 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-14 10:26 - 2015-09-25 18:58 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-14 10:26 - 2015-09-25 18:58 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-14 10:26 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-14 10:26 - 2015-09-25 18:58 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 10:26 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 10:26 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-14 10:21 - 2015-09-18 19:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-10-14 10:21 - 2015-09-16 04:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 10:21 - 2015-09-16 04:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 10:21 - 2015-09-16 04:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 10:21 - 2015-09-16 04:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 10:21 - 2015-09-16 04:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-10-14 10:21 - 2015-09-16 04:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 10:21 - 2015-09-16 04:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-10-14 10:21 - 2015-09-16 04:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-10-14 10:21 - 2015-09-16 04:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 10:21 - 2015-09-16 04:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 10:21 - 2015-09-16 04:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-10-14 10:21 - 2015-09-16 04:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 10:21 - 2015-09-16 04:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 10:21 - 2015-09-16 04:23 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-10-14 10:21 - 2015-09-16 04:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 10:21 - 2015-09-16 04:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-10-14 10:21 - 2015-09-16 04:18 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 10:21 - 2015-09-16 04:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 10:21 - 2015-09-16 04:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 10:21 - 2015-09-16 04:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-10-14 10:21 - 2015-09-16 04:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 10:21 - 2015-09-16 04:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 10:21 - 2015-09-16 04:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 10:21 - 2015-09-16 04:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-10-14 10:21 - 2015-09-16 03:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 10:21 - 2015-09-16 03:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-10-14 10:21 - 2015-09-16 03:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 10:21 - 2015-09-16 03:56 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-10-14 10:21 - 2015-09-16 03:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 10:21 - 2015-09-16 03:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-10-14 10:21 - 2015-09-16 03:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 10:21 - 2015-09-16 03:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 10:21 - 2015-09-16 03:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-10-13 10:11 - 2015-10-13 10:11 - 00143536 _____ C:\Windows\Minidump\101315-37721-01.dmp
2015-10-09 22:33 - 2015-10-13 16:41 - 00000000 ____D C:\Users\Conny\Documents\Add-in Express
2015-10-09 22:33 - 2015-10-09 22:33 - 00002271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2015-10-09 22:33 - 2015-10-09 22:33 - 00002265 _____ C:\Users\Public\Desktop\WinZip.lnk
2015-10-09 22:33 - 2015-10-09 22:33 - 00000000 ____D C:\Users\Conny\AppData\Local\WinZip
2015-10-09 22:33 - 2015-10-09 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-10-09 22:32 - 2015-10-09 22:32 - 00000000 ____D C:\Program Files\WinZip
2015-10-09 22:27 - 2015-10-09 22:27 - 00000000 ____D C:\Program Files\Common Files\Java
2015-10-09 22:26 - 2015-10-09 22:26 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2015-10-09 22:26 - 2015-10-09 22:26 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2015-10-09 22:26 - 2015-10-09 22:26 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2015-10-09 22:26 - 2015-10-09 22:26 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-10-09 22:26 - 2015-10-09 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-09 22:22 - 2015-10-09 22:22 - 00002687 _____ C:\Users\Public\Desktop\Skype.lnk
2015-10-09 22:22 - 2015-10-09 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-09 22:22 - 2015-10-09 22:22 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-10-02 22:44 - 2015-10-03 17:53 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-30 23:28 - 2014-03-05 09:11 - 00000000 ____D C:\FRST
2015-10-30 23:18 - 2012-05-31 22:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-30 22:48 - 2015-06-12 19:37 - 00001224 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-185569535-4180466776-3876511590-1000UA.job
2015-10-30 22:30 - 2011-01-10 22:01 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-30 22:27 - 2009-07-14 05:34 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-30 22:27 - 2009-07-14 05:34 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-30 21:41 - 2011-01-10 20:53 - 01637223 _____ C:\Windows\WindowsUpdate.log
2015-10-30 15:30 - 2011-01-10 22:01 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-30 10:57 - 2010-08-28 01:49 - 01622236 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-30 10:53 - 2013-03-10 10:53 - 00000000 ___RD C:\Users\Conny\Dropbox
2015-10-30 10:53 - 2013-03-10 10:51 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Dropbox
2015-10-30 10:51 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-30 10:51 - 2009-07-14 05:39 - 00212989 _____ C:\Windows\setupact.log
2015-10-30 00:13 - 2011-01-10 22:36 - 00000000 ____D C:\Users\Conny\AppData\Roaming\SoftGrid Client
2015-10-29 23:48 - 2015-06-12 19:37 - 00001172 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-185569535-4180466776-3876511590-1000Core.job
2015-10-29 09:41 - 2011-03-27 12:26 - 00208896 ___SH C:\Users\Conny\Documents\Thumbs.db
2015-10-29 09:00 - 2010-08-30 10:48 - 00336450 _____ C:\Windows\PFRO.log
2015-10-28 14:18 - 2014-01-21 09:12 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-23 22:18 - 2013-12-16 15:35 - 00259072 ___SH C:\Users\Conny\Thumbs.db
2015-10-23 09:38 - 2011-01-10 22:04 - 00095520 _____ C:\Users\Conny\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-20 12:37 - 2009-07-14 05:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-10-17 18:18 - 2012-05-31 22:23 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-17 18:18 - 2012-05-31 22:23 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-17 09:46 - 2012-10-17 16:12 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-16 14:53 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2015-10-15 22:15 - 2014-12-11 12:21 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-15 22:15 - 2014-05-06 22:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-15 22:13 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\tracing
2015-10-15 14:01 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2015-10-14 22:34 - 2013-08-15 09:15 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 22:29 - 2010-08-30 17:47 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-14 21:36 - 2013-01-09 16:05 - 00000000 ___RD C:\Program Files\Skype
2015-10-13 10:11 - 2014-01-25 18:16 - 00000000 ____D C:\Windows\Minidump
2015-10-13 10:10 - 2014-01-25 18:16 - 457432627 _____ C:\Windows\MEMORY.DMP
2015-10-10 19:06 - 2014-03-24 21:46 - 00001027 _____ C:\Users\Conny\Documents\PhoenixLauncher.log
2015-10-10 19:00 - 2014-03-24 21:45 - 00000000 ____D C:\Users\Conny\AppData\Roaming\PhoenixRC
2015-10-10 18:49 - 2014-11-23 00:02 - 00000000 __SHD C:\Users\Conny\AppData\Local\EmieBrowserModeList
2015-10-10 18:49 - 2014-05-01 22:17 - 00000000 __SHD C:\Users\Conny\AppData\Local\EmieUserList
2015-10-10 18:49 - 2014-05-01 22:17 - 00000000 __SHD C:\Users\Conny\AppData\Local\EmieSiteList
2015-10-10 18:48 - 2015-03-24 17:43 - 00000000 __SHD C:\Users\Conny\AppData\LocalLow\EmieBrowserModeList
2015-10-10 18:48 - 2014-05-02 23:26 - 00000000 __SHD C:\Users\Conny\AppData\LocalLow\EmieUserList
2015-10-10 18:48 - 2014-05-02 23:26 - 00000000 __SHD C:\Users\Conny\AppData\LocalLow\EmieSiteList
2015-10-09 22:36 - 2010-08-30 11:13 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2015-10-09 22:34 - 2010-08-30 11:12 - 00000000 ____D C:\Windows\system32\Adobe
2015-10-09 22:32 - 2014-11-29 12:52 - 00000000 ____D C:\ProgramData\WinZip
2015-10-09 22:22 - 2013-01-09 16:05 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Skype
2015-10-09 22:22 - 2013-01-09 16:05 - 00000000 ____D C:\ProgramData\Skype
2015-10-09 17:20 - 2015-04-04 23:49 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-06 16:11 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2015-10-01 15:47 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-09-30 17:42 - 2015-07-23 11:11 - 00000000 ____D C:\Users\Conny\Desktop\Thermomixrezepte
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2007-03-12 18:59 - 2007-03-12 18:59 - 0299008 _____ () C:\Program Files\navigram_register.exe
2013-03-16 09:27 - 2013-03-16 09:27 - 0000288 _____ () C:\Users\Conny\AppData\Roaming\.backup.dm
2011-10-11 10:00 - 2011-10-11 10:00 - 0000268 ___RH () C:\Users\Conny\AppData\Roaming\Bubble Noise
2011-10-11 10:00 - 2011-10-11 10:00 - 0000268 ___RH () C:\Users\Conny\AppData\Roaming\Bundle
2011-10-11 10:00 - 2011-10-11 10:00 - 0000268 ___RH () C:\Users\Conny\AppData\Roaming\CIOSupport
2014-09-30 11:46 - 2014-09-30 11:48 - 0000055 _____ () C:\Users\Conny\AppData\Roaming\My Profile.xml
2011-09-29 13:09 - 2011-10-04 14:29 - 0001188 _____ () C:\Users\Conny\AppData\Local\crc32list11.txt
2011-09-03 20:06 - 2015-05-08 19:13 - 0003584 _____ () C:\Users\Conny\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-03 11:37 - 2014-03-03 11:37 - 0001461 _____ () C:\Users\Conny\AppData\Local\recently-used.xbel
2011-03-17 17:55 - 2011-03-17 17:55 - 0000017 _____ () C:\Users\Conny\AppData\Local\resmon.resmoncfg
2011-10-11 10:00 - 2011-10-11 10:00 - 0000268 ___RH () C:\ProgramData\Caches
2011-10-11 10:00 - 2011-10-11 10:00 - 0000268 ___RH () C:\ProgramData\Calibrators
2011-10-11 10:00 - 2011-10-11 10:00 - 0000268 ___RH () C:\ProgramData\Carbon
2011-10-11 10:00 - 2011-10-11 10:00 - 0000012 ___RH () C:\ProgramData\Colors
2011-10-11 10:00 - 2011-10-11 10:00 - 0000012 ___RH () C:\ProgramData\Command Line Utility
2011-10-11 10:00 - 2011-10-11 10:00 - 0000012 ___RH () C:\ProgramData\Common
2011-01-11 22:23 - 2012-05-10 08:07 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys
2014-11-03 14:13 - 2014-10-06 19:06 - 36707080 _____ (Deutsche Telekom AG ) C:\ProgramData\Setup_OnlineManager.exe
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\Setup_OnlineManager.exe
Einige Dateien in TEMP:
====================
C:\Users\Conny\AppData\Local\Temp\63j22bqy.dll
C:\Users\Conny\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbjzpke.dll
C:\Users\Conny\AppData\Local\Temp\{485B3219-350D-4D43-B9B5-B5C3EF9AA775}-45.0.2454.85_44.0.2403.157_chrome_updater.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-10-21 21:20
==================== Ende vom FRST.txt ============================
|
|
31.10.2015, 18:55
| #4 |
| /// the machine /// TB-Ausbilder | Komme nicht mehr ins Internet, Google Chrome wird nicht mehr geöffnet hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Komme nicht mehr ins Internet, Google Chrome wird nicht mehr geöffnet |
| auslieferungszustand, chrome, funktionier, funktioniert, google, google chrome, inter, interne, internet, liebe, lieben, nicht mehr, virus |
WARNUNG an die MITLESER: 
Linear-Darstellung
