Windows 10: Browser funktionieren nicht mehr richtig

Splasher · 30.11.2015, 21:45

Hallo
Ich weiß nicht ob das hier die richtige Sektion ist aber wenn nicht kann ja ein Mod bitte den Thread verschieben.
Ich habe folgendes Problem mit meinem Laptop.
Und zwar ist neulich mein Laptop abgestürzt als ich Google Chrome gerade benutzt hatte bzw ich musste ihn Neustarten.
Als ich danach wieder in Chrome gehen wollte hat dieses sobald ich es geöffnet hatte erst immer geladen und sich daraufhin aufgehangen sodass ich es wieder schließen musste.
Dies war auch nach mehreren Neustarts immer noch der Fall.
Als ich dann andere Browser wie Firefox und Opera die ich auch auf meinem Laptop habe ausprobieren wollte habe ich festgestellt, dass ich dort das gleiche Problem habe.
Der einzige Browser der nun funktioniert ist Microsoft Edge, jedoch würde ich gerne wieder Chrome benutzen.
Ich habe auch schon Opera mit Revo Uninstaller gelöscht und es neu installiert, jedoch hängt es sich immer noch auf wenn ich es starte.
Nun ist meine Frage was das Problem sein könnte und wie ich es beheben kann.
Mir ist außerdem noch aufgefallen als ich in den Task-Manager geschaut habe dass im Hintergrund noch Prozesse von McAfee vorhanden sind welches ich jedoch eigentlich schon mal deinstalliert hatte.Vorallem der McAfee On-Access Scanner service verbraucht dabei viel von meinem Arbeitsspeicher, ich denke zwar nicht dass es damit etwas zu tun hat jedoch wüsste ich trotzdem gerne wie ich dies deinstallieren kann, da ich zb in der Systemsteuerung oder auch bei Revo Uninstaller McAfee nicht mehr finde.
Ich hoffe ihr könnt mir helfen und Vielen Dank schon mal im Voraus.
MfG
Splasher

deeprybka · 30.11.2015, 22:43

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...

Bitte arbeite alle Schritte der Reihe nach ab.
Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
Bitte kein Crossposting (posten in mehreren Foren).
Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
Poste die Logfiles direkt in Deinen Thread in Code-Tags.
Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.

Los geht's:

Schritt 1

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Splasher · 01.12.2015, 15:04

Erstmal vielen Dank schonmal für die schnelle Antwort
FRST.txt

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:30-11-2015
durchgeführt von Simeon (Administrator) auf PC-192-168-2-11 (01-12-2015 14:42:13)
Gestartet von C:\Users\Simeon\Downloads
Geladene Profile: Simeon (Verfügbare Profile: Simeon)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Ruiware LLC) C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15361.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\mfpmp.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [191528 2014-06-04] (Geek Software GmbH)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-04] (AVAST Software)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Spotify Web Helper] => C:\Users\Simeon\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-23] (Spotify Ltd)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1154112 2014-07-21] (Ruiware LLC)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [{517CC397-B22F-4593-8DCB-DE72CC541E9A}] => C:\Users\Simeon\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe [30668968 2015-05-23] (Riot Games)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Dropbox Update] => C:\Users\Simeon\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50143872 2015-11-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [GoogleChromeAutoLaunch_D0278164EA89A1039D7EE87582DA94F0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-04] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-09-29]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-09-29]
ShortcutTarget: Dropbox.lnk -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1601235c-8be2-42ad-a516-95a4b5503b4b}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6010b956-984b-4a82-b08a-0da6920722a6}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002 -> {25ED8489-9D47-4ADD-AD9B-F4074B21DD47} URL = 
SearchScopes: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-02-28] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-04] (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18] (Oracle Corporation)
BHO-x32: Kein Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-04] (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-08-12] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2014-04-25] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2014-04-25] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default
FF Homepage: hxxps://www.malwarebytes.org/restorebrowser//?type=hp&ts=1443542688&z=7624780dbd56ba9eba34037gez8z5c8wbz0ofz8t2b&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-18] (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2014-04-25] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [2014-05-26] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2014-04-25] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-06-25] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-05-25] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2014-05-25] ()
FF Plugin HKU\S-1-5-21-2194020832-3275982821-4177272209-1002: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-05-25] (Pando Networks)
FF Plugin HKU\S-1-5-21-2194020832-3275982821-4177272209-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-11-23] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-06-25] (Microsoft Corporation)
FF Extension: WOT - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-20]
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-04]
FF Extension: NoScript - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-01]
FF Extension: Video DownloadHelper - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-08-18]
FF Extension: Adblock Plus - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-27]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-04]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-05-26] [ist nicht signiert]

Chrome: 
=======
CHR StartupUrls: Default -> "","hxxps://www.google.de/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8","hxxp://search.gboxapp.com/?aff=p","hxxp://www.istartsurf.com/?type=hp&ts=1437339063&z=0b86e84ee58059b9942a498gbzfc4m2c9c1t8e8c3m&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS","hxxp://www.istartsurf.com/?type=hppp&ts=1437339121&z=bbf8572756d2628d0332518g7zec7mdcfcetde8t7w&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS","hxxp://www.istartsurf.com/?type=hp&ts=1443542688&z=7624780dbd56ba9eba34037gez8z5c8wbz0ofz8t2b&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS"
CHR Session Restore: Default -> ist aktiviert.
CHR Profile: C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-11-11]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-11-20]
CHR Extension: (Adblock Plus) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-25]
CHR Extension: (Steam inventory helper) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-11-23]
CHR Extension: (LoungeDestroyer) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-11-26]
CHR Extension: (Avast Online Security) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-03]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-08-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Simeon\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx <nicht gefunden>
CHR HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-04]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-04] (AVAST Software)
S2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63968 2015-05-21] (CyberGhost S.R.L)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [660040 2013-01-18] (Acer Incorporated)
S2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-13] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
U2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370064 2015-10-15] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-20] (Intel Corporation)
S2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-04-26] (Acer Incorporate)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [334760 2012-12-21] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [603424 2014-06-12] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-06-18] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-06-20] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-06-20] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-20] (Electronic Arts)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-04] (AVAST Software)
R4 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-06-20] (McAfee, Inc.)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313544 2014-06-20] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-06-20] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [523792 2014-06-20] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-06-20] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [444720 2014-06-18] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-06-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-06-20] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 QRDCIO; C:\Windows\System32\drivers\QRDCIO.sys [9728 2009-10-20] (QUANTA)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
S3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [25088 2015-01-27] (SteelSeries ApS)
S3 sshid; C:\Windows\System32\drivers\sshid.sys [51392 2015-10-27] (SteelSeries ApS)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-01 14:42 - 2015-12-01 14:43 - 00029096 _____ C:\Users\Simeon\Downloads\FRST.txt
2015-12-01 14:41 - 2015-12-01 14:42 - 00000000 ____D C:\FRST
2015-12-01 14:41 - 2015-12-01 14:41 - 02350080 _____ (Farbar) C:\Users\Simeon\Downloads\FRST64.exe
2015-11-30 21:05 - 2015-11-30 21:06 - 00000000 ____D C:\Program Files (x86)\Opera
2015-11-30 21:05 - 2015-11-30 21:05 - 00717288 _____ (Opera Software) C:\Users\Simeon\Downloads\Opera_NI_stable (3).exe
2015-11-30 21:05 - 2015-11-30 21:05 - 00003968 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1448913947
2015-11-30 21:05 - 2015-11-30 21:05 - 00001212 _____ C:\Users\Public\Desktop\Opera.lnk
2015-11-30 21:05 - 2015-11-30 21:05 - 00001212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-11-30 20:28 - 2015-11-30 20:29 - 00717288 _____ (Opera Software) C:\Users\Simeon\Downloads\Opera_NI_stable (2).exe
2015-11-30 20:16 - 2015-11-30 20:16 - 00003968 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1448910958
2015-11-30 20:15 - 2015-11-30 20:15 - 00717288 _____ (Opera Software) C:\Users\Simeon\Downloads\Opera_NI_stable (1).exe
2015-11-30 17:56 - 2015-11-30 17:56 - 00000000 _____ C:\WINDOWS\SysWOW64\REN7F89.tmp
2015-11-29 15:44 - 2015-11-29 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-11-29 00:20 - 2015-11-29 00:22 - 41943979 _____ C:\Users\Simeon\Downloads\Izrail_-_1994_EP_MP3_Format.zip
2015-11-27 22:54 - 2015-11-27 22:54 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-11-27 16:30 - 2015-11-28 14:43 - 00250104 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2015-11-26 20:54 - 2015-11-26 20:54 - 00000000 ____D C:\Users\Simeon\AppData\Local\ActiveSync
2015-11-26 20:52 - 2015-11-26 20:52 - 00000020 ___SH C:\Users\Simeon\ntuser.ini
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-11-26 20:40 - 2015-11-29 17:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-26 20:23 - 2015-11-26 20:23 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-11-26 20:15 - 2015-11-26 20:27 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-11-26 20:10 - 2015-11-29 18:22 - 00000000 ____D C:\Users\Simeon
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Vorlagen
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Startmenü
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Netzwerkumgebung
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Lokale Einstellungen
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Eigene Dateien
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Druckumgebung
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Documents\Eigene Videos
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Documents\Eigene Musik
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Documents\Eigene Bilder
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\AppData\Local\Verlauf
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\AppData\Local\Anwendungsdaten
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Anwendungsdaten
2015-11-26 20:06 - 2015-11-26 20:16 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-26 20:06 - 2015-11-26 20:06 - 00646947 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____D C:\Program Files\Realtek
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-11-26 20:06 - 2015-07-23 02:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 01059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-26 20:06 - 2015-07-23 02:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-26 20:06 - 2015-07-22 05:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-26 20:05 - 2015-11-30 17:10 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-26 20:05 - 2015-11-26 20:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-26 20:05 - 2015-11-26 20:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-26 20:05 - 2015-11-26 20:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-11-26 20:05 - 2015-11-26 20:05 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-11-26 20:05 - 2015-11-26 20:05 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-26 20:05 - 2015-10-15 00:22 - 00105472 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-11-26 20:05 - 2015-10-15 00:22 - 00099856 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-11-26 20:04 - 2015-11-26 20:27 - 00000000 ____D C:\Program Files\Elantech
2015-11-26 20:04 - 2015-11-26 20:16 - 00000000 ____D C:\Program Files\Intel
2015-11-26 20:04 - 2015-11-26 20:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-11-26 20:03 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-26 19:59 - 2015-11-26 20:28 - 00359656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-26 19:58 - 2015-11-30 18:39 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-26 19:54 - 2015-11-26 19:54 - 24603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 13376512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 13017088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 12120064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-11-26 19:54 - 2015-11-26 19:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-11-26 19:54 - 2015-11-26 19:54 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01998848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-11-26 19:54 - 2015-11-26 19:54 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-11-26 19:54 - 2015-11-26 19:54 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00000000 ____D C:\Windows.old
2015-11-26 19:52 - 2015-10-29 19:43 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-26 19:52 - 2015-10-29 19:43 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-26 19:52 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-11-26 19:52 - 2015-10-29 19:25 - 06359040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-26 19:52 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-11-26 19:51 - 2015-11-26 19:51 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files\MSBuild
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-11-26 19:47 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-26 19:47 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-26 19:47 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-26 19:47 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-26 19:47 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-26 19:47 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-23 12:46 - 2015-11-23 12:47 - 50202832 _____ C:\Users\Simeon\Downloads\luth-1x01.part6.rar
2015-11-23 12:46 - 2015-11-23 12:47 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part5.rar
2015-11-23 12:45 - 2015-11-23 12:46 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part4.rar
2015-11-23 12:44 - 2015-11-23 12:45 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part3.rar
2015-11-23 12:44 - 2015-11-23 12:44 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part2.rar
2015-11-23 12:43 - 2015-11-23 12:43 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part1.rar
2015-11-14 13:55 - 2015-11-14 13:55 - 00001055 _____ C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-11-13 19:18 - 2015-11-26 20:27 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-12 23:50 - 2015-11-12 23:53 - 91149892 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part6.rar
2015-11-12 23:49 - 2015-11-12 23:54 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part5.rar
2015-11-12 23:49 - 2015-11-12 23:53 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part4.rar
2015-11-12 23:48 - 2015-11-12 23:53 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part3.rar
2015-11-12 23:47 - 2015-11-12 23:52 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part2.rar
2015-11-12 23:47 - 2015-11-12 23:49 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part1.rar
2015-11-12 23:42 - 2015-11-12 23:43 - 154073668 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part6 (1).rar
2015-11-12 23:39 - 2015-11-12 23:42 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part5 (1).rar
2015-11-12 23:38 - 2015-11-12 23:42 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part4 (1).rar
2015-11-12 23:37 - 2015-11-12 23:42 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part3 (1).rar
2015-11-12 23:37 - 2015-11-12 23:41 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part2 (1).rar
2015-11-12 23:36 - 2015-11-12 23:39 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part1 (2).rar
2015-11-12 23:33 - 2015-11-12 23:35 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part1 (1).rar
2015-11-12 23:20 - 2015-11-12 23:23 - 154073668 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part6.rar
2015-11-12 23:18 - 2015-11-12 23:23 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part5.rar
2015-11-12 23:17 - 2015-11-12 23:23 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part4.rar
2015-11-12 23:10 - 2015-11-12 23:12 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part3.rar
2015-11-12 23:09 - 2015-11-12 23:11 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part2.rar
2015-11-12 22:34 - 2015-11-12 22:38 - 85243611 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part1.rar
2015-11-10 15:43 - 2015-11-10 15:45 - 173351164 _____ C:\Users\Simeon\Downloads\hw_final.zip
2015-11-05 01:37 - 2015-11-05 01:37 - 00006228 _____ C:\Users\Simeon\Downloads\friberg.rar
2015-11-05 01:37 - 2015-11-05 01:37 - 00003846 _____ C:\Users\Simeon\Downloads\Get_right.rar
2015-11-05 01:37 - 2015-11-05 01:37 - 00003719 _____ C:\Users\Simeon\Downloads\dupreeh.cfg
2015-11-05 01:36 - 2015-11-05 01:36 - 00032633 _____ C:\Users\Simeon\Downloads\[navi-gaming.com]guardian_new_config_2014.rar
2015-11-05 01:33 - 2015-11-05 01:33 - 00067889 _____ C:\Users\Simeon\Downloads\shox.rar
2015-11-05 01:33 - 2015-11-05 01:33 - 00067889 _____ C:\Users\Simeon\Downloads\shox (1).rar
2015-11-05 01:33 - 2015-11-05 01:33 - 00006408 _____ C:\Users\Simeon\Downloads\ScreaM_cfg_2015-09-23.zip
2015-11-05 00:22 - 2015-11-05 00:22 - 00000219 _____ C:\Users\Simeon\Desktop\Counter-Strike Global Offensive.url
2015-11-05 00:13 - 2015-11-26 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-05 00:13 - 2015-11-05 00:13 - 00001040 _____ C:\Users\Public\Desktop\Steam.lnk
2015-11-05 00:12 - 2015-11-05 00:12 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (11).exe
2015-11-04 18:48 - 2015-11-04 18:48 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-04 18:47 - 2015-11-04 18:47 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-04 14:00 - 2015-11-04 14:00 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (10).exe
2015-11-03 14:16 - 2015-11-03 14:16 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (9).exe
2015-11-03 14:15 - 2015-11-03 14:16 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (8).exe
2015-11-01 23:12 - 2015-11-01 23:13 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (7).exe
2015-11-01 23:12 - 2015-11-01 23:12 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (6).exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-01 14:42 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-01 14:40 - 2014-05-25 18:55 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Skype
2015-12-01 14:15 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-01 14:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-01 14:09 - 2014-07-24 17:07 - 00004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{84A861DF-DBA4-44D4-A2E4-B064A3A08795}
2015-12-01 14:08 - 2015-01-05 18:27 - 00001150 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-01 14:07 - 2015-05-06 18:58 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-01 14:07 - 2015-01-05 18:27 - 00001146 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-01 00:36 - 2014-09-26 21:50 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\TS3Client
2015-12-01 00:05 - 2015-07-19 21:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-30 23:54 - 2015-06-18 15:43 - 00001260 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002UA.job
2015-11-30 21:42 - 2015-04-13 15:10 - 00000422 _____ C:\WINDOWS\Tasks\update-sys.job
2015-11-30 21:05 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-30 21:05 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-30 21:05 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-11-30 21:05 - 2015-09-15 19:51 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Opera Software
2015-11-30 21:05 - 2015-09-15 19:51 - 00000000 ____D C:\Users\Simeon\AppData\Local\Opera Software
2015-11-30 21:05 - 2015-08-01 14:23 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-30 20:51 - 2015-04-13 15:10 - 00000422 _____ C:\WINDOWS\Tasks\update-S-1-5-21-2194020832-3275982821-4177272209-1002.job
2015-11-30 20:03 - 2015-08-01 17:40 - 00000000 ____D C:\Users\Simeon\AppData\Local\MicrosoftEdge
2015-11-30 18:54 - 2015-01-09 21:08 - 00000000 ____D C:\Program Files (x86)\SpywareBlaster
2015-11-30 18:54 - 2013-11-20 18:40 - 00000000 ____D C:\ProgramData\Temp
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\WINDOWS\oem
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\ProgramData\Acer
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\Program Files (x86)\Acer
2015-11-30 18:48 - 2014-05-27 17:54 - 00000000 ____D C:\ProgramData\Apple
2015-11-30 18:34 - 2014-09-03 22:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-30 18:28 - 2013-11-20 18:36 - 00000000 ____D C:\ProgramData\NortonInstaller
2015-11-30 18:28 - 2013-11-20 18:36 - 00000000 ____D C:\Program Files (x86)\Norton Online Backup ARA
2015-11-30 18:09 - 2014-08-14 23:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-11-30 18:09 - 2014-08-14 23:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-11-30 18:00 - 2015-07-20 22:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-30 17:57 - 2014-08-09 00:08 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-30 17:10 - 2014-07-18 16:22 - 00000000 __SHD C:\Users\Simeon\IntelGraphicsProfiles
2015-11-30 00:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-29 20:50 - 2014-05-25 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-11-29 20:02 - 2015-07-28 19:12 - 00001017 _____ C:\Users\Simeon\Desktop\Start Tor Browser.lnk
2015-11-29 17:47 - 2013-11-20 18:37 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-11-29 17:37 - 2015-10-30 07:28 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-29 13:54 - 2015-06-18 15:42 - 00001208 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002Core.job
2015-11-29 03:42 - 2015-10-23 16:01 - 00000000 ____D C:\Users\Simeon\AppData\Local\JDownloader 2.0
2015-11-29 01:19 - 2015-09-15 19:59 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-11-29 00:29 - 2014-06-13 21:07 - 00000000 ___RD C:\Users\Simeon\Desktop\blah
2015-11-29 00:28 - 2015-01-05 19:16 - 00000000 ____D C:\Users\Simeon\Desktop\Simeon Musik
2015-11-27 21:36 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-27 13:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat
2015-11-26 21:17 - 2014-05-25 18:03 - 00000000 ____D C:\Users\Simeon\AppData\Local\Packages
2015-11-26 21:12 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-26 21:04 - 2015-08-01 17:28 - 00002410 _____ C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-26 21:04 - 2014-07-18 15:35 - 00000000 __RDO C:\Users\Simeon\OneDrive
2015-11-26 20:56 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-11-26 20:53 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-26 20:53 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-26 20:53 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-26 20:52 - 2014-05-08 13:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-26 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT
2015-11-26 20:49 - 2014-07-18 14:57 - 00041913 _____ C:\WINDOWS\diagwrn.xml
2015-11-26 20:49 - 2014-07-18 14:57 - 00041913 _____ C:\WINDOWS\diagerr.xml
2015-11-26 20:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-26 20:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration
2015-11-26 20:41 - 2014-07-18 15:21 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-26 20:40 - 2015-09-15 19:59 - 00003404 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-11-26 20:40 - 2015-07-19 21:13 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-26 20:40 - 2015-07-08 15:37 - 00002668 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2015-11-26 20:40 - 2015-06-18 15:43 - 00003876 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002UA
2015-11-26 20:40 - 2015-06-18 15:42 - 00003604 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002Core
2015-11-26 20:40 - 2015-04-13 15:10 - 00003058 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-2194020832-3275982821-4177272209-1002
2015-11-26 20:40 - 2015-04-13 15:10 - 00002856 _____ C:\WINDOWS\System32\Tasks\update-sys
2015-11-26 20:40 - 2015-01-14 22:31 - 00002300 _____ C:\WINDOWS\System32\Tasks\{92FF06CD-8D86-4E45-96E7-1BE9BB85AA3D}
2015-11-26 20:40 - 2015-01-14 22:31 - 00002300 _____ C:\WINDOWS\System32\Tasks\{4B1CD73C-F434-4C00-B979-BD691703A46C}
2015-11-26 20:40 - 2015-01-05 18:27 - 00003662 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-26 20:40 - 2015-01-05 18:27 - 00003438 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-26 20:40 - 2014-11-19 23:50 - 00002676 _____ C:\WINDOWS\System32\Tasks\{FE37CCD8-5799-4A7D-9B0B-C9BB5E5B9E97}
2015-11-26 20:40 - 2014-09-17 12:54 - 00002260 _____ C:\WINDOWS\System32\Tasks\{BC94A892-74D7-420D-BF66-58B8F5654AF6}
2015-11-26 20:40 - 2014-09-03 22:44 - 00002954 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-26 20:40 - 2014-06-02 12:35 - 00002528 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2015-11-26 20:40 - 2014-05-25 18:12 - 00002940 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2194020832-3275982821-4177272209-1002
2015-11-26 20:40 - 2013-11-20 18:33 - 00002248 _____ C:\WINDOWS\System32\Tasks\Power Management
2015-11-26 20:40 - 2013-11-20 18:17 - 00001848 _____ C:\WINDOWS\System32\Tasks\Dolby Selector
2015-11-26 20:40 - 2013-08-02 16:04 - 00002238 _____ C:\WINDOWS\System32\Tasks\Launch Manager
2015-11-26 20:39 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-26 20:27 - 2015-10-30 19:44 - 00000000 ____D C:\WINDOWS\ShellNew
2015-11-26 20:27 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Help
2015-11-26 20:27 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-11-26 20:27 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-26 20:27 - 2015-10-23 16:31 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-11-26 20:27 - 2015-10-02 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-11-26 20:27 - 2015-09-30 21:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-11-26 20:27 - 2015-06-13 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
2015-11-26 20:27 - 2015-02-17 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-11-26 20:27 - 2015-01-15 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-11-26 20:27 - 2015-01-14 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-11-26 20:27 - 2015-01-10 14:41 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-11-26 20:27 - 2015-01-10 14:41 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-11-26 20:27 - 2015-01-09 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2015-11-26 20:27 - 2015-01-09 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2015-11-26 20:27 - 2015-01-06 18:53 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-11-26 20:27 - 2015-01-05 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-26 20:27 - 2014-09-03 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-11-26 20:27 - 2014-08-15 17:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
2015-11-26 20:27 - 2014-07-18 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-26 20:27 - 2014-07-11 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-11-26 20:27 - 2014-06-20 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2015-11-26 20:27 - 2014-06-14 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-26 20:27 - 2014-06-07 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-11-26 20:27 - 2014-06-02 12:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2015-11-26 20:27 - 2014-06-01 00:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2015-11-26 20:27 - 2014-05-29 15:21 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2015-11-26 20:27 - 2014-05-29 02:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-11-26 20:27 - 2014-05-25 20:08 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-26 20:27 - 2014-05-25 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-26 20:27 - 2013-08-02 16:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-26 20:23 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated
2015-11-26 20:19 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB
2015-11-26 20:19 - 2014-05-25 20:26 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-11-26 20:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-11-26 20:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-11-26 20:17 - 2015-10-30 19:36 - 00000000 ____D C:\WINDOWS\OCR
2015-11-26 20:17 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-26 20:17 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-26 20:16 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-26 20:16 - 2015-08-28 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-26 20:16 - 2015-04-28 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2015-11-26 20:16 - 2014-06-12 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaHuman
2015-11-26 20:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-11-26 20:14 - 2014-11-22 18:16 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-11-26 20:09 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-26 20:06 - 2014-10-06 22:29 - 00000000 ____D C:\Temp
2015-11-26 19:59 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-11-26 19:58 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-26 19:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-11-26 19:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-26 19:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-26 19:54 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-26 19:54 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-26 19:47 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-11-26 19:47 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-26 19:47 - 2015-10-30 08:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-11-26 19:47 - 2015-10-30 08:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-11-26 19:47 - 2015-10-30 08:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-11-26 19:47 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-11-26 19:03 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-26 01:23 - 2014-05-30 20:12 - 00000000 ____D C:\Users\Simeon\AppData\Local\Spotify
2015-11-26 01:19 - 2014-05-30 20:12 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Spotify
2015-11-25 21:50 - 2014-09-03 22:22 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-11-20 13:29 - 2014-05-25 18:55 - 00000000 ____D C:\ProgramData\Skype
2015-11-13 19:19 - 2014-09-03 22:57 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Dropbox
2015-11-11 23:40 - 2015-06-13 15:51 - 00000000 ____D C:\Users\Simeon\AppData\Local\CyberGhost
2015-11-11 23:10 - 2015-01-05 18:28 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-10 23:27 - 2015-09-30 21:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-10 23:13 - 2014-05-27 20:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-10 23:13 - 2012-07-26 06:26 - 00000199 _____ C:\WINDOWS\win.ini
2015-11-10 23:03 - 2014-05-27 20:30 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-04 18:48 - 2014-09-03 22:42 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-11-04 18:47 - 2014-09-03 22:42 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-11-03 01:12 - 2015-10-30 08:26 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 01:12 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-09-22 22:47 - 2014-12-20 14:42 - 0000004 _____ () C:\Users\Simeon\AppData\Roaming\appdataFr2.bin
2015-04-13 15:10 - 2015-04-13 15:10 - 0000003 _____ () C:\Users\Simeon\AppData\Local\updater.log
2015-04-13 15:10 - 2015-10-02 23:38 - 0000424 _____ () C:\Users\Simeon\AppData\Local\UserProducts.xml
2015-11-26 20:06 - 2015-11-26 20:06 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-09-29 17:05 - 2015-09-29 17:05 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Einige Dateien in TEMP:
====================
C:\Users\Simeon\AppData\Local\Temp\{311739EB-5C94-4EE1-B911-2D1F005060F4}_NARA_9953.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-26 19:59

==================== Ende von FRST.txt ============================

--- --- ---

Splasher · 01.12.2015, 15:05

Addition.txt

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:30-11-2015
durchgeführt von Simeon (2015-12-01 14:44:23)
Gestartet von C:\Users\Simeon\Downloads
Windows 10 Home (X64) (2015-11-26 19:51:08)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2194020832-3275982821-4177272209-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2194020832-3275982821-4177272209-503 - Limited - Disabled)
Gast (S-1-5-21-2194020832-3275982821-4177272209-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2194020832-3275982821-4177272209-1007 - Limited - Enabled)
Simeon (S-1-5-21-2194020832-3275982821-4177272209-1002 - Administrator - Enabled) => C:\Users\Simeon

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Out of date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: McAfee Firewall (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2241 - AVAST Software)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
BioShock 2 (HKLM-x32\...\Steam App 8850) (Version:  - 2K Marin)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
Dropbox (HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Dropbox) (Version: 3.10.11 - Dropbox, Inc.)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Far Cry® 3 Blood Dragon (HKLM-x32\...\Steam App 233270) (Version:  - Ubisoft Montreal)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar Games)
Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version:  - BioWare)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 41.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA GeForce Experience 2.5.15.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.54 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 33.0.1990.115 (HKLM-x32\...\Opera 33.0.1990.115) (Version: 33.0.1990.115 - Opera Software)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 4.1.500 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.15.54 - NVIDIA Corporation) Hidden
Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - Telltale Games)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version:  - 11 bit studios)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{CBCC2FD8-7DFE-4752-95B5-2E447C226F45}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.1 - Ubisoft)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WinPatrol (HKLM\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 32.0.2014.5 - Ruiware)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Simeon\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => Keine Datei

==================== Wiederherstellungspunkte =========================

27-11-2015 21:35:07 Windows Update
29-11-2015 20:45:59 Revo Uninstaller's restore point - EasyAntiCheat eSports

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-01-05 17:34 - 2015-01-05 17:34 - 00000883 ____A C:\WINDOWS\system32\Drivers\etc\hosts

# Copyright (c) 1993-2006 Microsoft Corp. # # Die ist eine Beispieldatei HOSTS, die von Microsoft TCP/IP für Windows verwendet wird. # # Die Datei enthält die Zuordnungen der IP-Adressen zu Hostnamen. Jeder # Eintrag sollte in einer eigenen Zeile stehen. Die IP-Adresse sollte # in die erste Spalte geschrieben werden, gefolgt vom entsprechenden Hostnamen. # Die IP-Adresse und der Hostname sollten durch mindestens ein # Leerzeichen getrennt sein. # # Außerdem können Kommentare (wie diese) in einzelne # Zeilen geschrieben oder nach dem Computernamen eingefügt werden, gekennzeichnet durch ein '#'-Symbol. # # Zum Beispiel: # #      102.54.94.97     rhino.acme.com          # source server #       38.25.63.10     x.acme.com              # x Client Host # localhost-Namensauflösung wird in DNS selbst verarbeitet. #       127.0.0.1       localhost #       ::1             localhost

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {082B385A-CD96-4725-B8FD-0780030515A4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {0C166193-7D66-4EF2-BC73-6CF82EFE88E1} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG
Task: {0F78220C-3F9A-41D9-8CE9-7CA74E45A893} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {0FFDC8DE-6786-44F9-ABA3-C2B05FB80E6E} - System32\Tasks\Opera scheduled Autoupdate 1448910958 => C:\Program Files (x86)\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {12C90DC1-37E4-4E75-A1FB-3453A70B213D} - System32\Tasks\Opera scheduled Autoupdate 1448913947 => C:\Program Files (x86)\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {1842F4F5-7026-4BFA-96F0-A2F03CDC5CE3} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-01-18] (Acer Incorporated)
Task: {20549DE5-E186-4633-BD28-161D9D59DCA8} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {20CC4498-742D-4ED9-B2A6-5CC1046DC284} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {210E5AD3-BE05-4401-A8EA-48B5621658BF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {21798914-C61C-4002-B68D-3D124AF53381} - System32\Tasks\{92FF06CD-8D86-4E45-96E7-1BE9BB85AA3D} => pcalua.exe -a C:\Users\Simeon\Downloads\npp.6.7.4.Installer.exe -d C:\Users\Simeon\Downloads
Task: {2AB4592C-1860-45F1-BC99-EB622D990590} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {34CA9542-9AE7-4C6B-9E25-EF2D68260DC8} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {3D8B690E-7D61-41A7-88DA-944FE604BC9C} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
Task: {54C4FCE3-1F89-4737-BCC6-11C6EB762F94} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {56D1195B-EEDE-47E8-9100-C7C86113FB26} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {609F0AE6-7BF0-44AC-B9E6-5E823FB840A0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {6832F3D0-2296-456F-817F-2BA6A0173063} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {72BEA3D5-74FD-483B-888C-2A13D95946A2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002Core => C:\Users\Simeon\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {7A44F9C0-23A8-48B4-9A20-36F53CCD158B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {88BF23E9-2A76-48D7-A382-67DE8E7FF8D4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {8A6DDFB2-D033-4430-B481-AC9272B262CC} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-01-23] (Acer Incorporated)
Task: {8DB7591E-4B69-411F-84BD-C356B0E45D3C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {95C178F5-ADB1-4BE9-A024-A086BAC14E8D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002UA => C:\Users\Simeon\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {972BF7CF-3C28-4819-8AC6-69DFBB64235A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-10] (Microsoft Corporation)
Task: {98B77D43-01DC-4437-BB73-BC49DF15353B} - System32\Tasks\{BC94A892-74D7-420D-BF66-58B8F5654AF6} => Chrome.exe hxxp://ui.skype.com/ui/0/6.20.0.104/de/go/help.faq.installer?LastError=1618
Task: {A211F15B-C9BA-488F-9453-C187EA64E257} - System32\Tasks\{FE37CCD8-5799-4A7D-9B0B-C9BB5E5B9E97} => pcalua.exe -a C:\WINDOWS\System32\control.exe -d C:\Windows\WinSxS\wow64_adobe-flash-for-windows_31bf3856ad364e35_6.3.9600.17334_none_26e8e73771beea24 -c "C:\Windows\WinSxS\wow64_adobe-flash-for-windows_31bf3856ad364e35_6.3.9600.17334_none_26e8e73771beea24\FlashPlayerCPLApp.cpl",
Task: {A4D107DB-21A1-4B94-8F3D-8D2761640D61} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {AA54FE29-9605-49BA-BBA1-E7E8B15DA6AF} - System32\Tasks\update-S-1-5-21-2194020832-3275982821-4177272209-1002 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {AC7BF3A2-F440-4E36-9DC6-D7A283E958BC} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
Task: {B4DE3A4A-C6C1-4446-BDB2-6ECAEC30229F} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {BB3E0452-31E8-453B-AF1D-AB92774D09DA} - System32\Tasks\{4B1CD73C-F434-4C00-B979-BD691703A46C} => pcalua.exe -a C:\Users\Simeon\Downloads\npp.6.7.4.Installer.exe -d C:\Users\Simeon\Downloads
Task: {C381D946-4885-41E6-9D77-0CD1F64078CE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {C6843D83-A991-4583-B102-D1E95FE1D301} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-11-04] (AVAST Software)
Task: {CA953BFC-BE0E-4ECD-9F1F-3E96C7D91A74} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D727F8AA-67AA-401F-B38A-7B6A6D4AAAE8} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-04-26] (Acer Incorporate)
Task: {D84FE67C-707E-4C94-8055-BF4A5A8C1B64} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {E9C831C0-68CB-431B-BE6E-7D70FB0B0E4B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {EC09E32B-D317-48F1-AF76-B5634D6864C5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002Core.job => C:\Users\Simeon\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002UA.job => C:\Users\Simeon\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2194020832-3275982821-4177272209-1002.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 02652784 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 02652784 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2013-11-20 18:41 - 2013-02-20 22:58 - 00111176 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-10-30 08:17 - 2015-10-30 08:17 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 08005632 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-30 08:18 - 2015-10-30 19:44 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-21 13:13 - 2015-11-21 13:14 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-11-21 13:13 - 2015-11-21 13:14 - 11526656 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-11-20 13:37 - 2015-11-20 13:38 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-11-19 15:00 - 2015-11-19 15:00 - 09074176 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-11-19 15:00 - 2015-11-19 15:00 - 02416640 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-11-04 18:47 - 2015-11-04 18:47 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-11-04 18:47 - 2015-11-04 18:47 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-29 15:41 - 2015-11-29 15:41 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\15112900\algo.dll
2015-11-04 18:47 - 2015-11-04 18:47 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-11-29 21:40 - 2015-11-29 21:40 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\15112901\algo.dll
2015-11-30 21:42 - 2015-11-30 21:42 - 02812928 _____ () C:\Program Files\AVAST Software\Avast\defs\15113001\algo.dll
2013-11-20 17:58 - 2013-03-20 08:47 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-08-22 15:58 - 2015-10-12 04:05 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-11-05 00:18 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-11-05 00:18 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-11-05 00:18 - 2015-11-10 03:44 - 02541648 _____ () C:\Program Files (x86)\Steam\video.dll
2015-11-05 00:18 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-11-05 00:18 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-11-05 00:18 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-11-05 00:18 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-11-05 00:18 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-11-05 00:18 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-11-05 00:18 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-11-05 00:18 - 2015-11-10 03:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-11-05 00:18 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-11-04 18:47 - 2015-11-04 18:47 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-11-05 00:18 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-11-05 00:18 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2015-11-26 21:40 - 2015-11-26 21:41 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-11-26 21:40 - 2015-11-26 21:41 - 00152064 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-11-26 21:40 - 2015-11-26 21:41 - 18906624 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:5C321E34

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\1001movie.com -> 1001movie.com

Da befinden sich 6091 mehr Seiten.


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Simeon\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "Gyazo"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "puush"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_D0278164EA89A1039D7EE87582DA94F0"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "{517CC397-B22F-4593-8DCB-DE72CC541E9A}"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "Dropbox Update"
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\StartupApproved\Run: => "OneDrive"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{83BA3CC3-C8CD-4D2C-A6F1-4B74F3772597}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9C3C9769-7073-48CA-9952-FA45E3C2AF50}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{880B7BA8-0D40-48D4-8CD3-C27A31708D65}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{D0E6FDF5-6BCF-49A6-8BC5-2E192E66F04E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{B6029C48-9B6D-42FA-9016-E30038E8AEAE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{94669A71-5C8D-476E-8AB5-2DEF4EA00CAF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A44012E1-A5E5-44AA-8CAB-29D779C224E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D5AB4CAF-BD91-4243-BBD0-F124B752AF6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D84FA74C-6A17-4E72-8957-1FE4F258606C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{798D8C18-F698-4F5C-AC28-D8A09032C16D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{49CF9DDD-4182-4FCA-9779-BACE78344A85}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{1564FDCE-3445-493D-BF9B-7C4321653F95}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [UDP Query User{77CDEBF2-1253-474B-A4BB-6F884E599C91}C:\users\simeon\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\simeon\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E480C0B2-999A-4671-9A6A-C743F48F0B7E}C:\users\simeon\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\simeon\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E144A273-2F76-472C-A282-F63AD366EDB2}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{C28A092D-B91A-4C86-8F93-DE71D7527942}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5673E916-A8C3-4BF9-AC07-FBF847C47D6A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{209E604E-C973-43C1-8143-D0D8EE1D75A2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{75E2D210-CAFD-4389-9E12-349A049B1E16}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{262E1917-2522-43D4-BCDE-C34CBA04674F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5B2DF202-08DD-442B-9219-0965E13AABB8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CBCA7AF6-9BEB-455B-93CF-1F0BB832899A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{823C7338-3455-4933-9708-96C4EA504DD7}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{4E46DEB0-A58D-4E1B-8591-DF5202A34813}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7FC10F7B-C862-4954-905F-8A9809350EBF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F465349C-3B0E-4763-978A-AF5D169317DA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BFA64027-FE22-4B50-A79E-1C019F14D980}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{976988A8-9ECE-4D41-BDD0-27CE81DF68D9}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{F7DF3F78-A4C3-44D3-AA86-62602D950F0B}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{434B9347-02D3-40CD-9E3E-8BB0C45230AA}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{BF12D8DB-C13B-44B9-BB30-1F2928425144}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{384CC162-023F-42F7-9F8D-0591D8FDC84D}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{09602186-BA42-4205-B103-69157BF9918F}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{784F9BA5-3EA7-4DD7-938C-09E1BC3BEA55}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{737D5000-CE0D-4371-A1CD-B32206218569}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EB118629-2031-4DA5-B731-BB4AEE396A13}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{69B6251E-C60E-400D-BF1F-0BBA2CB22691}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{0A46D5DF-3A8F-447D-87A7-96FCFB3EE732}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{54B7ADAE-D826-4F48-B2FB-48C8EB382C34}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{226F6CB1-46FB-4C2C-9DFA-52191F57D6B8}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{4FD3CBEF-9D93-4A9A-83EC-51D98DB08B23}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{95415974-B78C-4843-ACF8-F36A759F19D4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{0AC10A17-165B-49F5-9F09-E943B5C0D0CF}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{1370F512-CD09-4AA4-9BC7-E5A889EDEAC2}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{59193461-C1DC-401F-9930-9740A4C5FEC4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{844B6197-A512-4A01-BDE6-3D0D75451FC5}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{FCF9B295-7305-4A15-9F19-2A5A051FAF9F}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{6EB860AD-D318-4E05-8278-14858FA35C7C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{57D26120-0797-43E4-B1E5-D8CE5B3E12D4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{4EA99479-BC7C-4847-853A-360038CC8CFE}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{E35D9B18-5F98-4D94-A2DD-46CAEE767B03}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{8E7550E0-5EDF-4452-AE5F-77A775E38240}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{FCC4532E-73C3-43DE-AE43-74E2CD9CB7B6}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{6514A20D-0103-45EF-97D1-903445258144}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{943CB904-1369-4F49-B49B-6A97A0FE898A}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{0B126A4D-141F-437B-8389-F0EDFF950381}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [TCP Query User{59B47D88-BD43-4A3E-A45B-07A5C3F4A9D8}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{A9A433BF-BEEF-4A6B-9715-B78064E4DA63}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{E223A0B0-F9F0-4A2F-8B84-A22C4D7EE5A3}] => (Allow) C:\Users\Simeon\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{A11285B6-517C-4F4F-A407-9C7F21D40101}] => (Allow) C:\Users\Simeon\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{5CED1892-90D3-40C2-BBA5-A00C15442505}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{7773B2E8-4187-4480-9B66-DC8DC0CAA42F}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{090B6BE9-97F5-418D-95F6-5B7EEA72B0D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DA27B622-A4E4-48B3-BDA7-105133C9EB10}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E3E492B-908C-418A-B3C7-E08CA3911367}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{9A214FA3-9D99-42AB-9542-048E6CC44E3A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A95B4B90-035F-4375-A841-45FA3F4B1936}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{BD44AC1B-9332-41C5-8363-E5C9FE7FE103}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{AD74484E-CE65-4C21-9BC0-BCD426AF2841}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E3D7E1C5-5DFC-4871-8A89-40D5FFA7DABE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{6DED3302-7505-4EA8-BDC6-57E1148B6F07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{ED9BFDBB-F69D-4DA8-961D-B9452EA1C485}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{60A0769D-0617-4FA2-965C-D415169D545E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{FF976D93-59D8-49DF-B4E5-7BDCA83E36D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{F0F5F4A6-6007-459D-8265-5FC84D6423A3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E67FDD1F-4079-4C40-9084-A80C385877A8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{BB4FC19F-84EE-4F38-9125-D4418DE2EF20}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{144B3B97-B305-46B7-A2B7-A50B7282AC8D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D50B50AF-CDAF-4EA0-8B5A-26210881DF49}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{5D43300C-0BCB-4AB1-B611-9BCFF98B460B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{35756C2E-92AB-4B8D-9F3D-EF1ACCE459DE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5DDAAA5F-DF8D-4DD2-BCB0-88383AFDC1F1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{C388EBA0-8C30-4C0D-A0F6-6CF1C944855E}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Allow) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [UDP Query User{86132041-3D77-41E6-9B49-BE5075BEBD52}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Allow) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [{3BBAE8ED-2D6E-451F-A279-864032B3359E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{8F628AC3-6C4D-4EFA-A745-7F9176480F5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{E0BA333E-BEC0-40C4-85B3-F39F8823BFEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{EE9F8F1A-1FB2-4E1A-AF6A-6408A30578B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{FCCCD87C-EF00-4F53-A441-0A341030A7B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{7815E883-5718-4BE8-86BC-81E0830AB353}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4AC29655-3124-4159-A80A-DBFD1A45A6DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{34DAC459-6433-4761-9558-83651F24B111}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{2E27E6FE-92A4-4955-BA90-C73F3F097FC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{6CF16AFE-3235-49E3-8772-8113150E4646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{3C57D933-8ACE-4909-922D-C852085A23EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{A570930A-C84A-4B4B-B61A-43416DD972BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{49B87CE8-588B-48E4-ACE2-5BE0216F8584}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{7400FEE9-2C87-496D-BA11-8B0C27C22488}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{8203E7C0-70F9-4D0C-9956-D7383EB64785}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{ED341C95-535F-44EC-BF32-51959F6EBE0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{0CA02571-F122-4565-BCCF-7281EA451507}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{F1AD4764-808C-4255-AD63-0A4E7D18FA0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{E9FB074C-162E-48E7-93C1-ED0B784880D3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0BB48841-4D0E-4A92-8928-E37D50F35B91}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{949C8CA7-7312-4520-8327-CA65F9C3E869}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{28E670CC-5D93-4F03-92D3-E9FAB0138482}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{CC554D91-6618-4BA1-970C-EA43C23ACA7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F63E4A3A-60CC-4363-8377-E425D513E9E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/30/2015 08:34:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm opera.exe, Version 33.0.1990.115 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 194

Startzeit: 01d12ba5a0ed3685

Beendigungszeit: 33510

Anwendungspfad: C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe

Berichts-ID: 5b749b2e-9799-11e5-bf13-78843c35bcd9

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (11/30/2015 08:02:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm opera.exe, Version 32.0.1948.31 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1fdc

Startzeit: 01d12ba18ec0725d

Beendigungszeit: 18867

Anwendungspfad: C:\Program Files (x86)\Opera\32.0.1948.31\opera.exe

Berichts-ID: e7a611b4-9794-11e5-bf13-78843c35bcd9

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (11/30/2015 06:48:36 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: PC-192-168-2-11)
Description: Die Anwendung oder der Dienst "Apple Mobile Device" konnte nicht neu gestartet werden.

Error: (11/30/2015 06:34:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm chrome.exe, Version 46.0.2490.86 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1938

Startzeit: 01d12b9539c7c94e

Beendigungszeit: 41878

Anwendungspfad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Berichts-ID: 859515da-9788-11e5-bf13-78843c35bcd9

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (11/30/2015 05:47:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm opera.exe, Version 32.0.1948.31 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1cac

Startzeit: 01d12b8e6f0f2443

Beendigungszeit: 4135

Anwendungspfad: C:\Program Files (x86)\Opera\32.0.1948.31\opera.exe

Berichts-ID: f939bc44-9781-11e5-bf13-78843c35bcd9

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (11/30/2015 01:43:53 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3484

Error: (11/30/2015 01:43:53 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3484

Error: (11/30/2015 01:43:53 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/30/2015 01:43:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2328

Error: (11/30/2015 01:43:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2328


Systemfehler:
=============
Error: (12/01/2015 02:11:33 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (12/01/2015 02:08:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "McAfee Platform Services" wurde nicht richtig gestartet.

Error: (12/01/2015 02:08:02 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "McAfee VirusScan Announcer" wurde nicht richtig gestartet.

Error: (12/01/2015 02:07:46 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (12/01/2015 02:07:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "McAfee Home Network" wurde nicht richtig gestartet.

Error: (12/01/2015 01:55:29 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_6171eb8 erreicht.

Error: (12/01/2015 01:55:29 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Benutzerdatenspeicher _6171eb8 erreicht.

Error: (12/01/2015 01:55:29 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Benutzerdatenspeicher _6171eb8" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (12/01/2015 01:55:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_6171eb8" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (12/01/2015 01:55:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _6171eb8" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2015-11-27 22:14:42.235
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-26 20:40:24.744
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-26 20:34:59.663
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-26 20:01:23.412
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz
Prozentuale Nutzung des RAM: 50%
Installierter physikalischer RAM: 8072.27 MB
Verfügbarer physikalischer RAM: 3983.12 MB
Summe virtueller Speicher: 9992.27 MB
Verfügbarer virtueller Speicher: 5885.23 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:449.51 GB) (Free:96.33 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 4B7142E4)

Partition: GPT.

==================== Ende von Addition.txt ============================

deeprybka · 01.12.2015, 18:08

Hallo,
bitte erstmal alles von McAfee deinstallieren...

Splasher · 01.12.2015, 18:15

Zitat:

Zitat von deeprybka

Hallo,
bitte erstmal alles von McAfee deinstallieren...

Das war ja eben meine zweite Frage.
Ich bekomm es nicht wirklich hin das zu deinstallieren da ich es zb bei Systemsteuerung oder auch Revo Uninstaller nicht finde.
Die Dateien so kann ich auch nicht löschen, denn dabei bekomme ich immer die Fehlermeldung dass ich Admin Rechte dafür bräuchte (obwohl ich Admin bin)

deeprybka · 01.12.2015, 18:35

Sorry, ich habe nicht alle Fragen von 30 Usern im Kopf. Ich arbeite logbasiert.

McAfee Consumer Products Removal tool Download

Das mal bitte ausprobieren und Rückmeldung geben.

Splasher · 01.12.2015, 19:29

Zitat:

Zitat von deeprybka

Sorry, ich habe nicht alle Fragen von 30 Usern im Kopf. Ich arbeite logbasiert.

McAfee Consumer Products Removal tool Download

Das mal bitte ausprobieren und Rückmeldung geben.

Kein Problem ^^
Nice danke habe das gemacht und jetzt funktionieren die Browser auch wieder und ich habe mehr Arbeitsspeicher wieder zur Verfügung und dann so eine einfache Lösung oh man

Vielen Dank aber ^^
Gibt es sonst noch irgendwelche Fehler bei meinem Laptop die ich beheben könnte?
Habe auch nochmal eine FRST gemacht:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:30-11-2015
durchgeführt von Simeon (Administrator) auf PC-192-168-2-11 (01-12-2015 19:23:20)
Gestartet von C:\Users\Simeon\Downloads
Geladene Profile: Simeon (Verfügbare Profile: Simeon)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Ruiware LLC) C:\Program Files (x86)\Ruiware\WinPatrol\WinPatrol.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15361.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\System32\LockAppHost.exe
() C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [191528 2014-06-04] (Geek Software GmbH)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-04] (AVAST Software)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Spotify Web Helper] => C:\Users\Simeon\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-23] (Spotify Ltd)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [WinPatrol] => C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe [1154112 2014-07-21] (Ruiware LLC)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [{517CC397-B22F-4593-8DCB-DE72CC541E9A}] => C:\Users\Simeon\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe [30668968 2015-05-23] (Riot Games)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Dropbox Update] => C:\Users\Simeon\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50143872 2015-11-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\...\Run: [GoogleChromeAutoLaunch_D0278164EA89A1039D7EE87582DA94F0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-04] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Simeon\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-09-29]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-09-29]
ShortcutTarget: Dropbox.lnk -> C:\Users\Simeon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1601235c-8be2-42ad-a516-95a4b5503b4b}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6010b956-984b-4a82-b08a-0da6920722a6}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002 -> {25ED8489-9D47-4ADD-AD9B-F4074B21DD47} URL = 
SearchScopes: HKU\S-1-5-21-2194020832-3275982821-4177272209-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-02-28] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-04] (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18] (Oracle Corporation)
BHO-x32: Kein Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-04] (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-08-12] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} -  Keine Datei

FireFox:
========
FF ProfilePath: C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default
FF Homepage: hxxps://www.malwarebytes.org/restorebrowser//?type=hp&ts=1443542688&z=7624780dbd56ba9eba34037gez8z5c8wbz0ofz8t2b&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-18] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [2014-05-26] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-06-25] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-05-25] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2014-05-25] ()
FF Plugin HKU\S-1-5-21-2194020832-3275982821-4177272209-1002: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-05-25] (Pando Networks)
FF Plugin HKU\S-1-5-21-2194020832-3275982821-4177272209-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-11-23] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-06-25] (Microsoft Corporation)
FF Extension: WOT - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-20]
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-04]
FF Extension: NoScript - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-01]
FF Extension: Video DownloadHelper - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-08-18]
FF Extension: Adblock Plus - C:\Users\Simeon\AppData\Roaming\Mozilla\Firefox\Profiles\rd6us1fq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-27]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-04]

Chrome: 
=======
CHR StartupUrls: Default -> "","hxxps://www.google.de/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8","hxxp://search.gboxapp.com/?aff=p","hxxp://www.istartsurf.com/?type=hp&ts=1437339063&z=0b86e84ee58059b9942a498gbzfc4m2c9c1t8e8c3m&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS","hxxp://www.istartsurf.com/?type=hppp&ts=1437339121&z=bbf8572756d2628d0332518g7zec7mdcfcetde8t7w&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS","hxxp://www.istartsurf.com/?type=hp&ts=1443542688&z=7624780dbd56ba9eba34037gez8z5c8wbz0ofz8t2b&from=cor&uid=TOSHIBAXMQ01ABF050_Y368SDOISXXY368SDOIS"
CHR Session Restore: Default -> ist aktiviert.
CHR Profile: C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-11-11]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-11-20]
CHR Extension: (Adblock Plus) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-25]
CHR Extension: (Steam inventory helper) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-11-23]
CHR Extension: (LoungeDestroyer) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-11-26]
CHR Extension: (Avast Online Security) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-03]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-08-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Simeon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Simeon\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx <nicht gefunden>
CHR HKU\S-1-5-21-2194020832-3275982821-4177272209-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-04]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-04] (AVAST Software)
S2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63968 2015-05-21] (CyberGhost S.R.L)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [660040 2013-01-18] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-13] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370064 2015-10-15] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-20] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-04-26] (Acer Incorporate)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-20] (Electronic Arts)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [X]
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-04] (AVAST Software)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-06-18] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 QRDCIO; C:\Windows\System32\drivers\QRDCIO.sys [9728 2009-10-20] (QUANTA)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
S3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [25088 2015-01-27] (SteelSeries ApS)
S3 sshid; C:\Windows\System32\drivers\sshid.sys [51392 2015-10-27] (SteelSeries ApS)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-01 18:47 - 2015-12-01 18:47 - 03480040 _____ (McAfee, Inc.) C:\Users\Simeon\Downloads\MCPR.exe
2015-12-01 14:44 - 2015-12-01 14:46 - 00056463 _____ C:\Users\Simeon\Downloads\Addition.txt
2015-12-01 14:42 - 2015-12-01 19:23 - 00027323 _____ C:\Users\Simeon\Downloads\FRST.txt
2015-12-01 14:41 - 2015-12-01 19:23 - 00000000 ____D C:\FRST
2015-12-01 14:41 - 2015-12-01 14:41 - 02350080 _____ (Farbar) C:\Users\Simeon\Downloads\FRST64.exe
2015-11-30 21:05 - 2015-11-30 21:06 - 00000000 ____D C:\Program Files (x86)\Opera
2015-11-30 21:05 - 2015-11-30 21:05 - 00717288 _____ (Opera Software) C:\Users\Simeon\Downloads\Opera_NI_stable (3).exe
2015-11-30 21:05 - 2015-11-30 21:05 - 00003968 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1448913947
2015-11-30 21:05 - 2015-11-30 21:05 - 00001212 _____ C:\Users\Public\Desktop\Opera.lnk
2015-11-30 21:05 - 2015-11-30 21:05 - 00001212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-11-30 20:28 - 2015-11-30 20:29 - 00717288 _____ (Opera Software) C:\Users\Simeon\Downloads\Opera_NI_stable (2).exe
2015-11-30 20:16 - 2015-11-30 20:16 - 00003968 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1448910958
2015-11-30 20:15 - 2015-11-30 20:15 - 00717288 _____ (Opera Software) C:\Users\Simeon\Downloads\Opera_NI_stable (1).exe
2015-11-30 17:56 - 2015-11-30 17:56 - 00000000 _____ C:\WINDOWS\SysWOW64\REN7F89.tmp
2015-11-29 15:44 - 2015-11-29 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-11-29 00:20 - 2015-11-29 00:22 - 41943979 _____ C:\Users\Simeon\Downloads\Izrail_-_1994_EP_MP3_Format.zip
2015-11-27 22:54 - 2015-11-27 22:54 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-11-27 16:30 - 2015-11-28 14:43 - 00250104 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2015-11-26 20:54 - 2015-11-26 20:54 - 00000000 ____D C:\Users\Simeon\AppData\Local\ActiveSync
2015-11-26 20:52 - 2015-11-26 20:52 - 00000020 ___SH C:\Users\Simeon\ntuser.ini
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-11-26 20:50 - 2015-11-26 20:50 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-11-26 20:40 - 2015-12-01 18:58 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-26 20:23 - 2015-11-26 20:23 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2015-11-26 20:23 - 2015-11-26 20:23 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-11-26 20:15 - 2015-11-26 20:27 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-11-26 20:10 - 2015-11-29 18:22 - 00000000 ____D C:\Users\Simeon
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Vorlagen
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Startmenü
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Netzwerkumgebung
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Lokale Einstellungen
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Eigene Dateien
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Druckumgebung
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Documents\Eigene Videos
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Documents\Eigene Musik
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Documents\Eigene Bilder
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\AppData\Local\Verlauf
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\AppData\Local\Anwendungsdaten
2015-11-26 20:10 - 2015-11-26 20:10 - 00000000 _SHDL C:\Users\Simeon\Anwendungsdaten
2015-11-26 20:06 - 2015-11-26 20:16 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-26 20:06 - 2015-11-26 20:06 - 00646947 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____D C:\Program Files\Realtek
2015-11-26 20:06 - 2015-11-26 20:06 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-11-26 20:06 - 2015-07-23 02:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 01059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-26 20:06 - 2015-07-23 02:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-11-26 20:06 - 2015-07-23 02:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-26 20:06 - 2015-07-22 05:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-26 20:05 - 2015-12-01 19:00 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-26 20:05 - 2015-11-26 20:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-26 20:05 - 2015-11-26 20:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-26 20:05 - 2015-11-26 20:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-11-26 20:05 - 2015-11-26 20:05 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-11-26 20:05 - 2015-11-26 20:05 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-26 20:05 - 2015-10-15 00:22 - 00105472 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-11-26 20:05 - 2015-10-15 00:22 - 00099856 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-11-26 20:04 - 2015-11-26 20:27 - 00000000 ____D C:\Program Files\Elantech
2015-11-26 20:04 - 2015-11-26 20:16 - 00000000 ____D C:\Program Files\Intel
2015-11-26 20:04 - 2015-11-26 20:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-11-26 20:03 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-26 19:59 - 2015-11-26 20:28 - 00359656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-26 19:58 - 2015-11-30 18:39 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-26 19:54 - 2015-11-26 19:54 - 24603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 13376512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 13017088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 12120064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-11-26 19:54 - 2015-11-26 19:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-11-26 19:54 - 2015-11-26 19:54 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01998848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-11-26 19:54 - 2015-11-26 19:54 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-11-26 19:54 - 2015-11-26 19:54 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-11-26 19:54 - 2015-11-26 19:54 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-11-26 19:54 - 2015-11-26 19:54 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-11-26 19:54 - 2015-11-26 19:54 - 00000000 ____D C:\Windows.old
2015-11-26 19:52 - 2015-10-29 19:43 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-26 19:52 - 2015-10-29 19:43 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-26 19:52 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-11-26 19:52 - 2015-10-29 19:25 - 06359040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-26 19:52 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-11-26 19:51 - 2015-11-26 19:51 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files\MSBuild
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-11-26 19:47 - 2015-11-26 19:47 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-11-26 19:47 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-26 19:47 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-26 19:47 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-26 19:47 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-26 19:47 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-26 19:47 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-23 12:46 - 2015-11-23 12:47 - 50202832 _____ C:\Users\Simeon\Downloads\luth-1x01.part6.rar
2015-11-23 12:46 - 2015-11-23 12:47 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part5.rar
2015-11-23 12:45 - 2015-11-23 12:46 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part4.rar
2015-11-23 12:44 - 2015-11-23 12:45 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part3.rar
2015-11-23 12:44 - 2015-11-23 12:44 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part2.rar
2015-11-23 12:43 - 2015-11-23 12:43 - 105000000 _____ C:\Users\Simeon\Downloads\luth-1x01.part1.rar
2015-11-14 13:55 - 2015-11-14 13:55 - 00001055 _____ C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-11-13 19:18 - 2015-11-26 20:27 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-12 23:50 - 2015-11-12 23:53 - 91149892 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part6.rar
2015-11-12 23:49 - 2015-11-12 23:54 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part5.rar
2015-11-12 23:49 - 2015-11-12 23:53 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part4.rar
2015-11-12 23:48 - 2015-11-12 23:53 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part3.rar
2015-11-12 23:47 - 2015-11-12 23:52 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part2.rar
2015-11-12 23:47 - 2015-11-12 23:49 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E06.720p.HDTV.x-DIMENSION.part1.rar
2015-11-12 23:42 - 2015-11-12 23:43 - 154073668 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part6 (1).rar
2015-11-12 23:39 - 2015-11-12 23:42 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part5 (1).rar
2015-11-12 23:38 - 2015-11-12 23:42 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part4 (1).rar
2015-11-12 23:37 - 2015-11-12 23:42 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part3 (1).rar
2015-11-12 23:37 - 2015-11-12 23:41 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part2 (1).rar
2015-11-12 23:36 - 2015-11-12 23:39 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part1 (2).rar
2015-11-12 23:33 - 2015-11-12 23:35 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part1 (1).rar
2015-11-12 23:20 - 2015-11-12 23:23 - 154073668 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part6.rar
2015-11-12 23:18 - 2015-11-12 23:23 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part5.rar
2015-11-12 23:17 - 2015-11-12 23:23 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part4.rar
2015-11-12 23:10 - 2015-11-12 23:12 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part3.rar
2015-11-12 23:09 - 2015-11-12 23:11 - 209715200 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part2.rar
2015-11-12 22:34 - 2015-11-12 22:38 - 85243611 _____ C:\Users\Simeon\Downloads\Arrow.S04E05.720p.HDTV.x-DIMENSION.part1.rar
2015-11-10 15:43 - 2015-11-10 15:45 - 173351164 _____ C:\Users\Simeon\Downloads\hw_final.zip
2015-11-05 01:37 - 2015-11-05 01:37 - 00006228 _____ C:\Users\Simeon\Downloads\friberg.rar
2015-11-05 01:37 - 2015-11-05 01:37 - 00003846 _____ C:\Users\Simeon\Downloads\Get_right.rar
2015-11-05 01:37 - 2015-11-05 01:37 - 00003719 _____ C:\Users\Simeon\Downloads\dupreeh.cfg
2015-11-05 01:36 - 2015-11-05 01:36 - 00032633 _____ C:\Users\Simeon\Downloads\[navi-gaming.com]guardian_new_config_2014.rar
2015-11-05 01:33 - 2015-11-05 01:33 - 00067889 _____ C:\Users\Simeon\Downloads\shox.rar
2015-11-05 01:33 - 2015-11-05 01:33 - 00067889 _____ C:\Users\Simeon\Downloads\shox (1).rar
2015-11-05 01:33 - 2015-11-05 01:33 - 00006408 _____ C:\Users\Simeon\Downloads\ScreaM_cfg_2015-09-23.zip
2015-11-05 00:22 - 2015-11-05 00:22 - 00000219 _____ C:\Users\Simeon\Desktop\Counter-Strike Global Offensive.url
2015-11-05 00:13 - 2015-11-26 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-05 00:13 - 2015-11-05 00:13 - 00001040 _____ C:\Users\Public\Desktop\Steam.lnk
2015-11-05 00:12 - 2015-11-05 00:12 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (11).exe
2015-11-04 18:48 - 2015-11-04 18:48 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-04 18:47 - 2015-11-04 18:47 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-04 14:00 - 2015-11-04 14:00 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (10).exe
2015-11-03 14:16 - 2015-11-03 14:16 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (9).exe
2015-11-03 14:15 - 2015-11-03 14:16 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (8).exe
2015-11-01 23:12 - 2015-11-01 23:13 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (7).exe
2015-11-01 23:12 - 2015-11-01 23:12 - 01476720 _____ C:\Users\Simeon\Downloads\SteamSetup (6).exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-01 19:19 - 2014-05-25 18:55 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Skype
2015-12-01 19:07 - 2015-01-05 18:27 - 00001150 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-01 19:06 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-01 19:06 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-01 19:06 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-01 19:06 - 2015-08-01 14:23 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-01 19:05 - 2015-07-19 21:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-01 19:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-01 19:03 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-01 19:00 - 2015-05-06 18:58 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-01 19:00 - 2015-01-05 18:27 - 00001146 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-01 19:00 - 2014-07-18 16:22 - 00000000 __SHD C:\Users\Simeon\IntelGraphicsProfiles
2015-12-01 18:58 - 2014-08-14 23:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-01 18:58 - 2014-08-14 23:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-01 18:58 - 2013-11-20 18:36 - 00000000 ____D C:\ProgramData\Norton
2015-12-01 18:58 - 2013-08-02 16:02 - 00000000 ____D C:\ProgramData\McAfee
2015-12-01 18:58 - 2013-08-02 16:02 - 00000000 ____D C:\Program Files\mcafee
2015-12-01 18:57 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-01 18:57 - 2014-09-26 21:50 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\TS3Client
2015-12-01 18:54 - 2015-06-18 15:43 - 00001260 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002UA.job
2015-12-01 18:50 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-12-01 17:42 - 2015-04-13 15:10 - 00000422 _____ C:\WINDOWS\Tasks\update-sys.job
2015-12-01 16:51 - 2015-04-13 15:10 - 00000422 _____ C:\WINDOWS\Tasks\update-S-1-5-21-2194020832-3275982821-4177272209-1002.job
2015-12-01 14:15 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-01 14:09 - 2014-07-24 17:07 - 00004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{84A861DF-DBA4-44D4-A2E4-B064A3A08795}
2015-11-30 21:05 - 2015-09-15 19:51 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Opera Software
2015-11-30 21:05 - 2015-09-15 19:51 - 00000000 ____D C:\Users\Simeon\AppData\Local\Opera Software
2015-11-30 20:03 - 2015-08-01 17:40 - 00000000 ____D C:\Users\Simeon\AppData\Local\MicrosoftEdge
2015-11-30 18:54 - 2015-01-09 21:08 - 00000000 ____D C:\Program Files (x86)\SpywareBlaster
2015-11-30 18:54 - 2013-11-20 18:40 - 00000000 ____D C:\ProgramData\Temp
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\WINDOWS\oem
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\ProgramData\Acer
2015-11-30 18:52 - 2013-08-02 16:04 - 00000000 ____D C:\Program Files (x86)\Acer
2015-11-30 18:48 - 2014-05-27 17:54 - 00000000 ____D C:\ProgramData\Apple
2015-11-30 18:34 - 2014-09-03 22:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-30 18:28 - 2013-11-20 18:36 - 00000000 ____D C:\ProgramData\NortonInstaller
2015-11-30 18:00 - 2015-07-20 22:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-30 17:57 - 2014-08-09 00:08 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-30 00:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-29 20:50 - 2014-05-25 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-11-29 20:02 - 2015-07-28 19:12 - 00001017 _____ C:\Users\Simeon\Desktop\Start Tor Browser.lnk
2015-11-29 17:47 - 2013-11-20 18:37 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-11-29 17:37 - 2015-10-30 07:28 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-29 13:54 - 2015-06-18 15:42 - 00001208 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002Core.job
2015-11-29 03:42 - 2015-10-23 16:01 - 00000000 ____D C:\Users\Simeon\AppData\Local\JDownloader 2.0
2015-11-29 01:19 - 2015-09-15 19:59 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-11-29 00:29 - 2014-06-13 21:07 - 00000000 ___RD C:\Users\Simeon\Desktop\blah
2015-11-29 00:28 - 2015-01-05 19:16 - 00000000 ____D C:\Users\Simeon\Desktop\Simeon Musik
2015-11-27 21:36 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-27 13:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat
2015-11-26 21:17 - 2014-05-25 18:03 - 00000000 ____D C:\Users\Simeon\AppData\Local\Packages
2015-11-26 21:12 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-26 21:04 - 2015-08-01 17:28 - 00002410 _____ C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-26 21:04 - 2014-07-18 15:35 - 00000000 __RDO C:\Users\Simeon\OneDrive
2015-11-26 20:56 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-11-26 20:53 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-26 20:53 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-26 20:53 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-26 20:52 - 2014-05-08 13:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-26 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT
2015-11-26 20:49 - 2014-07-18 14:57 - 00041913 _____ C:\WINDOWS\diagwrn.xml
2015-11-26 20:49 - 2014-07-18 14:57 - 00041913 _____ C:\WINDOWS\diagerr.xml
2015-11-26 20:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-26 20:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration
2015-11-26 20:41 - 2014-07-18 15:21 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-26 20:40 - 2015-09-15 19:59 - 00003404 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-11-26 20:40 - 2015-07-19 21:13 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-26 20:40 - 2015-07-08 15:37 - 00002668 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2015-11-26 20:40 - 2015-06-18 15:43 - 00003876 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002UA
2015-11-26 20:40 - 2015-06-18 15:42 - 00003604 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2194020832-3275982821-4177272209-1002Core
2015-11-26 20:40 - 2015-04-13 15:10 - 00003058 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-2194020832-3275982821-4177272209-1002
2015-11-26 20:40 - 2015-04-13 15:10 - 00002856 _____ C:\WINDOWS\System32\Tasks\update-sys
2015-11-26 20:40 - 2015-01-14 22:31 - 00002300 _____ C:\WINDOWS\System32\Tasks\{92FF06CD-8D86-4E45-96E7-1BE9BB85AA3D}
2015-11-26 20:40 - 2015-01-14 22:31 - 00002300 _____ C:\WINDOWS\System32\Tasks\{4B1CD73C-F434-4C00-B979-BD691703A46C}
2015-11-26 20:40 - 2015-01-05 18:27 - 00003662 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-26 20:40 - 2015-01-05 18:27 - 00003438 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-26 20:40 - 2014-11-19 23:50 - 00002676 _____ C:\WINDOWS\System32\Tasks\{FE37CCD8-5799-4A7D-9B0B-C9BB5E5B9E97}
2015-11-26 20:40 - 2014-09-17 12:54 - 00002260 _____ C:\WINDOWS\System32\Tasks\{BC94A892-74D7-420D-BF66-58B8F5654AF6}
2015-11-26 20:40 - 2014-09-03 22:44 - 00002954 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-26 20:40 - 2014-06-02 12:35 - 00002528 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2015-11-26 20:40 - 2014-05-25 18:12 - 00002940 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2194020832-3275982821-4177272209-1002
2015-11-26 20:40 - 2013-11-20 18:33 - 00002248 _____ C:\WINDOWS\System32\Tasks\Power Management
2015-11-26 20:40 - 2013-11-20 18:17 - 00001848 _____ C:\WINDOWS\System32\Tasks\Dolby Selector
2015-11-26 20:40 - 2013-08-02 16:04 - 00002238 _____ C:\WINDOWS\System32\Tasks\Launch Manager
2015-11-26 20:39 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-26 20:27 - 2015-10-30 19:44 - 00000000 ____D C:\WINDOWS\ShellNew
2015-11-26 20:27 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Help
2015-11-26 20:27 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-11-26 20:27 - 2015-10-23 16:31 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-11-26 20:27 - 2015-10-02 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-11-26 20:27 - 2015-09-30 21:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-11-26 20:27 - 2015-06-13 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
2015-11-26 20:27 - 2015-02-17 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-11-26 20:27 - 2015-01-15 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-11-26 20:27 - 2015-01-14 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-11-26 20:27 - 2015-01-10 14:41 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-11-26 20:27 - 2015-01-10 14:41 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-11-26 20:27 - 2015-01-09 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2015-11-26 20:27 - 2015-01-09 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2015-11-26 20:27 - 2015-01-06 18:53 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-11-26 20:27 - 2015-01-05 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-26 20:27 - 2014-09-03 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-11-26 20:27 - 2014-08-15 17:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
2015-11-26 20:27 - 2014-07-18 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-26 20:27 - 2014-07-11 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-11-26 20:27 - 2014-06-20 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2015-11-26 20:27 - 2014-06-14 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-26 20:27 - 2014-06-07 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-11-26 20:27 - 2014-06-02 12:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2015-11-26 20:27 - 2014-06-01 00:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2015-11-26 20:27 - 2014-05-29 15:21 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2015-11-26 20:27 - 2014-05-29 02:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-11-26 20:27 - 2014-05-25 20:08 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-26 20:27 - 2014-05-25 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-26 20:27 - 2013-08-02 16:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-26 20:23 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated
2015-11-26 20:19 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE
2015-11-26 20:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB
2015-11-26 20:19 - 2014-05-25 20:26 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-11-26 20:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-11-26 20:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-11-26 20:17 - 2015-10-30 19:36 - 00000000 ____D C:\WINDOWS\OCR
2015-11-26 20:17 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-26 20:17 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-26 20:16 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-26 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-26 20:16 - 2015-08-28 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-26 20:16 - 2015-04-28 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2015-11-26 20:16 - 2014-06-12 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaHuman
2015-11-26 20:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-11-26 20:14 - 2014-11-22 18:16 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-11-26 20:09 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-26 20:06 - 2014-10-06 22:29 - 00000000 ____D C:\Temp
2015-11-26 19:59 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-11-26 19:58 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-26 19:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-11-26 19:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-26 19:54 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-26 19:54 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-26 19:54 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-26 19:47 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-11-26 19:47 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-26 19:47 - 2015-10-30 08:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-11-26 19:47 - 2015-10-30 08:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-11-26 19:47 - 2015-10-30 08:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-11-26 19:47 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-11-26 19:47 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-11-26 19:03 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-26 01:23 - 2014-05-30 20:12 - 00000000 ____D C:\Users\Simeon\AppData\Local\Spotify
2015-11-26 01:19 - 2014-05-30 20:12 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Spotify
2015-11-25 21:50 - 2014-09-03 22:22 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-11-20 13:29 - 2014-05-25 18:55 - 00000000 ____D C:\ProgramData\Skype
2015-11-13 19:19 - 2014-09-03 22:57 - 00000000 ____D C:\Users\Simeon\AppData\Roaming\Dropbox
2015-11-11 23:40 - 2015-06-13 15:51 - 00000000 ____D C:\Users\Simeon\AppData\Local\CyberGhost
2015-11-11 23:10 - 2015-01-05 18:28 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-10 23:27 - 2015-09-30 21:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-10 23:13 - 2014-05-27 20:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-10 23:13 - 2012-07-26 06:26 - 00000199 _____ C:\WINDOWS\win.ini
2015-11-10 23:03 - 2014-05-27 20:30 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-04 18:48 - 2014-09-03 22:42 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-11-04 18:48 - 2014-09-03 22:42 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-11-04 18:47 - 2014-09-03 22:42 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-11-03 01:12 - 2015-10-30 08:26 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 01:12 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-09-22 22:47 - 2014-12-20 14:42 - 0000004 _____ () C:\Users\Simeon\AppData\Roaming\appdataFr2.bin
2015-04-13 15:10 - 2015-04-13 15:10 - 0000003 _____ () C:\Users\Simeon\AppData\Local\updater.log
2015-04-13 15:10 - 2015-10-02 23:38 - 0000424 _____ () C:\Users\Simeon\AppData\Local\UserProducts.xml
2015-11-26 20:06 - 2015-11-26 20:06 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-09-29 17:05 - 2015-09-29 17:05 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-26 19:59

==================== Ende von FRST.txt ============================

deeprybka · 01.12.2015, 22:05

Firefox updaten. Java 8 Update 45 deinstallieren und bei Bedarf mit der aktuellen Version ersetzen.

Wir haben es geschafft!

Die Logs sehen für mich im Moment sauber aus.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...

und/oder das Forum mit einer kleinen Spende unterstützen.

Es bleibt mir nur noch, Dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen.

Cleanup:
(Die Reihenfolge ist hier entscheidend)

Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken.

Falls Combofix verwendet wurde:
Combofix deinstallieren

Wichtig: Bitte Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren.
Drücke bitte die + R Taste und schreibe Combofix /Uninstall in das Ausführen-Fenster.
Klicke auf OK.
Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert.
Nun die eben deaktivierten Programme wieder aktivieren.

Alle Logs gepostet? Dann lade Dir bitte

DelFix herunter.

Schließe alle offenen Programme.
Starte die delfix.exe mit einem Doppelklick.
Setze vor jede Funktion ein Häkchen.
Klicke auf Start.

Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.

Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:

Browser
Java
Flash-Player
PDF-Reader

Sicherheitslücken (z.B. hier) in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.

Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank.

Meine Kauf-Empfehlung:

ESET Smart Security

Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware scannen.

Optional:

NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.

Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.

Lade Software von einem sauberen Portal wie

.
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner .

Abschließend noch ein paar grundsätzliche Bemerkungen:
Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.

Splasher · 02.12.2015, 17:57

Alles klar Vielen Dank

Muss ich jetzt auch noch DelFix verwenden jetzt oder nicht?

deeprybka · 02.12.2015, 18:54

Gerne. Ja, DelFix ist unser Aufräumprogramm.

01.12.2015, 18:08	#5
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Windows 10: Browser funktionieren nicht mehr richtig Hallo, bitte erstmal alles von McAfee deinstallieren... __________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

02.12.2015, 18:54	#11
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Windows 10: Browser funktionieren nicht mehr richtig Gerne. Ja, DelFix ist unser Aufräumprogramm. __________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Windows 10: Browser funktionieren nicht mehr richtig

Plagegeister aller Art und deren Bekämpfung: Windows 10: Browser funktionieren nicht mehr richtig