|
Log-Analyse und Auswertung: Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll"Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
04.12.2015, 11:37 | #1 |
| Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Hallo Zusammen, Details zur Fehlermeldung: Beim Starten erscheint eine "RunDLL"-Fehlermeldung mit folgenden Text "Problem beim Starten von C:\ProgramData\SecurityUtility\SecurityUtility32.dll Das angegebene Modul wurde nicht gefunden. Außerdem stürtzt Google Chrome ab bzw. es startet garnicht erst. Ich habe den Defender durchlaufen lassen der auch einiges gefunden und gelöscht hat nur leider besteht dieser Fehler immer noch Und wie kann er befallen worden sein? Hand aufs Herz, ich war auf keiner unseriösen Seite, habe als Antiviren-Programm Standard von Windows 10 Betriebssystem ist Windows 10 und ich habe einen Adon-Blocker. Ich habe auch schon einen Scan mit Farbar unternomen da ich es schon in einem anderem Post gelesen habe. Aber wie geht es weiter??? Vielen dank im voraus. Gruß Roman |
04.12.2015, 11:41 | #2 |
/// the machine /// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke. So funktioniert es: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
04.12.2015, 12:47 | #3 |
| Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" FRST Logfile:
__________________Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:01-12-2015 durchgeführt von Eule (Administrator) auf EULE-VAIO (04-12-2015 11:22:40) Gestartet von C:\Users\Eule\Downloads Geladene Profile: Eule (Verfügbare Profile: Eule) Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (DEVGURU Co., LTD.) E:\Samsung Kies\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (SecurityUtility) C:\ProgramData\SecurityUtility\SecurityUtility.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe (SecurityUtility) C:\ProgramData\SecurityUtility\SecurityUtility.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Skype Technologies S.A.) E:\Skype\Phone\Skype.exe (Samsung Electronics Co., Ltd.) E:\Samsung Kies\Kies\KiesTrayAgent.exe konnte nicht auf den Prozess zugreifen -> chrome.exe konnte nicht auf den Prozess zugreifen -> chrome.exe konnte nicht auf den Prozess zugreifen -> chrome.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM-x32\...\Run: [DivXMediaServer] => E:\Programs\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-11-17] (DivX, LLC) HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] () HKLM-x32\...\Run: [AveoSTI.exe] => C:\Program Files (x86)\AVEO USB2.0 PC Camera(U2HGCV3P31048)\AveoSTI.exe [32768 2010-12-02] (AVEO) HKLM-x32\...\Run: [KiesTrayAgent] => E:\Samsung Kies\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.) HKLM-x32\...\Run: [mpck_en_004090142] => [X] Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-305981025-81508073-3388003974-1000\...\Run: [DAEMON Tools Lite] => E:\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-305981025-81508073-3388003974-1000\...\Run: [Skype] => E:\Skype\Phone\Skype.exe [50509440 2015-11-17] (Skype Technologies S.A.) AppInit_DLLs: C:\ProgramData\SecurityUtility\SecurityUtility64.dll => Keine Datei ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft) CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 195.168.2.1 Tcpip\..\Interfaces\{b2612577-b758-4e79-b3f4-6200d1a90d12}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{C5D80117-735B-4A02-8F98-D9025A777E53}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{e33f5f25-b76f-42c6-82a2-5edc0bd18f8c}: [DhcpNameServer] 195.168.2.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130921327636048532&GUID=68E6370B-9B65-4B31-BE7D-BFBE0812BAE7 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-305981025-81508073-3388003974-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130921327636092376&GUID=68E6370B-9B65-4B31-BE7D-BFBE0812BAE7 HKU\S-1-5-21-305981025-81508073-3388003974-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-305981025-81508073-3388003974-1000 -> {D32E8790-E434-473E-9014-488621EF1B9C} URL = hxxp://www-searching.com/s.ashx?prd=opensearch&q={searchTerms}&s=FBCzgutbl343,e30e0848-d83a-44ad-913a-30d033f60b17, BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-12] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-12] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> E:\Programs\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> E:\Programs\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> E:\Programs\VLC\npvlc.dll [2014-07-23] (VideoLAN) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.de/?gfe_rd=cr&ei=xYZJVsnBGY-r8wfY0beoDw&gws_rd=ssl" CHR Profile: C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Magic Actions for YouTube™) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-09-28] CHR Extension: (Google Drive) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-09] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ACHTUNG CHR Extension: (YouTube) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28] CHR Extension: (Google-Suche) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10] CHR Extension: (Google Docs Offline) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-23] CHR Extension: (AdBlock) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-03-07] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ACHTUNG CHR Extension: (Skype Click to Call) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-11-23] CHR Extension: (Google Wallet) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-07] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ACHTUNG CHR Extension: (Click&Clean App) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-11-10] CHR Extension: (Google Mail) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) S2 SkypeUpdate; E:\Skype\Updater\Updater.exe [327296 2015-07-09] (Skype Technologies) R2 ss_conn_service; E:\Samsung Kies\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) S3 TunngleService; E:\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH) [Datei ist nicht signiert] R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.) S3 AVEO; C:\Windows\system32\DRIVERS\AVEOdcnt.sys [346496 2012-02-08] (AVEO) R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-10-30] (Microsoft Corporation) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-10] (Disc Soft Ltd) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2069-11-22 16:48 - 2005-11-30 17:06 - 07254894 _____ C:\Users\Eule\Downloads\speed.exe 2069-11-22 16:48 - 2005-11-15 10:56 - 00380928 ____R C:\Users\Eule\Downloads\server.dll 2015-12-04 11:22 - 2015-12-04 11:23 - 00012510 _____ C:\Users\Eule\Downloads\FRST.txt 2015-12-04 11:22 - 2015-12-04 11:22 - 02350080 _____ (Farbar) C:\Users\Eule\Downloads\FRST64.exe 2015-12-04 11:22 - 2015-12-04 11:22 - 00000000 ____D C:\FRST 2015-12-04 08:30 - 2015-12-04 08:30 - 00254408 _____ C:\Users\Eule\Downloads\DriverTurboSetup.exe 2015-12-03 00:26 - 2015-12-03 00:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2015-12-03 00:03 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-12-03 00:03 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:41 - 01284960 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-12-03 00:03 - 2015-11-22 11:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-12-03 00:03 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-12-03 00:03 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-12-03 00:03 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-12-03 00:03 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-12-03 00:03 - 2015-11-22 10:56 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-12-03 00:03 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll 2015-12-03 00:03 - 2015-11-22 10:52 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-12-03 00:03 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-12-03 00:03 - 2015-11-22 10:43 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll 2015-12-03 00:03 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2015-12-03 00:03 - 2015-11-22 10:41 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-12-03 00:03 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-12-03 00:03 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2015-12-03 00:03 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2015-12-03 00:03 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2015-12-03 00:03 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2015-12-03 00:03 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 13380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-12-03 00:03 - 2015-11-22 10:30 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-12-03 00:03 - 2015-11-22 10:30 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-12-03 00:03 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-12-03 00:03 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-12-03 00:03 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2015-12-03 00:03 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-12-03 00:03 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 12124672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2015-12-03 00:03 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2015-12-03 00:03 - 2015-11-22 10:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-12-03 00:03 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2015-12-03 00:03 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-12-03 00:03 - 2015-11-22 10:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll 2015-12-03 00:03 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2015-12-03 00:02 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-12-03 00:02 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-12-03 00:02 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll 2015-12-03 00:02 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys 2015-12-03 00:02 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll 2015-12-03 00:02 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll 2015-12-03 00:02 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-12-03 00:02 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-12-03 00:02 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-12-03 00:02 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll 2015-12-03 00:02 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2015-12-03 00:02 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-12-03 00:02 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys 2015-12-03 00:02 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-12-03 00:02 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-12-03 00:02 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2015-12-03 00:02 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll 2015-12-03 00:02 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll 2015-12-03 00:02 - 2015-11-22 10:47 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2015-12-03 00:02 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2015-12-03 00:02 - 2015-11-22 10:46 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-12-03 00:02 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-12-03 00:02 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll 2015-12-03 00:02 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-12-03 00:02 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-12-03 00:02 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2015-12-03 00:02 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll 2015-12-03 00:02 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-12-03 00:02 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2015-12-03 00:02 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-12-03 00:02 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-12-03 00:02 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2015-12-03 00:02 - 2015-11-22 10:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-12-03 00:02 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2015-12-03 00:02 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2015-12-03 00:02 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-12-02 23:41 - 2015-12-02 23:41 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\ChromeSetup (2).exe 2015-12-02 23:34 - 2015-12-02 23:41 - 00002320 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-12-02 23:34 - 2015-12-02 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-02 23:32 - 2015-12-02 23:32 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\ChromeSetup (1).exe 2015-12-02 10:59 - 2015-12-02 10:59 - 00120364 _____ C:\Users\Eule\Downloads\Umsatzdetails_Konto019872100_EUR_02-12-2015_1059.pdf 2015-12-02 10:59 - 2015-12-02 10:59 - 00120364 _____ C:\Users\Eule\Desktop\Umsatzdetails_Konto019872100_EUR_02-12-2015_1059.pdf 2015-12-02 00:56 - 2015-12-02 00:56 - 00000000 ____D C:\Users\Eule\AppData\Local\ActiveSync 2015-12-02 00:54 - 2015-12-02 00:54 - 00000020 ___SH C:\Users\Eule\ntuser.ini 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-12-01 17:10 - 2015-12-04 11:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-12-01 17:03 - 2015-12-01 17:03 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-01 17:00 - 2015-12-01 17:00 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2015-12-01 16:58 - 2015-12-02 11:29 - 00000000 ____D C:\Users\Eule 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Vorlagen 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Startmenü 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Netzwerkumgebung 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Lokale Einstellungen 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Eigene Dateien 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Druckumgebung 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Videos 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Musik 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Bilder 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Local\Verlauf 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Local\Anwendungsdaten 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Anwendungsdaten 2015-12-01 16:54 - 2015-12-01 16:54 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-12-01 16:54 - 2015-12-01 16:54 - 00000000 ____D C:\Program Files\Common Files\Atheros 2015-12-01 16:51 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-12-01 16:49 - 2015-12-01 17:05 - 00219576 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-12-01 16:48 - 2015-12-01 18:00 - 00000000 ___DC C:\WINDOWS\Panther 2015-12-01 16:45 - 2015-12-01 16:45 - 00000000 ____D C:\Windows.old 2015-12-01 16:44 - 2015-12-01 16:44 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2015-12-01 16:44 - 2015-12-01 16:44 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2015-12-01 16:44 - 2015-12-01 16:44 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2015-12-01 16:43 - 2015-10-29 19:43 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2015-12-01 16:43 - 2015-10-29 19:43 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2015-12-01 16:43 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2015-12-01 16:43 - 2015-10-29 19:25 - 06359040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2015-12-01 16:43 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2015-12-01 16:42 - 2015-12-01 16:42 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files\MSBuild 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-12-01 16:39 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-12-01 16:39 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-12-01 16:39 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-01 12:49 - 2015-12-01 12:49 - 01164834 _____ C:\Users\Eule\Downloads\Stadtwerke Lübeck 31.11.2015.pdf 2015-11-24 23:11 - 2015-11-25 08:07 - 00000000 ____D C:\Users\Eule\Desktop\Bewerbung 2015-11-23 11:47 - 2015-11-23 11:47 - 00111419 _____ C:\Users\Eule\Downloads\CCF23112015_0008.pdf 2015-11-23 10:23 - 2015-11-23 10:23 - 00000000 ____D C:\Users\Eule\Tracing 2015-11-23 10:18 - 2015-12-04 11:11 - 00000000 ____D C:\Users\Eule\AppData\Roaming\Skype 2015-11-23 10:18 - 2015-12-01 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-11-23 10:18 - 2015-11-23 10:24 - 00000000 ____D C:\Program Files (x86)\Skype 2015-11-23 10:18 - 2015-11-23 10:18 - 00002602 _____ C:\Users\Public\Desktop\Skype.lnk 2015-11-23 10:18 - 2015-11-23 10:18 - 00000000 ____D C:\Users\Eule\AppData\Local\Skype 2015-11-23 10:18 - 2015-11-23 10:18 - 00000000 ____D C:\ProgramData\Skype 2015-11-23 10:16 - 2015-11-23 10:16 - 01504384 _____ (Skype Technologies S.A.) C:\Users\Eule\Downloads\SkypeSetup.exe 2015-11-20 07:38 - 2015-11-20 07:38 - 00002233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2015-11-20 07:38 - 2015-11-20 07:38 - 00000000 ____D C:\Users\Eule\AppData\LocalLow\Google 2015-11-20 07:37 - 2015-11-20 07:37 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\GoogleEarthSetup.exe 2015-11-16 09:14 - 2015-11-16 09:14 - 00000000 ____D C:\ProgramData\Radio 2015-11-12 17:16 - 2015-11-12 17:16 - 00000000 ____D C:\ProgramData\Browser 2015-11-12 09:05 - 2015-12-01 17:10 - 00002244 _____ C:\WINDOWS\System32\Tasks\{D3CF40F7-F7A0-4CC7-94D4-E1B97F88E46B} 2015-11-12 09:01 - 2015-12-01 17:10 - 00002226 _____ C:\WINDOWS\System32\Tasks\{24F0F9A6-DE8A-4FD7-944B-F2BDB2FCCAEB} 2015-11-12 08:59 - 2015-11-24 14:20 - 00000000 ____D C:\ProgramData\BWMiniProB 2015-11-12 08:59 - 2015-11-12 08:59 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat 2015-11-12 08:58 - 2015-11-12 08:58 - 00000000 ____D C:\Users\Public\Documents\Guid 2015-11-12 08:58 - 2015-11-12 08:58 - 00000000 ____D C:\Users\Public\Documents\Baidu 2015-11-12 08:37 - 2015-11-19 09:53 - 00000000 ____D C:\ProgramData\Istsikre 2015-11-12 08:30 - 2015-12-01 17:10 - 00002634 _____ C:\WINDOWS\System32\Tasks\IBUpd 2015-11-12 08:28 - 2015-12-04 11:10 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-12 08:28 - 2015-12-04 11:09 - 00000384 _____ C:\WINDOWS\Tasks\JZBRB1.job 2015-11-12 08:28 - 2015-12-04 10:49 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-12 08:28 - 2015-12-02 06:44 - 00004196 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-11-12 08:28 - 2015-12-02 06:44 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-11-12 08:28 - 2015-12-01 17:10 - 00002408 _____ C:\WINDOWS\System32\Tasks\JZBRB1 2015-11-12 08:28 - 2015-11-12 09:00 - 00000000 ____D C:\Users\Eule\AppData\Local\SearchModule 2015-11-12 08:28 - 2015-11-12 08:54 - 00000008 _____ C:\END 2015-11-12 08:27 - 2015-11-12 09:03 - 00000000 ____D C:\ProgramData\SecurityUtility 2015-11-12 08:27 - 2015-11-12 08:27 - 00000000 ____D C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8 2015-11-11 07:36 - 2015-11-11 07:36 - 00000000 ____D C:\Users\Eule\AppData\Local\MicrosoftEdge 2015-11-10 12:03 - 2015-11-10 12:03 - 00000000 ____D C:\Users\Eule\AppData\Local\NetworkTiles 2015-11-10 08:40 - 2015-11-10 08:40 - 00000000 ____D C:\Users\Eule\AppData\Local\PeerDistRepub 2015-11-10 07:56 - 2015-11-10 07:56 - 00260896 _____ C:\Users\Eule\Downloads\Zertifikat Barakademie.pdf 2015-11-10 07:56 - 2015-11-10 07:56 - 00000166 _____ C:\Users\Eule\Downloads\friedrichlautersbacher.vcf ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-04 11:22 - 2015-10-30 07:28 - 00000000 ____D C:\Windows 2015-12-04 11:16 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat 2015-12-04 11:16 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat 2015-12-04 11:16 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF 2015-12-04 11:16 - 2015-10-05 11:09 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-12-04 11:08 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-12-04 11:08 - 2015-02-15 00:06 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-12-04 08:30 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-04 08:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-12-04 08:27 - 2014-04-26 12:02 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{189C871E-8F8F-44B6-B652-C1458D133B70} 2015-12-03 13:08 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-12-03 00:26 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-02 23:34 - 2015-04-10 22:45 - 00000000 ____D C:\Program Files (x86)\Google 2015-12-02 04:39 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat 2015-12-02 01:15 - 2014-04-25 13:03 - 00000000 ____D C:\Users\Eule\AppData\Local\Packages 2015-12-02 01:12 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow 2015-12-02 00:59 - 2015-10-05 11:22 - 00002386 _____ C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-12-02 00:59 - 2014-04-25 13:05 - 00000000 __RDO C:\Users\Eule\SkyDrive 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-12-02 00:54 - 2015-09-10 06:44 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-12-01 17:17 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache 2015-12-01 17:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-12-01 17:15 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT 2015-12-01 17:15 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-12-01 17:15 - 2014-04-25 12:41 - 00019053 _____ C:\WINDOWS\diagwrn.xml 2015-12-01 17:15 - 2014-04-25 12:41 - 00019053 _____ C:\WINDOWS\diagerr.xml 2015-12-01 17:14 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration 2015-12-01 17:10 - 2015-10-05 11:09 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-12-01 17:10 - 2015-07-15 09:28 - 00002268 _____ C:\WINDOWS\System32\Tasks\{0F7B0A38-1513-4AA7-B6A6-EFBC03773DF4} 2015-12-01 17:10 - 2015-02-23 16:40 - 00002252 _____ C:\WINDOWS\System32\Tasks\{89D7999A-4350-432D-BFC9-F318921AFB3E} 2015-12-01 17:10 - 2015-02-15 05:59 - 00002252 _____ C:\WINDOWS\System32\Tasks\{2C36D4C8-991C-44FA-8AF8-5136611DC48C} 2015-12-01 17:10 - 2015-02-15 00:06 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-12-01 17:10 - 2015-02-09 23:02 - 00002180 _____ C:\WINDOWS\System32\Tasks\{AE8A5378-B576-4A53-A083-13161B907501} 2015-12-01 17:10 - 2015-02-04 18:27 - 00002282 _____ C:\WINDOWS\System32\Tasks\{DC9CDB18-94AD-4A35-A6AA-4DAB3FD25CF4} 2015-12-01 17:10 - 2014-04-26 12:06 - 00002934 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-305981025-81508073-3388003974-1000 2015-12-01 17:08 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries 2015-12-01 17:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-12-01 17:04 - 2015-07-15 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audiograbber 2015-12-01 17:04 - 2015-03-30 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2015-12-01 17:04 - 2015-02-10 03:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2015-12-01 17:04 - 2015-02-09 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2015-12-01 17:04 - 2015-02-04 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quake 4 2015-12-01 17:04 - 2015-02-04 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-01 17:04 - 2015-01-23 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2015-12-01 17:04 - 2015-01-19 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vokabel Trainer 2015-12-01 17:04 - 2014-08-09 12:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-12-01 17:04 - 2014-06-11 13:10 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0 2015-12-01 17:04 - 2014-06-08 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 PC Camera 2015-12-01 17:04 - 2014-06-06 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX 2015-12-01 17:04 - 2014-05-02 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electric Sheep 2015-12-01 17:03 - 2015-07-10 10:47 - 00000000 ____D C:\Users\Default.migrated 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2015-12-01 17:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2015-12-01 17:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2015-12-01 17:00 - 2015-10-30 19:36 - 00000000 ____D C:\WINDOWS\OCR 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-12-01 17:00 - 2015-02-14 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-12-01 17:00 - 2014-08-03 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2015-12-01 17:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS 2015-12-01 17:00 - 2011-03-15 03:36 - 00000000 ___RD C:\Users\Public\Recorded TV 2015-12-01 16:57 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-12-01 16:49 - 2015-10-30 19:58 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2015-12-01 16:48 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2015-12-01 16:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-12-01 16:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning 2015-12-01 16:45 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-12-01 16:45 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-12-01 16:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-12-01 16:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-12-01 16:27 - 2015-10-05 11:23 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER 2015-12-01 16:21 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT 2015-11-12 08:40 - 2014-08-03 15:56 - 00000000 ____D C:\ProgramData\EPSON 2015-11-12 08:24 - 2014-05-17 21:58 - 00000000 __SHD C:\Users\Eule\AppData\Local\EmieUserList 2015-11-12 08:24 - 2014-05-17 21:58 - 00000000 __SHD C:\Users\Eule\AppData\Local\EmieSiteList 2015-11-11 06:30 - 2014-04-26 19:37 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-11-09 20:41 - 2015-10-05 11:18 - 00000000 ____D C:\Users\Eule\AppData\Local\Comms ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-03-24 22:53 - 2015-04-10 17:13 - 0000020 _____ () C:\Users\Eule\AppData\Roaming\appdataFr3.bin 2015-03-07 22:04 - 2015-03-07 22:05 - 0000402 _____ () C:\Users\Eule\AppData\Local\Temp-log.txt 2015-07-22 10:50 - 2015-07-22 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{08DF26AC-81F4-445A-96B2-42D749D61A80} 2015-07-19 10:50 - 2015-07-19 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{0E4A4771-ADD6-42DA-B8B9-5E93B550544B} 2015-08-30 12:17 - 2015-08-30 12:17 - 0000000 _____ () C:\Users\Eule\AppData\Local\{1BF58C7F-533D-47E1-9B25-35508568B59E} 2015-06-16 12:24 - 2015-06-16 12:24 - 0000000 _____ () C:\Users\Eule\AppData\Local\{4062E831-40F8-4687-857A-359ED083B566} 2015-06-10 14:59 - 2015-06-10 14:59 - 0000000 _____ () C:\Users\Eule\AppData\Local\{475B16AB-8A54-407A-902B-E36FE667607B} 2015-07-03 16:55 - 2015-07-03 16:55 - 0000000 _____ () C:\Users\Eule\AppData\Local\{55689E5B-BFB3-4C65-9E9F-79EAA65AAD23} 2015-07-20 10:50 - 2015-07-20 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{6DA5D6D2-3B2E-4887-83E4-944ACBDD2F9B} 2015-07-24 10:50 - 2015-07-24 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{79C4129A-F14C-4C72-A11A-459F37E358C3} 2015-07-21 10:50 - 2015-07-21 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{808072FD-1866-4D0D-A50B-67E2E8DEEFE5} 2015-06-17 14:14 - 2015-06-17 14:14 - 0000000 _____ () C:\Users\Eule\AppData\Local\{976EE474-195D-4BCE-828B-860C42774A06} 2015-06-18 14:50 - 2015-06-18 14:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{A50B3F8C-8977-4C40-B26F-0043AB53FE88} 2015-07-23 10:50 - 2015-07-23 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{B2F1A719-2CAF-450A-852C-4CC9CB888645} 2015-06-26 15:25 - 2015-06-26 15:25 - 0000000 _____ () C:\Users\Eule\AppData\Local\{C6A0ABCB-87AA-40A4-8536-A9F7E5C65D55} 2015-06-25 15:25 - 2015-06-25 15:25 - 0000000 _____ () C:\Users\Eule\AppData\Local\{CE097F07-9A2C-4D95-84B1-F21C7ABE1B06} 2015-06-20 05:54 - 2015-06-20 05:54 - 0000000 _____ () C:\Users\Eule\AppData\Local\{D977C658-BA56-4F1B-90A1-B4B6EA129372} 2015-06-21 13:41 - 2015-06-21 13:41 - 0000000 _____ () C:\Users\Eule\AppData\Local\{F425BFFD-41D6-4BF8-8DE5-CAC629AB2920} 2015-11-12 08:59 - 2015-11-12 08:59 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-01 16:49 ==================== Ende von FRST.txt ============================ FRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:01-12-2015 durchgeführt von Eule (2015-12-04 11:24:09) Gestartet von C:\Users\Eule\Downloads Windows 10 Pro (X64) (2015-12-01 16:16:09) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-305981025-81508073-3388003974-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-305981025-81508073-3388003974-503 - Limited - Disabled) Eule (S-1-5-21-305981025-81508073-3388003974-1000 - Administrator - Enabled) => C:\Users\Eule Gast (S-1-5-21-305981025-81508073-3388003974-501 - Limited - Disabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated) Audiograbber 1.83 SE (HKLM-x32\...\Audiograbber) (Version: 1.83 SE - Audiograbber Deutschland) AVEO USB2.0 PC Camera(U2HGCV3P31048) (HKLM-x32\...\{3860C309-C642-49EE-B32D-8C4B462BC7BE}) (Version: 2.0.0.5 - USB2.0 PC Camera) Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft) Command & Conquer 3 (HKLM-x32\...\{B0C30E93-D3D9-4F04-A2AC-54749B573275}) (Version: 1.00.0000 - Ihr Firmenname) CS16 Full v32.1 Non-Steam (HKLM-x32\...\CS16 Full v32.1 Non-Steam) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.64 - DivX, LLC) Electric Sheep 2.7b34c (HKLM-x32\...\Electric Sheep) (Version: 2.7b34c - Electricsheep) EPSON S22 Series Printer Uninstall (HKLM\...\EPSON S22 Series) (Version: - SEIKO EPSON Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.5.0 - LIGHTNING UK!) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation) Quake 4(TM) (HKLM-x32\...\InstallShield_{152B782A-05F3-48EC-9AAC-4D3EB68D9E20}) (Version: 1.0 - Activision) Quake 4(TM) (x32 Version: 1.0 - Activision) Hidden Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.) Samsung Kies (x32 Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.) Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.2 - Tunngle.net GmbH) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) Vokabel Trainer 5 (HKLM-x32\...\{5E0D2061-86AB-4B83-A671-A0BF3FF1537B}_is1) (Version: - Manuel Wäschle) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-305981025-81508073-3388003974-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Eule\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe (Microsoft Corporation) ==================== Wiederherstellungspunkte ========================= ACHTUNG: Systemwiederherstellung ist deaktiviert ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {05077C4B-1F6A-4532-B386-E1BA5DE2B14F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {051EA9A7-0D12-40D4-A5F0-6FCF8C43B69E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG Task: {1D1D8466-3F4F-469A-932A-BC0107E762FA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {2821D35F-8609-4B42-92F1-2DF653FDD012} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-20] (Google Inc.) Task: {3D3C3779-9A98-4FFA-8B62-FCCCEF0CE2BA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG Task: {433E10C7-348F-4711-9D59-05B5009412D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-20] (Google Inc.) Task: {58DED212-4231-4100-9714-7C9674D4F637} - System32\Tasks\IBUpd => C:\Users\Eule\AppData\Local\BrowserAir\Application\updater.exe Task: {719598B2-CE39-4BB5-997C-964915DCC059} - System32\Tasks\{2C36D4C8-991C-44FA-8AF8-5136611DC48C} => pcalua.exe -a E:\Command&Conquer\CNC3.exe -d E:\Command&Conquer Task: {759A0B5E-42E5-4EFF-9137-318C9D383850} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {A63AA949-B80F-4AEE-ABC8-29B61A9B58A3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {B173CE16-1FCB-4AB0-A94D-B7CE7DA0C891} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {B69B0FFF-06FB-4416-9061-019311ED0901} - System32\Tasks\{0F7B0A38-1513-4AA7-B6A6-EFBC03773DF4} => pcalua.exe -a G:\Programme\Downloads\agsetup183se.exe -d G:\Programme\Downloads Task: {C1455F45-BCD5-4400-B2CA-95188D24B8F4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {C3D1766E-3E62-4E1E-985D-2BA45838006B} - System32\Tasks\{24F0F9A6-DE8A-4FD7-944B-F2BDB2FCCAEB} => pcalua.exe -a C:\ProgramData\SecurityUtility\uninstall.exe Task: {C59180B4-E4DE-4E9A-A0F3-81FDB24FBB55} - System32\Tasks\{DC9CDB18-94AD-4A35-A6AA-4DAB3FD25CF4} => pcalua.exe -a "E:\games\Crazy Machines\CrazyMachines.exe" -d "E:\games\Crazy Machines" Task: {D11AF0FB-5781-424D-BFD9-3099676D3036} - System32\Tasks\{89D7999A-4350-432D-BFC9-F318921AFB3E} => pcalua.exe -a E:\Command&Conquer\CNC3.exe -d E:\Command&Conquer Task: {D4805B4E-63AA-4D23-BBE8-31B088B4277B} - System32\Tasks\{D3CF40F7-F7A0-4CC7-94D4-E1B97F88E46B} => pcalua.exe -a C:\ProgramData\WebShield\uninstall.exe -c /kb=y /ic=1 Task: {D93B4D4D-238B-4B2E-B0EB-39733F6EB53A} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG Task: {EEF36233-1891-4D0C-8954-D4A744D4684B} - System32\Tasks\{AE8A5378-B576-4A53-A083-13161B907501} => pcalua.exe -a F:\AutoRun.exe -d F:\ Task: {F2EFFA9F-4BEC-4B1E-B488-AC3A65931B9E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-12] (Adobe Systems Incorporated) Task: {F6018F4D-64CC-4BCC-B964-229A733B661D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {F6D01256-A57B-46AA-9211-9ECEBD2B18F6} - System32\Tasks\JZBRB1 => C:\ProgramData\SecurityUtility\SecurityUtility.exe [2015-11-05] (SecurityUtility) <==== ACHTUNG Task: {F8FBA32F-2EB2-432A-8D8D-F34CB6F37717} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-27] (Microsoft Corporation) Task: {FC32E525-B46E-4A42-A394-2A5F1DEF09E0} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\JZBRB1.job => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ACHTUNG ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-12-03 00:03 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-12-02 01:33 - 2015-12-02 01:34 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2015-10-30 08:17 - 2015-10-30 08:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2015-10-30 08:17 - 2015-10-30 08:17 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-12-03 00:02 - 2015-11-22 10:23 - 08005632 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-12-03 00:03 - 2015-11-22 10:19 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-12-03 00:03 - 2015-11-22 10:21 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-06-01 20:00 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll 2015-12-02 01:33 - 2015-12-02 01:34 - 00152064 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2015-12-02 01:33 - 2015-12-02 01:34 - 18906624 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2015-11-14 03:30 - 2015-11-14 03:30 - 00147136 ____R () E:\Skype\Phone\ssScreenVVS2.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-305981025-81508073-3388003974-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Eule\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\0 (1).jpg DNS Servers: 195.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKLM\...\StartupApproved\Run32: => "AveoSTI.exe" HKLM\...\StartupApproved\Run32: => "DivXMediaServer" HKLM\...\StartupApproved\Run32: => "DivXUpdate" HKU\S-1-5-21-305981025-81508073-3388003974-1000\...\StartupApproved\Run: => "EPLTarget\P0000000000000000" HKU\S-1-5-21-305981025-81508073-3388003974-1000\...\StartupApproved\Run: => "OneDrive" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{45E65E44-F101-45A1-83EF-F048BAD4464B}] => (Allow) E:\Skype\Phone\Skype.exe FirewallRules: [{28D46A94-D8A5-4FEA-B3B6-68E918BBF042}] => (Allow) C:\Users\Eule\AppData\Local\BrowserAir\Application\BrowserAir.exe FirewallRules: [{288CB8DD-5AB9-467D-9596-3EE3EDD3E884}] => (Allow) C:\Users\Eule\AppData\Local\BoBrowser\Application\bobrowser.exe FirewallRules: [TCP Query User{5D1F0B5E-AB56-4E2B-AD5B-61547D8EDC9C}E:\quake41\quake4ded.exe] => (Allow) E:\quake41\quake4ded.exe FirewallRules: [UDP Query User{879E70B1-9F82-45BC-A628-F7C7EB75E272}E:\quake41\quake4ded.exe] => (Allow) E:\quake41\quake4ded.exe FirewallRules: [TCP Query User{AC8CA992-421E-4322-AF6D-8C9963633BDD}E:\quake41\quake4.exe] => (Allow) E:\quake41\quake4.exe FirewallRules: [UDP Query User{E7F17EAE-9E9E-4AB3-BDC9-F1F20226418A}E:\quake41\quake4.exe] => (Allow) E:\quake41\quake4.exe FirewallRules: [{99D526AC-C664-48FA-9F00-7143A1A0A25A}] => (Allow) E:\Command&Conquer\RetailExe\1.9\cnc3game.dat FirewallRules: [TCP Query User{BB81EEB6-410E-4935-8C4B-0B78C8D69278}E:\cs\hl.exe] => (Allow) E:\cs\hl.exe FirewallRules: [UDP Query User{6D1025AF-C9B0-45DA-828A-E3B7AD244DFF}E:\cs\hl.exe] => (Allow) E:\cs\hl.exe FirewallRules: [{8DEDCED4-5F66-4D46-853C-DEF3038319FB}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{0E2CFD43-1BEA-4271-8145-26ADBDBD3001}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{24ADB18B-3180-4D5A-BF49-CA6A3E679B0F}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{43913619-C3A4-4026-B7BF-F243F14C1079}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{C63C9982-2571-4A6A-A492-6546340F2E4B}] => (Allow) E:\Tunngle\TnglCtrl.exe FirewallRules: [{7EDED97C-032F-4237-A171-D1485BEF8F23}] => (Allow) E:\Tunngle\TnglCtrl.exe FirewallRules: [{C4D4D22E-9834-4B72-B708-F99F1739ED44}] => (Allow) E:\Tunngle\Tunngle.exe FirewallRules: [{AE3EA113-12F9-40CE-8842-77D89844B9B9}] => (Allow) E:\Tunngle\Tunngle.exe FirewallRules: [{970C8518-98CA-4ACB-A6C7-A2CD1854A46B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (12/04/2015 11:12:34 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x1b5c Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:12:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x608 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:11:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x1704 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:11:48 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x13d4 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:08:40 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x1268 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:08:27 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0xab8 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:08:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x1b78 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:08:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0xdd4 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:08:06 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x19f4 Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Error: (12/04/2015 11:08:03 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 47.0.2526.73, Zeitstempel: 0x5653f7b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000103 ID des fehlerhaften Prozesses: 0x172c Startzeit der fehlerhaften Anwendung: 0xchrome.exe0 Pfad der fehlerhaften Anwendung: chrome.exe1 Pfad des fehlerhaften Moduls: chrome.exe2 Berichtskennung: chrome.exe3 Vollständiger Name des fehlerhaften Pakets: chrome.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5 Systemfehler: ============= Error: (12/04/2015 11:08:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenzugriff_5ae19e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 11:08:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenspeicher _5ae19e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 11:08:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Kontaktdaten_5ae19e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 11:08:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Synchronisierungshost_5ae19e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 11:08:48 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (12/04/2015 10:33:23 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenzugriff_351b2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 10:33:23 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenspeicher _351b2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 10:33:23 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Kontaktdaten_351b2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 10:33:23 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Synchronisierungshost_351b2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/04/2015 10:33:22 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar CodeIntegrity: =================================== Date: 2015-12-04 08:44:59.285 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-03 13:10:13.798 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-02 11:11:50.703 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-01 17:10:05.770 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-01 17:10:04.586 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-01 16:51:22.064 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz Prozentuale Nutzung des RAM: 44% Installierter physikalischer RAM: 4043.86 MB Verfügbarer physikalischer RAM: 2235.42 MB Summe virtueller Speicher: 5451.86 MB Verfügbarer virtueller Speicher: 3664.89 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:127.56 GB) (Free:76.96 GB) NTFS Drive e: (Games&Programs) (Fixed) (Total:324.6 GB) (Free:296.17 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 3254C11D) Partition 1: (Not Active) - (Size=13.5 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=127.6 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=324.6 GB) - (Type=OF Extended) ==================== Ende von Addition.txt ============================ |
05.12.2015, 09:51 | #4 |
/// the machine /// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
05.12.2015, 10:35 | #5 |
| Mbam Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 05.12.2015 Suchlaufzeit: 09:56 Protokolldatei: mbam1.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2015.12.05.02 Rootkit-Datenbank: v2015.11.26.01 Lizenz: Testversion Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Eule Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 354848 Abgelaufene Zeit: 21 Min., 38 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 2 PUP.Optional.CouponMarvel.AppFlsh, C:\ProgramData\SecurityUtility\SecurityUtility.exe, 3568, Löschen bei Neustart, [aec8049dbdcecf67fe21910a9c663fc1] PUP.Optional.CouponMarvel.AppFlsh, C:\ProgramData\SecurityUtility\SecurityUtility.exe, 652, Löschen bei Neustart, [aec8049dbdcecf67fe21910a9c663fc1] Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 27 PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, In Quarantäne, [cda98021e6a531059b8f93b66d956898], PUP.Optional.DynConIE, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, In Quarantäne, [cda98021e6a531059b8f93b66d956898], PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, In Quarantäne, [cda98021e6a531059b8f93b66d956898], PUP.Optional.TaskRNDM, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, In Quarantäne, [9adc2879ccbffd39f9ea86ca52b023dd], PUP.Optional.TaskRNDM, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\APPDATALOW\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, In Quarantäne, [9adc2879ccbffd39f9ea86ca52b023dd], PUP.Optional.BrowserAir, HKLM\SOFTWARE\BrowserAir, In Quarantäne, [c5b1772aee9da88e169dd6cb62a00ff1], PUP.Optional.MyBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\IBUpd, Löschen bei Neustart, [3a3c5e43eaa1ba7ca03fcdf12fd429d7], PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, In Quarantäne, [de98901196f57abc04db49a41de6c63a], PUP.Optional.CouponMarvel.AppFlsh, HKLM\SOFTWARE\SECURITYUTILITY, In Quarantäne, [d99dfda41b7045f16100876c857e936d], PUP.Optional.ICinema, HKLM\SOFTWARE\WOW6432NODE\I - Cinema-nv-ie, In Quarantäne, [03739110800b7bbbd9333d543ac9e917], PUP.Optional.OurSurfing.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\oursurfingSoftware, In Quarantäne, [bfb75e43f39861d5e0869013c83a11ef], PUP.Optional.WdsManPro, HKLM\SOFTWARE\WOW6432NODE\WdsManPro, In Quarantäne, [4b2b544df893c571e9afead2ef141be5], PUP.Optional.CouponMarvel, HKLM\SOFTWARE\WOW6432NODE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, In Quarantäne, [4135cfd2c6c52313255bb709ae558c74], PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, In Quarantäne, [4036c1e016758ea857eb275e5aa99e62], PUP.Optional.BrowserAir, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\MEDIAPLAYER\SHIMINCLUSIONLIST\BrowserAir.exe, In Quarantäne, [2254b8e94a415ed8f5c1792826dca65a], PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{4ef60154}, In Quarantäne, [c3b3b7ead4b7fa3ce5fd3b6033d0b947], PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, In Quarantäne, [d3a39e032d5ede5828b7747914efd22e], PUP.Optional.CouponMarvel.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\SECURITYUTILITY, In Quarantäne, [9cda465b7219999dc69b31c2ca39d030], PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS, In Quarantäne, [7ff7148d6724c5718245753c9370669a], PUP.Optional.SuperOptimizer, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, In Quarantäne, [97df336ea3e89a9c89396b42f60dab55], PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, In Quarantäne, [096d713007843402839a077dc63d2fd1], PUP.Optional.1ClickMovieDownload, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\ClickMovie1-Downloaderv10-nv-ie, In Quarantäne, [b1c52b76fa91cd69b53ec4b1847f1be5], PUP.Optional.ICinema, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\I - Cinema-nv-ie, In Quarantäne, [c0b6a7fa6526b284c3473061f40f27d9], PUP.Optional.Tuto4PC, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\TutoTag, In Quarantäne, [195d940d2368c86ee8dbe4cd847f3dc3], PUP.Optional.MultiIE, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\APPDATALOW\SOFTWARE\DynConIE, In Quarantäne, [0670099897f456e04a572b70a55e2cd4], PUP.Optional.BoBrowser, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\CLIENTS\STARTMENUINTERNET\BoBrowser.WMSPO56KWPPI2NHV3ITSE2E3NQ, In Quarantäne, [53234c55d2b9ab8bb87adb166e957d83], PUP.Optional.Searching.ShrtCln, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{D32E8790-E434-473E-9014-488621EF1B9C}, In Quarantäne, [ea8ce2bf55366acc86e8b0c116edef11], Registrierungswerte: 13 PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, In Quarantäne, [de98901196f57abc04db49a41de6c63a] PUP.Optional.CouponMarvel.AppFlsh, HKLM\SOFTWARE\SECURITYUTILITY|Install_Dir, C:\ProgramData\SecurityUtility, In Quarantäne, [d99dfda41b7045f16100876c857e936d] PUP.Optional.MySearchDial, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\Mysearchdial\1.8.29.0\, In Quarantäne, [82f43e63a2e9330308886735da290ff1] PUP.Optional.MobilePCStarterKit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|mpck_en_004090142, In Quarantäne, [5f1751502f5ce452b56fb1ea50b3a858], PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, In Quarantäne, [d3a39e032d5ede5828b7747914efd22e] PUP.Optional.CouponMarvel.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\SECURITYUTILITY|Install_Dir, C:\ProgramData\SecurityUtility, In Quarantäne, [9cda465b7219999dc69b31c2ca39d030] PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS|HostGUID, 6F7A9903-3F46-4877-A4F7-43B2ADA7A901, In Quarantäne, [7ff7148d6724c5718245753c9370669a] PUP.Optional.BrowserAir, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{28D46A94-D8A5-4FEA-B3B6-68E918BBF042}, v2.24|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Users\Eule\AppData\Local\BrowserAir\Application\BrowserAir.exe|Name=BrowserAir (mDNS-In)|Desc=Inbound rule for BrowserAir to allow mDNS traffic.|EmbedCtxt=BrowserAir|, In Quarantäne, [89ed3968c4c75cda9bef2cc2739012ee] PUP.Optional.BoBrowser, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{288CB8DD-5AB9-467D-9596-3EE3EDD3E884}, v2.22|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Users\Eule\AppData\Local\BoBrowser\Application\bobrowser.exe|Name=Chromium (mDNS-In)|Desc=Eingangsregel für die Zulassung von mDNS-Verkehr in Chromium|EmbedCtxt=BoBrowser|, In Quarantäne, [195defb2008be551b2b28965d42f9d63] PUP.Optional.Searching.ShrtCln, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{D32E8790-E434-473E-9014-488621EF1B9C}|OSDFileURL, hxxp://www-searching.com/opensearch.ashx?s=FBCzgutbl343,e30e0848-d83a-44ad-913a-30d033f60b17,, In Quarantäne, [ea8ce2bf55366acc86e8b0c116edef11] PUP.Optional.Searching.ShrtCln, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{D32E8790-E434-473E-9014-488621EF1B9C}|FaviconURL, hxxp://www-searching.com/favicon.ico, In Quarantäne, [6b0ba9f8a9e257dfa1cd0f625ea534cc] PUP.Optional.Searching.ShrtCln, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{D32E8790-E434-473E-9014-488621EF1B9C}|URL, hxxp://www-searching.com/s.ashx?prd=opensearch&q={searchTerms}&s=FBCzgutbl343,e30e0848-d83a-44ad-913a-30d033f60b17,, In Quarantäne, [9fd7acf58cff181ec8a6521f82818d73] PUP.Optional.BoBrowser, HKU\S-1-5-21-305981025-81508073-3388003974-1000\SOFTWARE\REGISTEREDAPPLICATIONS|BoBrowser.WMSPO56KWPPI2NHV3ITSE2E3NQ, Software\Clients\StartMenuInternet\BoBrowser.WMSPO56KWPPI2NHV3ITSE2E3NQ\Capabilities, In Quarantäne, [472fb1f0d2b965d1999afdf4d033748c] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 153 PUP.Optional.MultiPlug.Gen, C:\ProgramData\6842430997236998186, In Quarantäne, [dc9ac0e1583377bf8b000071e221fc04], PUP.Optional.PullUpdate, C:\ProgramData\Radio, In Quarantäne, [78fea8f98704f2446f9f891ac241de22], PUP.Optional.YellowAdblocker, C:\ProgramData\Yellow AdBlocker, In Quarantäne, [195db8e923682016a1a370268c768f71], PUP.Optional.WindowsProtectManager, C:\ProgramData\BWMiniProB, In Quarantäne, [581e633eed9e2016e96f0e8c966c8c74], PUP.Optional.WindowsProtectManager, C:\ProgramData\BWMiniProB\mitest, In Quarantäne, [581e633eed9e2016e96f0e8c966c8c74], PUP.Optional.CouponMarvel.AppFlsh, C:\ProgramData\SecurityUtility, Löschen bei Neustart, [aec8049dbdcecf67fe21910a9c663fc1], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ar, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\bg, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ca, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\cs, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\da, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\de, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\el, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\en_GB, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\en_US, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\es, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\es_419, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\et, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\eu, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fi, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fil, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fr, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\he, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hi, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hr, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hu, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\id, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\it, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ja, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ko, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\lt, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\lv, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ms, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\nl, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\no, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pl, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pt_BR, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pt_PT, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ro, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ru, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sk, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sl, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sr, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sv, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\th, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\tr, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\uk, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\vi, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\zh_CN, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\zh_TW, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_metadata, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ar, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\bg, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ca, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\cs, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\da, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\de, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\el, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\en, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\es, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fi, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fr, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\he, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hr, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hu, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\id, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\it, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ja, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ko, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nb, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nl, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pl, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_BR, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_PT, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ro, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ru, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sk, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sl, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sr, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sv, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\te, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\tr, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\uk, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\vi, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_CN, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_TW, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], Dateien: 282 Adware.PullUpdate.MSIL, C:\ProgramData\Browser\prompt.exe, In Quarantäne, [00767829c6c5e74fc2dbb5e7bb4659a7], PUP.Optional.PullUpdate, C:\ProgramData\Radio\prompt.exe, In Quarantäne, [cda9970a4d3ea294ca2f5fcf35cc7d83], PUP.Optional.MultiPlug.Uns, C:\ProgramData\Yellow AdBlocker\Yellow AdBlocker.exe, In Quarantäne, [a7cf2180068540f674186d8815ec649c], PUP.Optional.InstallCore, C:\Program Files (x86)\20e8e0d1-3254-4c11-af64-8a1431d157ef\20e8e0d1-3254-4c11-af64-8a1431d157ef.dll, In Quarantäne, [e98dbde42d5e9a9c612525727b897888], PUP.Optional.Nova, C:\Program Files (x86)\20e8e0d1-3254-4c11-af64-8a1431d157ef\669f2be9-66b8-4775-8105-d32e4d54f3d3.dll, In Quarantäne, [da9c653ca0ebb6802c2379b549b849b7], PUP.Optional.Nova, C:\Program Files (x86)\20e8e0d1-3254-4c11-af64-8a1431d157ef\6adc0d05-10fc-441e-aecb-e1f8f159be45.dll, In Quarantäne, [1d59d9c8bccf5cda0748f43af60bde22], PUP.Optional.InstallCore, C:\Program Files (x86)\20e8e0d1-3254-4c11-af64-8a1431d157ef\bcf637cf-d832-4852-b44e-ac8665cf11d3.dll, In Quarantäne, [98de2b7695f66acc89fdb2e58381867a], PUP.Optional.MultiPlug, C:\Program Files (x86)\TampaSystem\TampaSystem.dll, In Quarantäne, [0f6790112e5d6cca3587bc6a936e36ca], PUP.Optional.OpenCandy, C:\Users\Eule\Downloads\DTLite4491-0356.exe, In Quarantäne, [4135dfc24348d4622e343c4e2ed6ea16], PUP.Optional.InstallMonetizer, C:\Users\Eule\Downloads\The.Looney.Tunes.Show.2011.S01E01.avi.mp4__3339_i204621951_il10551751.exe, In Quarantäne, [4234940d038859dd1a2f27763ec241bf], PUP.Optional.Amonetize, C:\Users\Eule\Downloads\Unlimited Downloads__3339_i499031407_il96.exe, In Quarantäne, [d1a501a04a41d0665114e34827d9e41c], PUP.Optional.Amonetize, C:\Users\Eule\Downloads\Unlimited Downloads__3339_i499032333_il96.exe, In Quarantäne, [79fdc7da800bfc3a095cad7e14ec16ea], PUP.Optional.Amonetize, C:\Users\Eule\Downloads\Free download xxx hd videos com_10924_i51334877_il345.exe, In Quarantäne, [35418e13b2d90c2aa738a247a65a14ec], PUP.Optional.OneClickDownloader, C:\Users\Eule\Downloads\hdvid_codec_chrome.exe, In Quarantäne, [334319884942ab8b94d2da548a77a15f], PUP.Optional.OneClickDownloader, C:\Users\Eule\Downloads\OnlineHD-Chrome-V2.1 (1).exe, In Quarantäne, [6b0b861b9bf00234bda9131be61b52ae], PUP.Optional.OneClickDownloader, C:\Users\Eule\Downloads\OnlineHD-Chrome-V2.1.exe, In Quarantäne, [21552978fc8f16206cfa52dcd72abd43], PUP.Optional.SofTonic, C:\Users\Eule\Downloads\SoftonicDownloader_fuer_fotografix.exe, In Quarantäne, [87ef2e73a0eb51e50dc53df225dcaa56], PUP.Optional.OpenCandy, C:\Users\Eule\Downloads\winamp565_full_emusic-7plus_all.exe, In Quarantäne, [7105128f6328c670646377b6ce32e917], PUP.Optional.MultiPlug.Gen, C:\ProgramData\6842430997236998186\1547aa30421efb5b20278bf1fbc6ee75.ini, In Quarantäne, [dc9ac0e1583377bf8b000071e221fc04], PUP.Optional.MultiPlug.Gen, C:\ProgramData\6842430997236998186\8eb0729fbf1cb05220278bf1fbc6ee75.ini, In Quarantäne, [dc9ac0e1583377bf8b000071e221fc04], PUP.Optional.MultiPlug.Gen, C:\ProgramData\6842430997236998186\b1b04b8135a80c9720278bf1fbc6ee75.ini, In Quarantäne, [dc9ac0e1583377bf8b000071e221fc04], PUP.Optional.MultiPlug.Gen, C:\ProgramData\6842430997236998186\e1a11ca282117dcd20278bf1fbc6ee75.ini, In Quarantäne, [dc9ac0e1583377bf8b000071e221fc04], PUP.Optional.Browser, C:\ProgramData\Browser\prompt.exe.config, In Quarantäne, [591da1006b20310508783348ba4953ad], PUP.Optional.PullUpdate, C:\ProgramData\Radio\prompt.exe.config, In Quarantäne, [78fea8f98704f2446f9f891ac241de22], PUP.Optional.SelectNGo, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage, In Quarantäne, [2a4c920f0c7f0d29fa7d6444de25c53b], PUP.Optional.SelectNGo, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage-journal, In Quarantäne, [9cda9d045d2ea78f90e71494f211da26], PUP.Optional.SelectNGo, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage, In Quarantäne, [1f578b162b60330381f707a1976c20e0], PUP.Optional.SelectNGo, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage-journal, In Quarantäne, [acca3b66acdfbd790e6a9e0a1ce7817f], PUP.Optional.ShoppingGate, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage, In Quarantäne, [2155515032599a9c3034773261a253ad], PUP.Optional.ShoppingGate, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage-journal, In Quarantäne, [97df277ab7d4b185cf95bdece320eb15], PUP.Optional.WebTInst, C:\Windows\System32\drivers\Msft_Kernel_webTinst_01009.Wdf, In Quarantäne, [e195fda49af1b086f2aa7243cb387987], PUP.Optional.MyBrowser, C:\Windows\System32\Tasks\IBUpd, In Quarantäne, [63139a07deadb3834994bc0258ab748c], PUP.Optional.ReMarkit.PrxySvrRST, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage, In Quarantäne, [caac5d449bf07db9b9e3f6cb33d0df21], PUP.Optional.ReMarkit.PrxySvrRST, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal, In Quarantäne, [a6d08d14612a37ff5d3f1fa2e81b6c94], PUP.Optional.ReMarkit.PrxySvrRST, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage, In Quarantäne, [6a0ceeb3f09b94a218844879877c827e], PUP.Optional.ReMarkit.PrxySvrRST, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage-journal, In Quarantäne, [66104160fa912a0c554781409a6938c8], PUP.Optional.Wajam, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.technologiestuart.com_0.localstorage, In Quarantäne, [fc7abae7cdbe51e5c5666480e91a6a96], PUP.Optional.Wajam, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.technologiestuart.com_0.localstorage-journal, In Quarantäne, [195dadf446452115ad7e8d577a8939c7], PUP.Optional.WindowsProtectManager, C:\ProgramData\BWMiniProB\mitestconf, In Quarantäne, [581e633eed9e2016e96f0e8c966c8c74], PUP.Optional.CouponMarvel.AppFlsh, C:\ProgramData\SecurityUtility\SecurityUtility.exe, Löschen bei Neustart, [aec8049dbdcecf67fe21910a9c663fc1], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\manifest.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\128.png, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ar\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\bg\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ca\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\cs\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\da\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\de\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\el\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\en_GB\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\en_US\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\es\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\es_419\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\et\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\eu\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fi\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fil\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fr\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\he\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hi\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hr\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hu\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\id\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\it\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ja\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ko\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\lt\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\lv\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ms\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\nl\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\no\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pl\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pt_BR\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pt_PT\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ro\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ru\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sk\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sl\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sr\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sv\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\th\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\tr\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\uk\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\vi\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\zh_CN\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\zh_TW\messages.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_metadata\verified_contents.json, In Quarantäne, [bfb75948f09bb87eadac6936857fa65a], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\manifest.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\adblock_start_chrome.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\adblock_start_common.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\background.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\bandaids.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\CHANGELOG.txt, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\checkupdates.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\chrome_oauth_receiver.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\chrome_oauth_receiver.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\dropbox-datastores.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\functions.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\idlehandler.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\LICENSE, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\port.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\README.markdown, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\stats.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\translators.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\ytchannel.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.css, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search\search.css, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search\search.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\domainset.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filternormalizer.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filteroptions.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filterset.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filtertypes.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\myfilters.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\delete.gif, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox1.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox2.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox3.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\facebook-sprite.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\gifloader.gif, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\gplus-sprite.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon128.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16_grayscale.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16_grayscale@2x.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19-grayscale.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19-whitelisted.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon24.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon32.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38-grayscale.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38-whitelisted.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon48.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\logo.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\twitter-sprite.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\check.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\magnifying_glass.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-engine-card_no-shadow.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-engine-icons.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-omnibox-card_no-shadow.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search_engine_select_arrow.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery-ui.custom.min.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery.cookie.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery.min.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\jquery-ui.custom.css, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\override-page.css, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-icons_056b93_256x240.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-icons_d8e7f3_256x240.png, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\customize.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\customize.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\filters.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\filters.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\general.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\general.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\index.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\index.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\options.css, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\support.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\support.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\adreport.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\adreport.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\resourceblock.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\resourceblock.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\subscribe.html, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\subscribe.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\focus.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\incognito.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\pitchpage.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\search-plus-one.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\secure_reminder.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\serp.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\load_jquery_ui.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\send_content_to_back.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\top_open_blacklist_ui.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\top_open_whitelist_ui.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\blacklistui.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\clickwatcher.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\elementchain.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\overlay.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\rightclick_hook.js, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ar\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\bg\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ca\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\cs\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\da\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\de\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\el\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\en\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\es\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fi\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fr\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\he\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hr\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hu\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\id\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\it\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ja\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ko\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nb\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nl\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pl\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_BR\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_PT\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ro\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ru\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sk\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sl\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sr\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sv\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\te\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\tr\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\uk\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\vi\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_CN\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_TW\messages.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata\computed_hashes.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata\verified_contents.json, In Quarantäne, [95e19809107b8fa7c7929c03758f07f9], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\manifest.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\craw_background.js, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\craw_window.js, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css\craw_window.css, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html\craw_window.html, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\flapper.gif, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\icon_128.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\icon_16.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_close.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_hover.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_maximize.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_pressed.png, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW\messages.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], PUP.Optional.HijackModifiedExtension, C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata\verified_contents.json, In Quarantäne, [3343237ea4e75dd93a1f336c897bb54b], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Malwarebytes Anti-Malware www.malwarebytes.org Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malware Protection, Starting, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malware Protection, Started, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Starting, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Started, Update, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Manual, Remediation Database, 2015.9.16.1, 2015.12.1.3, Update, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Manual, Rootkit Database, 2015.9.18.1, 2015.11.26.1, Update, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Manual, IP Database, 2015.9.21.2, 2015.12.4.3, Update, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Manual, Domain Database, 2015.9.22.3, 2015.12.5.2, Update, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Manual, Malware Database, 2015.9.22.5, 2015.12.5.2, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Refresh, Starting, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Stopping, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Stopped, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Refresh, Success, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Starting, Protection, 05.12.2015 09:56, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Started, Scan, 05.12.2015 10:22, SYSTEM, EULE-VAIO, Manual, Start: 05.12.2015 09:56, Dauer: 21 Min. 38 Sek., Bedrohungssuchlauf, Abgeschlossen, 1 Malware-Erkennung, 476 Nicht-Malware-Erkennungen, Protection, 05.12.2015 10:23, SYSTEM, EULE-VAIO, Protection, Malware Protection, Starting, Protection, 05.12.2015 10:23, SYSTEM, EULE-VAIO, Protection, Malware Protection, Started, Protection, 05.12.2015 10:23, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Starting, Protection, 05.12.2015 10:23, SYSTEM, EULE-VAIO, Protection, Malicious Website Protection, Started, (end) |
05.12.2015, 11:27 | #6 |
| AdwCleaner AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v5.023 - Bericht erstellt am 05/12/2015 um 11:01:23 # Aktualisiert am 30/11/2015 von Xplode # Datenbank : 2015-12-03.1 [Server] # Betriebssystem : Windows 10 Pro (x64) # Benutzername : Eule - EULE-VAIO # Gestartet von : C:\Users\Eule\Desktop\AdwCleaner_5.023.exe # Option : Löschen # Unterstützung : hxxp://toolslib.net/forum ***** [ Dienste ] ***** ***** [ Ordner ] ***** [-] Ordner Gelöscht : C:\ProgramData\Browser [-] Ordner Gelöscht : C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8 [-] Ordner Gelöscht : C:\Users\Eule\AppData\Local\SearchModule [-] Ordner Gelöscht : C:\Users\Eule\AppData\Local\Temp\DriverTurbo [-] Ordner Gelöscht : C:\Users\Eule\AppData\Roaming\Mozilla\Firefox\Profiles\d3hgnkhp.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [-] Ordner Gelöscht : C:\Users\Public\Documents\Guid ***** [ Dateien ] ***** [-] Datei Gelöscht : C:\END [-] Datei Gelöscht : C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat [-] Datei Gelöscht : C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage [-] Datei Gelöscht : C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage-journal [-] Datei Gelöscht : C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_de.hao123.com_0.localstorage [-] Datei Gelöscht : C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_de.hao123.com_0.localstorage-journal ***** [ DLLs ] ***** ***** [ Verknüpfungen ] ***** ***** [ Aufgabenplanung ] ***** [-] Aufgabenplanung Gelöscht : JZBRB1 [-] Aufgabenplanung Gelöscht : {24F0F9A6-DE8A-4FD7-944B-F2BDB2FCCAEB} ***** [ Registrierungsdatenbank ] ***** [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Paths\bobrowser.exe [-] Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro [-] Schlüssel Gelöscht : HKCU\Software\Classes\CLSID\{19041B6B-8F97-4669-BA21-C17572737ED2} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} [-] Schlüssel Gelöscht : HKCU\Software\DAILYPCCLEAN [-] Schlüssel Gelöscht : HKCU\Software\WEBAPP [-] Schlüssel Gelöscht : HKCU\Software\tstamptoken [-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\inst.shoppingate.info [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\shoppingate.info ***** [ Internetbrowser ] ***** [-] [C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Gelöscht : hxxp://www.oursurfing.com/webfavicon.ico [-] [C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : ogminpmldncgcmokldnmmapddoccmhfl ************************* :: "Tracing" Schlüssel gelöscht :: Proxy Einstellungen zurückgesetzt :: Winsock Einstellungen zurückgesetzt :: Chrome Richtlinien gelöscht ########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [5584 Bytes] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.1 (11.24.2015) Operating System: Windows 10 Pro x64 Ran by Eule (Administrator) on 05.12.2015 at 11:10:54,76 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 4 Successfully deleted: C:\Users\Eule\AppData\Roaming\appdataFr3.bin (File) Successfully deleted: C:\WINDOWS\prefetch\DRIVERTURBO.EXE-4BB81225.pf (File) Successfully deleted: C:\WINDOWS\prefetch\DRIVERTURBOSETUP.EXE-2C1B671D.pf (File) Successfully deleted: C:\WINDOWS\prefetch\DRIVERTURBOSFX.EXE-10BCD022.pf (File) Registry: 0 FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:01-12-2015 durchgeführt von Eule (Administrator) auf EULE-VAIO (05-12-2015 11:21:17) Gestartet von C:\Users\Eule\Desktop Geladene Profile: Eule (Verfügbare Profile: Eule) Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (DEVGURU Co., LTD.) E:\Samsung Kies\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM-x32\...\Run: [DivXMediaServer] => E:\Programs\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-11-17] (DivX, LLC) HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] () HKLM-x32\...\Run: [AveoSTI.exe] => C:\Program Files (x86)\AVEO USB2.0 PC Camera(U2HGCV3P31048)\AveoSTI.exe [32768 2010-12-02] (AVEO) HKLM-x32\...\Run: [KiesTrayAgent] => E:\Samsung Kies\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-305981025-81508073-3388003974-1000\...\Run: [DAEMON Tools Lite] => E:\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 195.168.2.1 Tcpip\..\Interfaces\{b2612577-b758-4e79-b3f4-6200d1a90d12}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{C5D80117-735B-4A02-8F98-D9025A777E53}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{e33f5f25-b76f-42c6-82a2-5edc0bd18f8c}: [DhcpNameServer] 195.168.2.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130921327636048532&GUID=68E6370B-9B65-4B31-BE7D-BFBE0812BAE7 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-305981025-81508073-3388003974-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130921327636092376&GUID=68E6370B-9B65-4B31-BE7D-BFBE0812BAE7 HKU\S-1-5-21-305981025-81508073-3388003974-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Eule\AppData\Roaming\Mozilla\Firefox\Profiles\d3hgnkhp.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-12] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-12] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> E:\Programs\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> E:\Programs\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> E:\Programs\VLC\npvlc.dll [2014-07-23] (VideoLAN) FF Extension: Kein Name - C:\Users\Eule\AppData\Roaming\Mozilla\Firefox\Profiles\d3hgnkhp.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [nicht gefunden] StartMenuInternet: FIREFOX.EXE - E:\Mozilla Firefox\firefox.exe Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.de/?gfe_rd=cr&ei=xYZJVsnBGY-r8wfY0beoDw&gws_rd=ssl" CHR Profile: C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Magic Actions for YouTube™) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-09-28] CHR Extension: (YouTube) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28] CHR Extension: (Google-Suche) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10] CHR Extension: (Google Docs Offline) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-23] CHR Extension: (Skype Click to Call) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-11-23] CHR Extension: (Click&Clean App) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-11-10] CHR Extension: (Google Mail) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S2 SkypeUpdate; E:\Skype\Updater\Updater.exe [327296 2015-07-09] (Skype Technologies) R2 ss_conn_service; E:\Samsung Kies\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) S3 TunngleService; E:\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH) [Datei ist nicht signiert] R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.) S3 AVEO; C:\Windows\system32\DRIVERS\AVEOdcnt.sys [346496 2012-02-08] (AVEO) R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-10-30] (Microsoft Corporation) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-10] (Disc Soft Ltd) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-05] (Malwarebytes) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2069-11-22 16:48 - 2005-11-30 17:06 - 07254894 _____ C:\Users\Eule\Downloads\speed.exe 2069-11-22 16:48 - 2005-11-15 10:56 - 00380928 ____R C:\Users\Eule\Downloads\server.dll 2015-12-05 11:21 - 2015-12-05 11:21 - 00011319 _____ C:\Users\Eule\Desktop\FRST.txt 2015-12-05 10:29 - 2015-12-05 10:29 - 00002096 _____ C:\mbam.txt2.txt 2015-12-05 10:13 - 2015-12-05 10:13 - 01599336 _____ (Malwarebytes) C:\Users\Eule\Desktop\JRT.exe 2015-12-05 10:11 - 2015-12-05 10:11 - 01736704 _____ C:\Users\Eule\Desktop\AdwCleaner_5.023.exe 2015-12-05 09:55 - 2015-12-05 11:04 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-12-05 09:55 - 2015-12-05 10:26 - 00001161 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-05 09:55 - 2015-12-05 09:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-05 09:55 - 2015-12-05 09:55 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-05 09:55 - 2015-12-05 09:55 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-05 09:55 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-12-05 09:55 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-12-05 09:55 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2015-12-05 09:53 - 2015-12-05 09:54 - 22908888 _____ (Malwarebytes ) C:\Users\Eule\Downloads\mbam-setup-2.2.0.1024 (1).exe 2015-12-05 09:52 - 2015-12-05 09:53 - 22908888 _____ (Malwarebytes ) C:\Users\Eule\Downloads\mbam-setup-2.2.0.1024.exe 2015-12-04 12:55 - 2015-12-05 10:26 - 00000723 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-12-04 12:55 - 2015-12-05 10:26 - 00000723 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-12-04 12:55 - 2015-12-04 12:55 - 00000000 ____D C:\Users\Eule\AppData\Roaming\Mozilla 2015-12-04 12:55 - 2015-12-04 12:55 - 00000000 ____D C:\Users\Eule\AppData\Local\Mozilla 2015-12-04 12:52 - 2015-12-04 12:53 - 43446216 _____ C:\Users\Eule\Downloads\Firefox Setup 42.0_de.exe 2015-12-04 11:24 - 2015-12-04 11:25 - 00029624 _____ C:\Users\Eule\Downloads\Addition.txt 2015-12-04 11:22 - 2015-12-05 11:21 - 00000000 ____D C:\FRST 2015-12-04 11:22 - 2015-12-04 11:25 - 00066840 _____ C:\Users\Eule\Downloads\FRST.txt 2015-12-04 11:22 - 2015-12-04 11:22 - 02350080 _____ (Farbar) C:\Users\Eule\Desktop\FRST64.exe 2015-12-04 08:30 - 2015-12-04 08:30 - 00254408 _____ C:\Users\Eule\Downloads\DriverTurboSetup.exe 2015-12-03 00:26 - 2015-12-03 00:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2015-12-03 00:03 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-12-03 00:03 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:41 - 01284960 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-12-03 00:03 - 2015-11-22 11:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-12-03 00:03 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-12-03 00:03 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-12-03 00:03 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-12-03 00:03 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-12-03 00:03 - 2015-11-22 10:56 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-12-03 00:03 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll 2015-12-03 00:03 - 2015-11-22 10:52 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-12-03 00:03 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-12-03 00:03 - 2015-11-22 10:43 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll 2015-12-03 00:03 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2015-12-03 00:03 - 2015-11-22 10:41 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-12-03 00:03 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-12-03 00:03 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2015-12-03 00:03 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2015-12-03 00:03 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2015-12-03 00:03 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2015-12-03 00:03 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 13380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-12-03 00:03 - 2015-11-22 10:30 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-12-03 00:03 - 2015-11-22 10:30 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-12-03 00:03 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-12-03 00:03 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-12-03 00:03 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2015-12-03 00:03 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-12-03 00:03 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 12124672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2015-12-03 00:03 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2015-12-03 00:03 - 2015-11-22 10:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-12-03 00:03 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2015-12-03 00:03 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-12-03 00:03 - 2015-11-22 10:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll 2015-12-03 00:03 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2015-12-03 00:02 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-12-03 00:02 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-12-03 00:02 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll 2015-12-03 00:02 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys 2015-12-03 00:02 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll 2015-12-03 00:02 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll 2015-12-03 00:02 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-12-03 00:02 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-12-03 00:02 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-12-03 00:02 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll 2015-12-03 00:02 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2015-12-03 00:02 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-12-03 00:02 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys 2015-12-03 00:02 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-12-03 00:02 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-12-03 00:02 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2015-12-03 00:02 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll 2015-12-03 00:02 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll 2015-12-03 00:02 - 2015-11-22 10:47 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2015-12-03 00:02 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2015-12-03 00:02 - 2015-11-22 10:46 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-12-03 00:02 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-12-03 00:02 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll 2015-12-03 00:02 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-12-03 00:02 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-12-03 00:02 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2015-12-03 00:02 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll 2015-12-03 00:02 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-12-03 00:02 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2015-12-03 00:02 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-12-03 00:02 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-12-03 00:02 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2015-12-03 00:02 - 2015-11-22 10:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-12-03 00:02 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2015-12-03 00:02 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2015-12-03 00:02 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-12-02 23:41 - 2015-12-02 23:41 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\ChromeSetup (2).exe 2015-12-02 23:34 - 2015-12-05 10:26 - 00002314 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-12-02 23:34 - 2015-12-02 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-02 23:32 - 2015-12-02 23:32 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\ChromeSetup (1).exe 2015-12-02 10:59 - 2015-12-02 10:59 - 00120364 _____ C:\Users\Eule\Downloads\Umsatzdetails_Konto019872100_EUR_02-12-2015_1059.pdf 2015-12-02 10:59 - 2015-12-02 10:59 - 00120364 _____ C:\Users\Eule\Desktop\Umsatzdetails_Konto019872100_EUR_02-12-2015_1059.pdf 2015-12-02 00:56 - 2015-12-02 00:56 - 00000000 ____D C:\Users\Eule\AppData\Local\ActiveSync 2015-12-02 00:54 - 2015-12-02 00:54 - 00000020 ___SH C:\Users\Eule\ntuser.ini 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-12-01 17:10 - 2015-12-05 11:03 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-12-01 17:03 - 2015-12-05 10:26 - 00001552 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-01 17:00 - 2015-12-01 17:00 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2015-12-01 16:58 - 2015-12-02 11:29 - 00000000 ____D C:\Users\Eule 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Vorlagen 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Startmenü 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Netzwerkumgebung 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Lokale Einstellungen 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Eigene Dateien 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Druckumgebung 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Videos 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Musik 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Bilder 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Local\Verlauf 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Local\Anwendungsdaten 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Anwendungsdaten 2015-12-01 16:54 - 2015-12-01 16:54 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-12-01 16:54 - 2015-12-01 16:54 - 00000000 ____D C:\Program Files\Common Files\Atheros 2015-12-01 16:51 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-12-01 16:49 - 2015-12-01 17:05 - 00219576 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-12-01 16:48 - 2015-12-01 18:00 - 00000000 ___DC C:\WINDOWS\Panther 2015-12-01 16:45 - 2015-12-01 16:45 - 00000000 ____D C:\Windows.old 2015-12-01 16:44 - 2015-12-01 16:44 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2015-12-01 16:44 - 2015-12-01 16:44 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2015-12-01 16:44 - 2015-12-01 16:44 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2015-12-01 16:43 - 2015-10-29 19:43 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2015-12-01 16:43 - 2015-10-29 19:43 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2015-12-01 16:43 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2015-12-01 16:43 - 2015-10-29 19:25 - 06359040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2015-12-01 16:43 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2015-12-01 16:42 - 2015-12-01 16:42 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files\MSBuild 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-12-01 16:39 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-12-01 16:39 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-12-01 16:39 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-01 12:49 - 2015-12-01 12:49 - 01164834 _____ C:\Users\Eule\Downloads\Stadtwerke Lübeck 31.11.2015.pdf 2015-11-24 23:11 - 2015-11-25 08:07 - 00000000 ____D C:\Users\Eule\Desktop\Bewerbung 2015-11-23 11:47 - 2015-11-23 11:47 - 00111419 _____ C:\Users\Eule\Downloads\CCF23112015_0008.pdf 2015-11-23 10:23 - 2015-11-23 10:23 - 00000000 ____D C:\Users\Eule\Tracing 2015-11-23 10:18 - 2015-12-05 11:05 - 00000000 ____D C:\Users\Eule\AppData\Roaming\Skype 2015-11-23 10:18 - 2015-12-05 10:26 - 00002596 _____ C:\Users\Public\Desktop\Skype.lnk 2015-11-23 10:18 - 2015-12-01 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-11-23 10:18 - 2015-11-23 10:24 - 00000000 ____D C:\Program Files (x86)\Skype 2015-11-23 10:18 - 2015-11-23 10:18 - 00000000 ____D C:\Users\Eule\AppData\Local\Skype 2015-11-23 10:18 - 2015-11-23 10:18 - 00000000 ____D C:\ProgramData\Skype 2015-11-23 10:16 - 2015-11-23 10:16 - 01504384 _____ (Skype Technologies S.A.) C:\Users\Eule\Downloads\SkypeSetup.exe 2015-11-20 07:38 - 2015-12-05 10:26 - 00002233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2015-11-20 07:38 - 2015-11-20 07:38 - 00000000 ____D C:\Users\Eule\AppData\LocalLow\Google 2015-11-20 07:37 - 2015-11-20 07:37 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\GoogleEarthSetup.exe 2015-11-12 09:05 - 2015-12-01 17:10 - 00002244 _____ C:\WINDOWS\System32\Tasks\{D3CF40F7-F7A0-4CC7-94D4-E1B97F88E46B} 2015-11-12 08:58 - 2015-11-12 08:58 - 00000000 ____D C:\Users\Public\Documents\Baidu 2015-11-12 08:37 - 2015-11-19 09:53 - 00000000 ____D C:\ProgramData\Istsikre 2015-11-12 08:28 - 2015-12-05 11:04 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-12 08:28 - 2015-12-05 10:49 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-12 08:28 - 2015-12-02 06:44 - 00004196 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-11-12 08:28 - 2015-12-02 06:44 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-11-11 07:36 - 2015-11-11 07:36 - 00000000 ____D C:\Users\Eule\AppData\Local\MicrosoftEdge 2015-11-10 12:03 - 2015-11-10 12:03 - 00000000 ____D C:\Users\Eule\AppData\Local\NetworkTiles 2015-11-10 08:40 - 2015-11-10 08:40 - 00000000 ____D C:\Users\Eule\AppData\Local\PeerDistRepub 2015-11-10 07:56 - 2015-11-10 07:56 - 00260896 _____ C:\Users\Eule\Downloads\Zertifikat Barakademie.pdf 2015-11-10 07:56 - 2015-11-10 07:56 - 00000166 _____ C:\Users\Eule\Downloads\friedrichlautersbacher.vcf ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-05 11:08 - 2015-02-15 00:06 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-12-05 11:07 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat 2015-12-05 11:07 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat 2015-12-05 11:07 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF 2015-12-05 11:07 - 2015-10-05 11:09 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-12-05 11:02 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-12-05 11:01 - 2015-02-15 01:28 - 00000000 ____D C:\AdwCleaner 2015-12-05 10:44 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-05 10:26 - 2015-07-15 09:32 - 00000734 _____ C:\Users\Public\Desktop\Audiograbber 1.83.lnk 2015-12-05 10:26 - 2015-03-30 14:42 - 00000554 _____ C:\Users\Public\Desktop\Tunngle.lnk 2015-12-05 10:26 - 2015-03-14 17:40 - 00000742 _____ C:\Users\Public\Desktop\DivX Player.lnk 2015-12-05 10:26 - 2015-03-14 17:39 - 00000781 _____ C:\Users\Public\Desktop\DivX Converter.lnk 2015-12-05 10:26 - 2015-02-09 22:32 - 00000600 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk 2015-12-05 10:25 - 2015-10-05 11:32 - 00001043 _____ C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk 2015-12-05 10:25 - 2015-10-05 11:22 - 00002386 _____ C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-12-05 10:25 - 2015-03-14 17:40 - 00000795 _____ C:\Users\Eule\Desktop\DivX Movies.lnk 2015-12-05 10:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\System 2015-12-05 10:21 - 2015-04-10 22:27 - 00000000 ____D C:\Program Files (x86)\TampaSystem 2015-12-05 10:21 - 2015-02-15 01:25 - 00000000 ____D C:\Program Files (x86)\20e8e0d1-3254-4c11-af64-8a1431d157ef 2015-12-05 08:48 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-12-05 08:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache 2015-12-04 11:24 - 2015-10-30 07:28 - 00000000 ____D C:\Windows 2015-12-04 08:30 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-04 08:27 - 2014-04-26 12:02 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{189C871E-8F8F-44B6-B652-C1458D133B70} 2015-12-03 13:08 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-12-02 23:34 - 2015-04-10 22:45 - 00000000 ____D C:\Program Files (x86)\Google 2015-12-02 04:39 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat 2015-12-02 01:15 - 2014-04-25 13:03 - 00000000 ____D C:\Users\Eule\AppData\Local\Packages 2015-12-02 01:12 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow 2015-12-02 00:59 - 2014-04-25 13:05 - 00000000 __RDO C:\Users\Eule\SkyDrive 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-12-02 00:54 - 2015-09-10 06:44 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-12-01 17:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-12-01 17:15 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT 2015-12-01 17:15 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-12-01 17:15 - 2014-04-25 12:41 - 00019053 _____ C:\WINDOWS\diagwrn.xml 2015-12-01 17:15 - 2014-04-25 12:41 - 00019053 _____ C:\WINDOWS\diagerr.xml 2015-12-01 17:14 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration 2015-12-01 17:10 - 2015-10-05 11:09 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-12-01 17:10 - 2015-07-15 09:28 - 00002268 _____ C:\WINDOWS\System32\Tasks\{0F7B0A38-1513-4AA7-B6A6-EFBC03773DF4} 2015-12-01 17:10 - 2015-02-23 16:40 - 00002252 _____ C:\WINDOWS\System32\Tasks\{89D7999A-4350-432D-BFC9-F318921AFB3E} 2015-12-01 17:10 - 2015-02-15 05:59 - 00002252 _____ C:\WINDOWS\System32\Tasks\{2C36D4C8-991C-44FA-8AF8-5136611DC48C} 2015-12-01 17:10 - 2015-02-15 00:06 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-12-01 17:10 - 2015-02-09 23:02 - 00002180 _____ C:\WINDOWS\System32\Tasks\{AE8A5378-B576-4A53-A083-13161B907501} 2015-12-01 17:10 - 2015-02-04 18:27 - 00002282 _____ C:\WINDOWS\System32\Tasks\{DC9CDB18-94AD-4A35-A6AA-4DAB3FD25CF4} 2015-12-01 17:10 - 2014-04-26 12:06 - 00002934 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-305981025-81508073-3388003974-1000 2015-12-01 17:08 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries 2015-12-01 17:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-12-01 17:04 - 2015-07-15 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audiograbber 2015-12-01 17:04 - 2015-03-30 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2015-12-01 17:04 - 2015-02-10 03:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2015-12-01 17:04 - 2015-02-09 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2015-12-01 17:04 - 2015-02-04 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quake 4 2015-12-01 17:04 - 2015-02-04 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-01 17:04 - 2015-01-23 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2015-12-01 17:04 - 2015-01-19 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vokabel Trainer 2015-12-01 17:04 - 2014-08-09 12:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-12-01 17:04 - 2014-06-11 13:10 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0 2015-12-01 17:04 - 2014-06-08 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 PC Camera 2015-12-01 17:04 - 2014-06-06 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX 2015-12-01 17:04 - 2014-05-02 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electric Sheep 2015-12-01 17:03 - 2015-07-10 10:47 - 00000000 ____D C:\Users\Default.migrated 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2015-12-01 17:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2015-12-01 17:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2015-12-01 17:00 - 2015-10-30 19:36 - 00000000 ____D C:\WINDOWS\OCR 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-12-01 17:00 - 2015-02-14 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-12-01 17:00 - 2014-08-03 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2015-12-01 17:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS 2015-12-01 17:00 - 2011-03-15 03:36 - 00000000 ___RD C:\Users\Public\Recorded TV 2015-12-01 16:57 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-12-01 16:49 - 2015-10-30 19:58 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2015-12-01 16:48 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2015-12-01 16:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-12-01 16:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning 2015-12-01 16:45 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-12-01 16:45 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-12-01 16:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-12-01 16:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-12-01 16:27 - 2015-10-05 11:23 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER 2015-12-01 16:21 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT 2015-11-12 08:40 - 2014-08-03 15:56 - 00000000 ____D C:\ProgramData\EPSON 2015-11-12 08:24 - 2014-05-17 21:58 - 00000000 __SHD C:\Users\Eule\AppData\Local\EmieUserList 2015-11-12 08:24 - 2014-05-17 21:58 - 00000000 __SHD C:\Users\Eule\AppData\Local\EmieSiteList 2015-11-11 06:30 - 2014-04-26 19:37 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-11-09 20:41 - 2015-10-05 11:18 - 00000000 ____D C:\Users\Eule\AppData\Local\Comms ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-03-07 22:04 - 2015-03-07 22:05 - 0000402 _____ () C:\Users\Eule\AppData\Local\Temp-log.txt 2015-07-22 10:50 - 2015-07-22 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{08DF26AC-81F4-445A-96B2-42D749D61A80} 2015-07-19 10:50 - 2015-07-19 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{0E4A4771-ADD6-42DA-B8B9-5E93B550544B} 2015-08-30 12:17 - 2015-08-30 12:17 - 0000000 _____ () C:\Users\Eule\AppData\Local\{1BF58C7F-533D-47E1-9B25-35508568B59E} 2015-06-16 12:24 - 2015-06-16 12:24 - 0000000 _____ () C:\Users\Eule\AppData\Local\{4062E831-40F8-4687-857A-359ED083B566} 2015-06-10 14:59 - 2015-06-10 14:59 - 0000000 _____ () C:\Users\Eule\AppData\Local\{475B16AB-8A54-407A-902B-E36FE667607B} 2015-07-03 16:55 - 2015-07-03 16:55 - 0000000 _____ () C:\Users\Eule\AppData\Local\{55689E5B-BFB3-4C65-9E9F-79EAA65AAD23} 2015-07-20 10:50 - 2015-07-20 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{6DA5D6D2-3B2E-4887-83E4-944ACBDD2F9B} 2015-07-24 10:50 - 2015-07-24 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{79C4129A-F14C-4C72-A11A-459F37E358C3} 2015-07-21 10:50 - 2015-07-21 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{808072FD-1866-4D0D-A50B-67E2E8DEEFE5} 2015-06-17 14:14 - 2015-06-17 14:14 - 0000000 _____ () C:\Users\Eule\AppData\Local\{976EE474-195D-4BCE-828B-860C42774A06} 2015-06-18 14:50 - 2015-06-18 14:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{A50B3F8C-8977-4C40-B26F-0043AB53FE88} 2015-07-23 10:50 - 2015-07-23 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{B2F1A719-2CAF-450A-852C-4CC9CB888645} 2015-06-26 15:25 - 2015-06-26 15:25 - 0000000 _____ () C:\Users\Eule\AppData\Local\{C6A0ABCB-87AA-40A4-8536-A9F7E5C65D55} 2015-06-25 15:25 - 2015-06-25 15:25 - 0000000 _____ () C:\Users\Eule\AppData\Local\{CE097F07-9A2C-4D95-84B1-F21C7ABE1B06} 2015-06-20 05:54 - 2015-06-20 05:54 - 0000000 _____ () C:\Users\Eule\AppData\Local\{D977C658-BA56-4F1B-90A1-B4B6EA129372} 2015-06-21 13:41 - 2015-06-21 13:41 - 0000000 _____ () C:\Users\Eule\AppData\Local\{F425BFFD-41D6-4BF8-8DE5-CAC629AB2920} Einige Dateien in TEMP: ==================== C:\Users\Eule\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-01 16:49 ==================== Ende von FRST.txt ============================ Vielen Dank schonmal für die hilfe!!!!! |
06.12.2015, 09:21 | #7 |
/// the machine /// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll"ESET Online Scanner
Downloade Dir bitte SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
06.12.2015, 15:55 | #8 |
| Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Den Inhalt von ADWCleaner/Quarantäne kann ich doch beruhigt löschen oder??? ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=216f17519ff2d04b9861c1045a405ba2 # end=init # utc_time=2015-12-06 11:04:29 # local_time=2015-12-06 12:04:29 (+0100, Mitteleuropäische Zeit) # country="Germany" # osver=6.2.9200 NT Update Init Update Download Update Finalize Updated modules version: 27065 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=216f17519ff2d04b9861c1045a405ba2 # end=updated # utc_time=2015-12-06 11:07:32 # local_time=2015-12-06 12:07:32 (+0100, Mitteleuropäische Zeit) # country="Germany" # osver=6.2.9200 NT # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=216f17519ff2d04b9861c1045a405ba2 # engine=27065 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2015-12-06 01:10:10 # local_time=2015-12-06 02:10:10 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1031 # osver=6.2.9200 NT # compatibility_mode_1='' # compatibility_mode=5893 16776573 100 94 61945 3300080 0 0 # scanned=294468 # found=96 # cleaned=0 # scan_time=7358 sh=21759F023B7289E2CC25F4881A1F43325E1A5693 ft=1 fh=c71c0011659c7894 vn="Variante von Win32/Adware.MultiPlug.FL Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BestSaoveFaoRYoU\7JWXnj5XPAc4Cl.dll.vir" sh=6CCE392521904F27A1B587012205D087357622E2 ft=1 fh=6879a22ed1da4143 vn="Variante von Win64/Adware.MultiPlug.G Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BestSaoveFaoRYoU\7JWXnj5XPAc4Cl.x64.dll.vir" sh=E996BE784BF71A5BF8BC5FF598DEAB8427AF64DE ft=1 fh=15da746447519a1d vn="Variante von Win32/Adware.CognosAds.E Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe.vir" sh=265F2BFFEB97B4A9F82DADFF2E26343A8592CD3C ft=1 fh=c71c001192caf50d vn="Win32/AlteredSoftware.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir" sh=75D4CEA485C4A102708AA39A773CCD28C907EE80 ft=1 fh=d9cdf1c8ff17595a vn="Variante von Win32/AlteredSoftware.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir" sh=A3335D30E9C0EDCFAE2B06C61615A9E257A942D9 ft=1 fh=c71c0011fea7552e vn="Variante von Win32/AlteredSoftware.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll.vir" sh=EDB4A6C7E75E18ACB805418EFFD78267BB2F37C4 ft=1 fh=c71c001126306ac8 vn="Variante von Win32/AlteredSoftware.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir" sh=399CE73FBD27EABB303FD899656E3C66C55B3F29 ft=1 fh=c71c001160921a34 vn="Variante von Win32/AlteredSoftware.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir" sh=4534CA26A3C645471129F21CE9915491EAD3520F ft=1 fh=7c7c0bca3ca75ab3 vn="Variante von Win64/Toolbar.Crossrider.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\7b25ddd5-0e8c-4191-9a7c-deb98370d432.dll.vir" sh=C98B23805C5412E3FD354324C02531E74604E80E ft=1 fh=65d42a0666698856 vn="Variante von Win32/Toolbar.CrossRider.AV evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-1-6.exe.vir" sh=250A38E018D10960B15651BF81E3C0C3AC3BD0BE ft=1 fh=7032300f2755d919 vn="Variante von Win32/Toolbar.CrossRider.CD evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-1-7.exe.vir" sh=80AE3C32F397BA64AF4C8630DA1A56E977F9C61F ft=1 fh=0d5fba4c585c7e4c vn="Variante von Win32/Toolbar.CrossRider.CD evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-10.exe.vir" sh=694A3BF3CD0C0E0351FF1FAAA1FB46EAEC5C44DD ft=1 fh=f6685667a9416438 vn="Variante von Win32/Toolbar.CrossRider.BV evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-11.exe.vir" sh=D6CAA9CDC495C99B4E89A4DC8E9110EC8C424B8A ft=1 fh=1137f786bd2fff7a vn="Variante von Win32/Toolbar.CrossRider.CC evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-5.exe.vir" sh=807EFDA33D8E159C8B334E5AB1D72D704020B95D ft=1 fh=ceeb0981091b1162 vn="Variante von Win32/Toolbar.CrossRider.BZ evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-6.exe.vir" sh=F854B51FAAB96CF487DFA307D7D3B3FE011C1CEC ft=1 fh=cde8eb5aefbc7191 vn="Variante von Win64/Toolbar.Crossrider.N evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-64.exe.vir" sh=250A38E018D10960B15651BF81E3C0C3AC3BD0BE ft=1 fh=7032300f2755d919 vn="Variante von Win32/Toolbar.CrossRider.CD evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab-7.exe.vir" sh=6DA6DF191B14C4D9772458552C612623EC6AE88D ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.R evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\914a4d3b-6f06-4222-a874-e55856dce7ab.crx.vir" sh=567E493D60EA6822FADF555255A56914C6C2D8D9 ft=1 fh=79fdb26e7bb97be2 vn="Variante von Win32/Toolbar.CrossRider.CG evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\9ac0598f-7dbe-42f3-aee0-f669d6a80f4b.dll.vir" sh=BB6EDAB7405952F7637CE682FD76708393A4E657 ft=1 fh=53918000b3050ec1 vn="Variante von Win32/Toolbar.CrossRider.CU evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\Uninstall.exe.vir" sh=F7A8E337E372B4C01F2A5A6F72F2A3BC3E75D6DF ft=1 fh=43e4889b34aeba52 vn="Win32/Packed.VMDetector.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\I - Cinema\utils.exe.vir" sh=97CFE5C1CA20CC2B2ED01E3D86725DFA57E8DAEE ft=1 fh=c71c0011b921490d vn="Variante von Win32/Adware.MultiPlug.FL Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SahOpDrop\ucEZPZvPEGodzn.dll.vir" sh=B7710DFB0E48DCDD55D9DA732B93B9AEA48A1EBE ft=1 fh=6879a22e33edadcd vn="Variante von Win64/Adware.MultiPlug.G Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SahOpDrop\ucEZPZvPEGodzn.x64.dll.vir" sh=D62E826B13E242DC0BABCAD05E3A4613795A024F ft=0 fh=0000000000000000 vn="Win32/Toolbar.TNT2.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\XTab\ffsearch_toolbar!1.0.0.1025.xpi.vir" sh=B06EE6E97D30DB38C3E8FEA66B396DB00EC79616 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.O evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\Application\36.0.1985.136\default_apps\crossbrowser.crx.vir" sh=05F6C33F5A45CD34A9CAF61E295E886922448732 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.O evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\Application\36.0.1985.136\Installer\chrome.7z.vir" sh=C0E1F5195C463352DF14B93FE8B53ED0359BD119 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Cache\f_000002.vir" sh=F4868E75E21D37FCBC9A5871B6B120EB3E4600DF ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.O evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\14.js.vir" sh=59418B96ED4D653FE8F4C66E5E95BAE9ED93C808 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\180.js.vir" sh=32FE8D811A0CD3B7424FD03880F6FE6C32781264 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\19.js.vir" sh=E7E3EEBCDE7D08E92E4DA1492D0198D99EB8347F ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\200.js.vir" sh=D3F5F1CA2B7DB6EA0081432DB9F3F7290193A8A2 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\263.js.vir" sh=BA2B61F97B433E61EB2DF4A6FBE657BA83BA4ADA ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\267.js.vir" sh=E9DD2C03F93A35E32413CBB3B87CA74D1430D8D7 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\281.js.vir" sh=EEC37C06483A1CC592AEBB925056B8C66C782438 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\289.js.vir" sh=DF5417C02F7DA3C534D2FC914C88D491810188B7 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.M evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\47.js.vir" sh=BDCFA8379825B1BC17A13BDF73B7384DE46E7C3B ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\64.js.vir" sh=03517F89D3F20D2D4E2B1A956F8248C9DA9FFC18 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\91.js.vir" sh=49BBE5AC7BA9C32FE3C5B24F1074385D2C60FA38 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\93.js.vir" sh=778B8C980A33D3679264BE3920E6F15D75731E06 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.N evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\extensionData\plugins\97.js.vir" sh=908310927982C1DFD45B8CBBF669A940C0CE7CC6 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\82dc7dc4446ce7191795dcd54715f384.js.vir" sh=D7FE306EB39D64F7994917931E25229A5B156640 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.R evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\main.js.vir" sh=AF15C2CD390979ACF65E9210C6DB0E85252F6052 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\api\17cfec9a91fbf67bb9dfd4747c2f9b74.js.vir" sh=832ADA6E9B2673CA1DE314A566FF76316F0A2997 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\api\6129332779167e26ffb504f4c2994729.js.vir" sh=B959D7BE74EBA2B82B780E14A213BB132451990B ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\api\a4cd58af0ee58212a12964c260359cc2.js.vir" sh=F4FE303A5886572113DF4DA3579956CEBB907F56 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\api\a7b875912687a6178295a12938cc9e09.js.vir" sh=902E327ADBC89F0A47999D10E7F6F6554CFCC0F4 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\04963cf5b2204f65f3b6d8e8fa745897.js.vir" sh=F7B2040B9EB935D0FFB1571CC0184FED6B7D7583 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\3411c845947e8025b4d7bb36939c158e.js.vir" sh=D88F73897D0415B880A52D98AACBCBA8372956B2 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\5013be69beb3f1fd11a5ba58c5bb21cd.js.vir" sh=6B8D57805A81A0C2A68E87C410FF89D15BB71CC9 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\6084f51bf303cfdc08e37b7f48bb0b5e.js.vir" sh=EDB82EF0A2AC160256F1A5C49F0778E3A42AC559 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\61924c323df868d2d7bdbe8a61c4925d.js.vir" sh=3E6E49061DC4C0339624D1BD4C5972D2D6988DA4 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\be877e7223e5c0646deecc350c111a5b.js.vir" sh=B3ABD3CAA6ADACF7A87576C3F949A2C023F51456 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\ebpeonjdeofpjegbdiibbdjlgfohngee\1.26.14_0\js\lib\cf9e78da1e6dea50b071526f3af2a945.js.vir" sh=63B8C91672775A8A9D1641AF128B88DB0B1A9B3F ft=0 fh=0000000000000000 vn="JS/ClaraLab.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\gfmdmibgfbecppaeocifplgmepgcpcbi\1.3.0.9695_0\scripts\content\montiera.js.vir" sh=57C872446FAA34F3C1403986702F9177DFC0A7D0 ft=0 fh=0000000000000000 vn="JS/ClaraLab.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Extensions\gfmdmibgfbecppaeocifplgmepgcpcbi\1.3.0.9695_0\scripts\content\scriptInjection.js.vir" sh=C208D490A8182C14C29B6460B4B53BE3DE9F5AD4 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\BoBrowser\User Data\Default\Local Extension Settings\ebpeonjdeofpjegbdiibbdjlgfohngee\000003.log.vir" sh=E176D7F68E9CC6D03E8555B51565423033CDF6A9 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie2.2.5.zip.vir" sh=65DBF1D094F3C63AD12C8F034D8D132A962FA46E ft=1 fh=073c304ffb9fa3a8 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\aapt.exe.vir" sh=E45C1D583BDD644F636D8DA387761796CE1D7038 ft=1 fh=fe33acdf835fbfaa vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DaemonProcess.exe.vir" sh=1B2A8D76BEC0FD01463F6F300A12A13B6D226972 ft=1 fh=d4699adab593d0fc vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DCR.dll.vir" sh=9E2C3D7CDEDE2543CC0F7960D9837D1B6D2BE75F ft=1 fh=7a481a0f621bd9cc vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\devcon_x64.exe.vir" sh=E54955407B312B936C2873446E59355F0EA5CA73 ft=1 fh=d287fe18b11aa882 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\devcon_x86.exe.vir" sh=AC2C43F0C847F70918393CA3EE2E0FB2B5E6C475 ft=1 fh=3a9a28f37eda5e46 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\Device.dll.vir" sh=77FF724EA6530E24FBD9EA8C2D59B1B291796874 ft=1 fh=d2ee2046d07ae837 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DriverInstall_x64.exe.vir" sh=1A8B4BA11E613DE010E51F03D89B513527846AA4 ft=1 fh=95b4c8bc1ea46e9e vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DriverInstall_x86.exe.vir" sh=8EE77C3EA732059837B316BEEE37A0809CD68F0B ft=1 fh=77f6a6fe09a20461 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\lsusb.exe.vir" sh=CB81002D6E78DD5934B3CDB60525881D0DB158F2 ft=1 fh=4b95d1a70ce2bd66 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\mgadb.exe.vir" sh=7AE1AB88B3DD87EDEC03B417B1FC443782BBA42D ft=1 fh=eaf42f046d39b88b vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\MgAssist.exe.vir" sh=02D365A799FDCBF8C8A507FCFC69946B402FEA53 ft=1 fh=92f3782890b0d44b vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\mgusb.exe.vir" sh=75773C452146645B80387025120B3AFC1BD7F608 ft=1 fh=f924702fd032a998 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\Mobogenie.exe.vir" sh=CD814F8CAC8880831029BCA4568031141FFE8534 ft=0 fh=0000000000000000 vn="Variante von Android/Mobserv.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\MUServer.apk.vir" sh=D9B3BA161D98EA1AD0E61015B2F11DB47A0A6875 ft=1 fh=8252b73ae811ba6a vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\New_UpdateMoboGenie.exe.vir" sh=8C6F55634ADBCA6FAA8101C1B2FB024B4855499D ft=1 fh=2876557c9c75ac21 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\OutlookOperatorC.exe.vir" sh=7DF0D5852E7C618B0265E6DBF4431A2C40F052BF ft=1 fh=c59252324c5afb66 vn="Variante von Win32/Adware.Mobogenie.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\uninst.exe.vir" sh=DE558CBCD82740FF640F94A525BE91F99E91FEA8 ft=1 fh=678d708582d1208d vn="Variante von MSIL/Goobzo.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\SearchModule\2.7.6.1776\DeskBar.exe.vir" sh=99F97AD369E8621AB4D17DF53E80E60FEE99C727 ft=1 fh=42567613b862d846 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Eule\AppData\Local\Temp\OCS\ocs_v71b.exe.vir" sh=93137D042379D656FD876F038BBED297AD0786DA ft=1 fh=21fc1a04912db668 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Eule\Downloads\FlashSFV - CHIP-Installer.exe" sh=D09CD50E937E77BEB19838DDAFA1D62C3162AE42 ft=1 fh=697c33e924428848 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Eule\Downloads\gimp-2.8.10-setup - CHIP-Downloader.exe" sh=8137EE76519B58D7105885CCF3A90279EE8CEC4D ft=1 fh=24ef19d4d78a9bc1 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Eule\Downloads\OpenOffice - CHIP-Downloader.exe" sh=DA1EF1BBE829CD039B4241777EB5A9C8A6AA779E ft=1 fh=edc42307dde79e89 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Eule\Downloads\OpenOffice - CHIP-Installer.exe" sh=86B5854BE0CC897F656405B44C8DDAC1EE7574C7 ft=1 fh=43d05ce15a08abc3 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Eule\Downloads\Samsung Kies - CHIP-Installer.exe" sh=A6E4225BC1FF3A7F5D4A4027493A0D1963DA75AD ft=1 fh=88ce8084b182a513 vn="Variante von Win32/DownloadGuide.D evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Eule\Downloads\tunngle.exe" sh=1A29CA3FE8086EB28C5E2183F501C038EAC46A49 ft=1 fh=9776102d35e66a1f vn="Variante von Win32/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\BrowserAirInst.exe.exe" sh=190FE8088073B9277754714A9D2067B463245DE6 ft=1 fh=bd7fc65e11f7a043 vn="Variante von Win32/Toptools.D evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\InstallHelper.exe" sh=E39B15A8EF1FA14C8F284B06C9CE181A76530566 ft=1 fh=c71c0011fd3d655d vn="Variante von Win32/SoftPulse.AK evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\ScoreSelector.dll" sh=E1B7FB0EEA1F2519ADFE13474ADDB64C638FD8BA ft=1 fh=6e253bbc0a48b1fa vn="Variante von MSIL/SoftPulse.A evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\Setup.exe" sh=C2930CB39C7A1EF6EDD6F779655611934DDA3907 ft=1 fh=1512bf707404b06b vn="Variante von Win32/SoftPulse.AK evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\Wizard.exe" sh=8D76053913FF144FDEAC8C40D06174CA31D280FA ft=1 fh=40a8730381cae0b4 vn="Variante von Win32/Adware.MaxDriver.A Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\1quqnkpu.dny\MaxDrivrUpdater.exe" sh=FFA3B7ACA10190BFE3C4A8051FB0515FD4F8B482 ft=1 fh=66e4ef33f7c0175e vn="Variante von Win32/Adware.CouponMarvel.Q.gen Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\ewzk5awt.aia\Setup.exe" sh=A3DA840A5FA304B17DB84BBCE13D7C6E29E12656 ft=1 fh=1886e55ca9c8630b vn="Variante von Win64/Wajam.B evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\i2bcvmzx.dli\WWE_1.54.1.13.exe" sh=A90BFFCD9F54CF9E6D7358E8808DC72F8887A398 ft=1 fh=cfa2479fab36ba15 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\is-6825K.tmp\493.exe" sh=502DB4D9F7D3214A87AAA16F9D950461BEDF1FBD ft=1 fh=cfa2479f1c4d3c04 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\is-6825K.tmp\package_oursurfing_installer_multilang.exe" sh=4DA2781FAF3C5B5796897F48E85E131B7512903C ft=1 fh=c227c4c11f201181 vn="Mehrere Bedrohungen" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\rv5u5nz5.duf\Setup.exe" sh=9F1CC5B197BE9F53E2636E46777A2C09EDD6C581 ft=1 fh=fd26318b156776bf vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Windows.old\Users\Eule\AppData\Local\Temp\w04r4fkw.kqj\setup_mpck_en.exe" sh=F43A66F5AC79276A3E27467D5DD100DDCFA61891 ft=1 fh=80399c2706f2ad8c vn="Variante von Win32/Hao123.A evtl. unerwünschte Anwendung" ac=I fn="E:\Download\FFSetup3.0.1.exe" sh=F43A66F5AC79276A3E27467D5DD100DDCFA61891 ft=1 fh=80399c2706f2ad8c vn="Variante von Win32/Hao123.A evtl. unerwünschte Anwendung" ac=I fn="E:\Download\FFSetup3.0.1\FFSetup3.0.1.exe" Results of screen317's Security Check version 1.013 --- 11/28/15 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Defender WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Adobe Flash Player 19.0.0.245 Mozilla Firefox (42.0) Google Chrome (47.0.2526.73) ````````Process Check: objlist.exe by Laurent```````` Windows Defender MSMpEng.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Malwarebytes Anti-Malware mbamscheduler.exe Windows Defender MpCmdRun.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-12-2015 durchgeführt von Eule (Administrator) auf EULE-VAIO (06-12-2015 15:40:16) Gestartet von C:\Users\Eule\Desktop Geladene Profile: Eule (Verfügbare Profile: Eule) Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (DEVGURU Co., LTD.) E:\Samsung Kies\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Samsung Electronics Co., Ltd.) E:\Samsung Kies\Kies\KiesTrayAgent.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM-x32\...\Run: [DivXMediaServer] => E:\Programs\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-11-17] (DivX, LLC) HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] () HKLM-x32\...\Run: [AveoSTI.exe] => C:\Program Files (x86)\AVEO USB2.0 PC Camera(U2HGCV3P31048)\AveoSTI.exe [32768 2010-12-02] (AVEO) HKLM-x32\...\Run: [KiesTrayAgent] => E:\Samsung Kies\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-305981025-81508073-3388003974-1000\...\Run: [DAEMON Tools Lite] => E:\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 195.168.2.1 Tcpip\..\Interfaces\{b2612577-b758-4e79-b3f4-6200d1a90d12}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{C5D80117-735B-4A02-8F98-D9025A777E53}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{e33f5f25-b76f-42c6-82a2-5edc0bd18f8c}: [DhcpNameServer] 195.168.2.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130921327636048532&GUID=68E6370B-9B65-4B31-BE7D-BFBE0812BAE7 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-305981025-81508073-3388003974-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130921327636092376&GUID=68E6370B-9B65-4B31-BE7D-BFBE0812BAE7 HKU\S-1-5-21-305981025-81508073-3388003974-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Eule\AppData\Roaming\Mozilla\Firefox\Profiles\d3hgnkhp.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-12] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-12] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> E:\Programs\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> E:\Programs\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> E:\Programs\VLC\npvlc.dll [2014-07-23] (VideoLAN) FF Extension: Kein Name - C:\Users\Eule\AppData\Roaming\Mozilla\Firefox\Profiles\d3hgnkhp.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [nicht gefunden] StartMenuInternet: FIREFOX.EXE - E:\Mozilla Firefox\firefox.exe Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.de/?gfe_rd=cr&ei=xYZJVsnBGY-r8wfY0beoDw&gws_rd=ssl" CHR Profile: C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Magic Actions for YouTube™) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-09-28] CHR Extension: (YouTube) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28] CHR Extension: (Google-Suche) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10] CHR Extension: (Google Docs Offline) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-23] CHR Extension: (Skype Click to Call) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-11-23] CHR Extension: (Click&Clean App) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-11-10] CHR Extension: (Google Mail) - C:\Users\Eule\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S2 SkypeUpdate; E:\Skype\Updater\Updater.exe [327296 2015-07-09] (Skype Technologies) R2 ss_conn_service; E:\Samsung Kies\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) S3 TunngleService; E:\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH) [Datei ist nicht signiert] R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.) S3 AVEO; C:\Windows\system32\DRIVERS\AVEOdcnt.sys [346496 2012-02-08] (AVEO) R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-10-30] (Microsoft Corporation) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-10] (Disc Soft Ltd) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-06] (Malwarebytes) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2069-11-22 16:48 - 2005-11-30 17:06 - 07254894 _____ C:\Users\Eule\Downloads\speed.exe 2069-11-22 16:48 - 2005-11-15 10:56 - 00380928 ____R C:\Users\Eule\Downloads\server.dll 2015-12-06 15:40 - 2015-12-06 15:40 - 00012369 _____ C:\Users\Eule\Desktop\FRST.txt 2015-12-06 15:40 - 2015-12-06 15:40 - 00000000 ____D C:\Users\Eule\Desktop\FRST-OlderVersion 2015-12-06 12:05 - 2015-12-06 15:36 - 00852771 _____ C:\Users\Eule\Desktop\SecurityCheck.exe 2015-12-06 12:04 - 2015-12-06 12:04 - 00000000 ____D C:\Program Files (x86)\ESET 2015-12-06 12:03 - 2015-12-06 12:04 - 02870984 _____ (ESET) C:\Users\Eule\Downloads\esetsmartinstaller_deu.exe 2015-12-05 10:29 - 2015-12-05 10:29 - 00002096 _____ C:\mbam.txt2.txt 2015-12-05 10:13 - 2015-12-05 10:13 - 01599336 _____ (Malwarebytes) C:\Users\Eule\Desktop\JRT.exe 2015-12-05 10:11 - 2015-12-05 10:11 - 01736704 _____ C:\Users\Eule\Desktop\AdwCleaner_5.023.exe 2015-12-05 09:55 - 2015-12-06 13:54 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-12-05 09:55 - 2015-12-05 10:26 - 00001161 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-05 09:55 - 2015-12-05 09:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-05 09:55 - 2015-12-05 09:55 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-05 09:55 - 2015-12-05 09:55 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-05 09:55 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-12-05 09:55 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-12-05 09:55 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2015-12-05 09:53 - 2015-12-05 09:54 - 22908888 _____ (Malwarebytes ) C:\Users\Eule\Downloads\mbam-setup-2.2.0.1024 (1).exe 2015-12-05 09:52 - 2015-12-05 09:53 - 22908888 _____ (Malwarebytes ) C:\Users\Eule\Downloads\mbam-setup-2.2.0.1024.exe 2015-12-04 12:55 - 2015-12-05 10:26 - 00000723 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-12-04 12:55 - 2015-12-05 10:26 - 00000723 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-12-04 12:55 - 2015-12-04 12:55 - 00000000 ____D C:\Users\Eule\AppData\Roaming\Mozilla 2015-12-04 12:55 - 2015-12-04 12:55 - 00000000 ____D C:\Users\Eule\AppData\Local\Mozilla 2015-12-04 12:52 - 2015-12-04 12:53 - 43446216 _____ C:\Users\Eule\Downloads\Firefox Setup 42.0_de.exe 2015-12-04 11:24 - 2015-12-04 11:25 - 00029624 _____ C:\Users\Eule\Downloads\Addition.txt 2015-12-04 11:22 - 2015-12-06 15:40 - 02369024 _____ (Farbar) C:\Users\Eule\Desktop\FRST64.exe 2015-12-04 11:22 - 2015-12-06 15:40 - 00000000 ____D C:\FRST 2015-12-04 11:22 - 2015-12-04 11:25 - 00066840 _____ C:\Users\Eule\Downloads\FRST.txt 2015-12-04 08:30 - 2015-12-04 08:30 - 00254408 _____ C:\Users\Eule\Downloads\DriverTurboSetup.exe 2015-12-03 00:26 - 2015-12-03 00:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2015-12-03 00:03 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-12-03 00:03 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-12-03 00:03 - 2015-11-22 11:41 - 01284960 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-12-03 00:03 - 2015-11-22 11:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-12-03 00:03 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-12-03 00:03 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-12-03 00:03 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-12-03 00:03 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-12-03 00:03 - 2015-11-22 10:56 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-12-03 00:03 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll 2015-12-03 00:03 - 2015-11-22 10:52 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-12-03 00:03 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-12-03 00:03 - 2015-11-22 10:43 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-12-03 00:03 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll 2015-12-03 00:03 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2015-12-03 00:03 - 2015-11-22 10:41 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-12-03 00:03 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-12-03 00:03 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-12-03 00:03 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2015-12-03 00:03 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2015-12-03 00:03 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2015-12-03 00:03 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2015-12-03 00:03 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 13380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-12-03 00:03 - 2015-11-22 10:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-12-03 00:03 - 2015-11-22 10:30 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-12-03 00:03 - 2015-11-22 10:30 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-12-03 00:03 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-12-03 00:03 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-12-03 00:03 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2015-12-03 00:03 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-12-03 00:03 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 12124672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-12-03 00:03 - 2015-11-22 10:24 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2015-12-03 00:03 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2015-12-03 00:03 - 2015-11-22 10:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-12-03 00:03 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2015-12-03 00:03 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-12-03 00:03 - 2015-11-22 10:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll 2015-12-03 00:03 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2015-12-03 00:02 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-12-03 00:02 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-12-03 00:02 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll 2015-12-03 00:02 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys 2015-12-03 00:02 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll 2015-12-03 00:02 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll 2015-12-03 00:02 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-12-03 00:02 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-12-03 00:02 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-12-03 00:02 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll 2015-12-03 00:02 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2015-12-03 00:02 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-12-03 00:02 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll 2015-12-03 00:02 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll 2015-12-03 00:02 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll 2015-12-03 00:02 - 2015-11-22 10:55 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys 2015-12-03 00:02 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll 2015-12-03 00:02 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-12-03 00:02 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-12-03 00:02 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll 2015-12-03 00:02 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-12-03 00:02 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2015-12-03 00:02 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-12-03 00:02 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll 2015-12-03 00:02 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll 2015-12-03 00:02 - 2015-11-22 10:47 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2015-12-03 00:02 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2015-12-03 00:02 - 2015-11-22 10:46 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-12-03 00:02 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-12-03 00:02 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll 2015-12-03 00:02 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-12-03 00:02 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2015-12-03 00:02 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2015-12-03 00:02 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll 2015-12-03 00:02 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2015-12-03 00:02 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-12-03 00:02 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2015-12-03 00:02 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-12-03 00:02 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2015-12-03 00:02 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll 2015-12-03 00:02 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-12-03 00:02 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2015-12-03 00:02 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2015-12-03 00:02 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll 2015-12-03 00:02 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-12-03 00:02 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-12-03 00:02 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-12-03 00:02 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-12-03 00:02 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2015-12-03 00:02 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2015-12-03 00:02 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2015-12-03 00:02 - 2015-11-22 10:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-12-03 00:02 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2015-12-03 00:02 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2015-12-03 00:02 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-12-03 00:02 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2015-12-03 00:02 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-12-02 23:41 - 2015-12-02 23:41 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\ChromeSetup (2).exe 2015-12-02 23:34 - 2015-12-05 10:26 - 00002314 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-12-02 23:34 - 2015-12-02 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-02 23:32 - 2015-12-02 23:32 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\ChromeSetup (1).exe 2015-12-02 10:59 - 2015-12-02 10:59 - 00120364 _____ C:\Users\Eule\Downloads\Umsatzdetails_Konto019872100_EUR_02-12-2015_1059.pdf 2015-12-02 10:59 - 2015-12-02 10:59 - 00120364 _____ C:\Users\Eule\Desktop\Umsatzdetails_Konto019872100_EUR_02-12-2015_1059.pdf 2015-12-02 00:56 - 2015-12-02 00:56 - 00000000 ____D C:\Users\Eule\AppData\Local\ActiveSync 2015-12-02 00:54 - 2015-12-02 00:54 - 00000020 ___SH C:\Users\Eule\ntuser.ini 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-12-01 17:15 - 2015-12-01 17:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-12-01 17:10 - 2015-12-05 11:28 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-12-01 17:03 - 2015-12-05 10:26 - 00001552 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-01 17:00 - 2015-12-01 17:00 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2015-12-01 16:58 - 2015-12-02 11:29 - 00000000 ____D C:\Users\Eule 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Vorlagen 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Startmenü 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Netzwerkumgebung 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Lokale Einstellungen 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Eigene Dateien 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Druckumgebung 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Videos 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Musik 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Documents\Eigene Bilder 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Local\Verlauf 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\AppData\Local\Anwendungsdaten 2015-12-01 16:58 - 2015-12-01 16:58 - 00000000 _SHDL C:\Users\Eule\Anwendungsdaten 2015-12-01 16:54 - 2015-12-01 16:54 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-12-01 16:54 - 2015-12-01 16:54 - 00000000 ____D C:\Program Files\Common Files\Atheros 2015-12-01 16:51 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-12-01 16:49 - 2015-12-01 17:05 - 00219576 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-12-01 16:48 - 2015-12-01 18:00 - 00000000 ___DC C:\WINDOWS\Panther 2015-12-01 16:45 - 2015-12-01 16:45 - 00000000 ____D C:\Windows.old 2015-12-01 16:44 - 2015-12-01 16:44 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2015-12-01 16:44 - 2015-12-01 16:44 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2015-12-01 16:44 - 2015-12-01 16:44 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2015-12-01 16:44 - 2015-12-01 16:44 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe 2015-12-01 16:44 - 2015-12-01 16:44 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2015-12-01 16:44 - 2015-12-01 16:44 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2015-12-01 16:43 - 2015-10-29 19:43 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2015-12-01 16:43 - 2015-10-29 19:43 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2015-12-01 16:43 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2015-12-01 16:43 - 2015-10-29 19:25 - 06359040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2015-12-01 16:43 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2015-12-01 16:42 - 2015-12-01 16:42 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files\MSBuild 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-12-01 16:40 - 2015-12-01 16:40 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-12-01 16:39 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-12-01 16:39 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-12-01 16:39 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-12-01 16:39 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-01 12:49 - 2015-12-01 12:49 - 01164834 _____ C:\Users\Eule\Downloads\Stadtwerke Lübeck 31.11.2015.pdf 2015-11-24 23:11 - 2015-11-25 08:07 - 00000000 ____D C:\Users\Eule\Desktop\Bewerbung 2015-11-23 11:47 - 2015-11-23 11:47 - 00111419 _____ C:\Users\Eule\Downloads\CCF23112015_0008.pdf 2015-11-23 10:23 - 2015-11-23 10:23 - 00000000 ____D C:\Users\Eule\Tracing 2015-11-23 10:18 - 2015-12-05 11:05 - 00000000 ____D C:\Users\Eule\AppData\Roaming\Skype 2015-11-23 10:18 - 2015-12-05 10:26 - 00002596 _____ C:\Users\Public\Desktop\Skype.lnk 2015-11-23 10:18 - 2015-12-01 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-11-23 10:18 - 2015-11-23 10:24 - 00000000 ____D C:\Program Files (x86)\Skype 2015-11-23 10:18 - 2015-11-23 10:18 - 00000000 ____D C:\Users\Eule\AppData\Local\Skype 2015-11-23 10:18 - 2015-11-23 10:18 - 00000000 ____D C:\ProgramData\Skype 2015-11-23 10:16 - 2015-11-23 10:16 - 01504384 _____ (Skype Technologies S.A.) C:\Users\Eule\Downloads\SkypeSetup.exe 2015-11-20 07:38 - 2015-12-05 10:26 - 00002233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2015-11-20 07:38 - 2015-11-20 07:38 - 00000000 ____D C:\Users\Eule\AppData\LocalLow\Google 2015-11-20 07:37 - 2015-11-20 07:37 - 00929872 _____ (Google Inc.) C:\Users\Eule\Downloads\GoogleEarthSetup.exe 2015-11-12 09:05 - 2015-12-01 17:10 - 00002244 _____ C:\WINDOWS\System32\Tasks\{D3CF40F7-F7A0-4CC7-94D4-E1B97F88E46B} 2015-11-12 08:58 - 2015-11-12 08:58 - 00000000 ____D C:\Users\Public\Documents\Baidu 2015-11-12 08:37 - 2015-11-19 09:53 - 00000000 ____D C:\ProgramData\Istsikre 2015-11-12 08:28 - 2015-12-06 14:49 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-12 08:28 - 2015-12-06 12:00 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-12 08:28 - 2015-12-02 06:44 - 00004196 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-11-12 08:28 - 2015-12-02 06:44 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-11-11 07:36 - 2015-11-11 07:36 - 00000000 ____D C:\Users\Eule\AppData\Local\MicrosoftEdge 2015-11-10 12:03 - 2015-11-10 12:03 - 00000000 ____D C:\Users\Eule\AppData\Local\NetworkTiles 2015-11-10 08:40 - 2015-11-10 08:40 - 00000000 ____D C:\Users\Eule\AppData\Local\PeerDistRepub 2015-11-10 07:56 - 2015-11-10 07:56 - 00260896 _____ C:\Users\Eule\Downloads\Zertifikat Barakademie.pdf 2015-11-10 07:56 - 2015-11-10 07:56 - 00000166 _____ C:\Users\Eule\Downloads\friedrichlautersbacher.vcf ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-06 15:08 - 2015-02-15 00:06 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-12-06 12:25 - 2014-04-26 12:47 - 00000000 ____D C:\Users\Eule\AppData\Roaming\vlc 2015-12-06 12:03 - 2014-04-26 12:02 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{189C871E-8F8F-44B6-B652-C1458D133B70} 2015-12-05 11:34 - 2015-10-30 19:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat 2015-12-05 11:34 - 2015-10-30 19:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat 2015-12-05 11:34 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF 2015-12-05 11:34 - 2015-10-05 11:09 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-12-05 11:28 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-12-05 11:23 - 2015-10-30 07:28 - 00000000 ____D C:\Windows 2015-12-05 11:01 - 2015-02-15 01:28 - 00000000 ____D C:\AdwCleaner 2015-12-05 10:44 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-05 10:26 - 2015-07-15 09:32 - 00000734 _____ C:\Users\Public\Desktop\Audiograbber 1.83.lnk 2015-12-05 10:26 - 2015-03-30 14:42 - 00000554 _____ C:\Users\Public\Desktop\Tunngle.lnk 2015-12-05 10:26 - 2015-03-14 17:40 - 00000742 _____ C:\Users\Public\Desktop\DivX Player.lnk 2015-12-05 10:26 - 2015-03-14 17:39 - 00000781 _____ C:\Users\Public\Desktop\DivX Converter.lnk 2015-12-05 10:26 - 2015-02-09 22:32 - 00000600 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk 2015-12-05 10:25 - 2015-10-05 11:32 - 00001043 _____ C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk 2015-12-05 10:25 - 2015-10-05 11:22 - 00002386 _____ C:\Users\Eule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-12-05 10:25 - 2015-03-14 17:40 - 00000795 _____ C:\Users\Eule\Desktop\DivX Movies.lnk 2015-12-05 10:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\System 2015-12-05 10:21 - 2015-04-10 22:27 - 00000000 ____D C:\Program Files (x86)\TampaSystem 2015-12-05 10:21 - 2015-02-15 01:25 - 00000000 ____D C:\Program Files (x86)\20e8e0d1-3254-4c11-af64-8a1431d157ef 2015-12-05 08:48 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-12-05 08:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache 2015-12-04 08:30 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-03 13:08 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-12-02 23:34 - 2015-04-10 22:45 - 00000000 ____D C:\Program Files (x86)\Google 2015-12-02 04:39 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat 2015-12-02 01:15 - 2014-04-25 13:03 - 00000000 ____D C:\Users\Eule\AppData\Local\Packages 2015-12-02 01:12 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow 2015-12-02 00:59 - 2014-04-25 13:05 - 00000000 __RDO C:\Users\Eule\SkyDrive 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-12-02 00:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-12-02 00:54 - 2015-09-10 06:44 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-12-01 17:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-12-01 17:15 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT 2015-12-01 17:15 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-12-01 17:15 - 2014-04-25 12:41 - 00019053 _____ C:\WINDOWS\diagwrn.xml 2015-12-01 17:15 - 2014-04-25 12:41 - 00019053 _____ C:\WINDOWS\diagerr.xml 2015-12-01 17:14 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration 2015-12-01 17:10 - 2015-10-05 11:09 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-12-01 17:10 - 2015-07-15 09:28 - 00002268 _____ C:\WINDOWS\System32\Tasks\{0F7B0A38-1513-4AA7-B6A6-EFBC03773DF4} 2015-12-01 17:10 - 2015-02-23 16:40 - 00002252 _____ C:\WINDOWS\System32\Tasks\{89D7999A-4350-432D-BFC9-F318921AFB3E} 2015-12-01 17:10 - 2015-02-15 05:59 - 00002252 _____ C:\WINDOWS\System32\Tasks\{2C36D4C8-991C-44FA-8AF8-5136611DC48C} 2015-12-01 17:10 - 2015-02-15 00:06 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-12-01 17:10 - 2015-02-09 23:02 - 00002180 _____ C:\WINDOWS\System32\Tasks\{AE8A5378-B576-4A53-A083-13161B907501} 2015-12-01 17:10 - 2015-02-04 18:27 - 00002282 _____ C:\WINDOWS\System32\Tasks\{DC9CDB18-94AD-4A35-A6AA-4DAB3FD25CF4} 2015-12-01 17:10 - 2014-04-26 12:06 - 00002934 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-305981025-81508073-3388003974-1000 2015-12-01 17:08 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries 2015-12-01 17:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-12-01 17:04 - 2015-07-15 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audiograbber 2015-12-01 17:04 - 2015-03-30 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2015-12-01 17:04 - 2015-02-10 03:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2015-12-01 17:04 - 2015-02-09 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2015-12-01 17:04 - 2015-02-04 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quake 4 2015-12-01 17:04 - 2015-02-04 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-01 17:04 - 2015-01-23 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2015-12-01 17:04 - 2015-01-19 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vokabel Trainer 2015-12-01 17:04 - 2014-08-09 12:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-12-01 17:04 - 2014-06-11 13:10 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0 2015-12-01 17:04 - 2014-06-08 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 PC Camera 2015-12-01 17:04 - 2014-06-06 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX 2015-12-01 17:04 - 2014-05-02 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electric Sheep 2015-12-01 17:03 - 2015-07-10 10:47 - 00000000 ____D C:\Users\Default.migrated 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-12-01 17:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2015-12-01 17:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2015-12-01 17:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2015-12-01 17:00 - 2015-10-30 19:36 - 00000000 ____D C:\WINDOWS\OCR 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate 2015-12-01 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-12-01 17:00 - 2015-02-14 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-12-01 17:00 - 2014-08-03 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2015-12-01 17:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS 2015-12-01 17:00 - 2011-03-15 03:36 - 00000000 ___RD C:\Users\Public\Recorded TV 2015-12-01 16:57 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-12-01 16:49 - 2015-10-30 19:58 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2015-12-01 16:48 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2015-12-01 16:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-12-01 16:45 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning 2015-12-01 16:45 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-12-01 16:45 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-12-01 16:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-12-01 16:40 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-12-01 16:27 - 2015-10-05 11:23 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER 2015-12-01 16:21 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT 2015-11-12 08:40 - 2014-08-03 15:56 - 00000000 ____D C:\ProgramData\EPSON 2015-11-12 08:24 - 2014-05-17 21:58 - 00000000 __SHD C:\Users\Eule\AppData\Local\EmieUserList 2015-11-12 08:24 - 2014-05-17 21:58 - 00000000 __SHD C:\Users\Eule\AppData\Local\EmieSiteList 2015-11-11 06:30 - 2014-04-26 19:37 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-11-09 20:41 - 2015-10-05 11:18 - 00000000 ____D C:\Users\Eule\AppData\Local\Comms ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-03-07 22:04 - 2015-03-07 22:05 - 0000402 _____ () C:\Users\Eule\AppData\Local\Temp-log.txt 2015-07-22 10:50 - 2015-07-22 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{08DF26AC-81F4-445A-96B2-42D749D61A80} 2015-07-19 10:50 - 2015-07-19 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{0E4A4771-ADD6-42DA-B8B9-5E93B550544B} 2015-08-30 12:17 - 2015-08-30 12:17 - 0000000 _____ () C:\Users\Eule\AppData\Local\{1BF58C7F-533D-47E1-9B25-35508568B59E} 2015-06-16 12:24 - 2015-06-16 12:24 - 0000000 _____ () C:\Users\Eule\AppData\Local\{4062E831-40F8-4687-857A-359ED083B566} 2015-06-10 14:59 - 2015-06-10 14:59 - 0000000 _____ () C:\Users\Eule\AppData\Local\{475B16AB-8A54-407A-902B-E36FE667607B} 2015-07-03 16:55 - 2015-07-03 16:55 - 0000000 _____ () C:\Users\Eule\AppData\Local\{55689E5B-BFB3-4C65-9E9F-79EAA65AAD23} 2015-07-20 10:50 - 2015-07-20 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{6DA5D6D2-3B2E-4887-83E4-944ACBDD2F9B} 2015-07-24 10:50 - 2015-07-24 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{79C4129A-F14C-4C72-A11A-459F37E358C3} 2015-07-21 10:50 - 2015-07-21 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{808072FD-1866-4D0D-A50B-67E2E8DEEFE5} 2015-06-17 14:14 - 2015-06-17 14:14 - 0000000 _____ () C:\Users\Eule\AppData\Local\{976EE474-195D-4BCE-828B-860C42774A06} 2015-06-18 14:50 - 2015-06-18 14:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{A50B3F8C-8977-4C40-B26F-0043AB53FE88} 2015-07-23 10:50 - 2015-07-23 10:50 - 0000000 _____ () C:\Users\Eule\AppData\Local\{B2F1A719-2CAF-450A-852C-4CC9CB888645} 2015-06-26 15:25 - 2015-06-26 15:25 - 0000000 _____ () C:\Users\Eule\AppData\Local\{C6A0ABCB-87AA-40A4-8536-A9F7E5C65D55} 2015-06-25 15:25 - 2015-06-25 15:25 - 0000000 _____ () C:\Users\Eule\AppData\Local\{CE097F07-9A2C-4D95-84B1-F21C7ABE1B06} 2015-06-20 05:54 - 2015-06-20 05:54 - 0000000 _____ () C:\Users\Eule\AppData\Local\{D977C658-BA56-4F1B-90A1-B4B6EA129372} 2015-06-21 13:41 - 2015-06-21 13:41 - 0000000 _____ () C:\Users\Eule\AppData\Local\{F425BFFD-41D6-4BF8-8DE5-CAC629AB2920} Einige Dateien in TEMP: ==================== C:\Users\Eule\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-01 16:49 ==================== Ende von FRST.txt ============================ reicht mir der Defender als antivirus Programm aus oder zu was würdest du rate??? |
07.12.2015, 21:28 | #9 |
/// the machine /// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Kommt alles jetzt gleich Windows.old Ordner löschen. Download Ordner leeren. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Emptytemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Cleanup: (Die Reihenfolge ist hier entscheidend) Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken. Falls Combofix verwendet wurde: Combofix deinstallieren .
Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen. Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank. Meine Empfehlung: Emsisoft Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional: NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen. Lade Software von einem sauberen Portal wie . Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwarecleaner . Abschließend noch ein paar grundsätzliche Bemerkungen: Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems. Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
07.12.2015, 22:26 | #10 |
| Admin berechtigung Kann Windows ordner nicht löschen brauche berechtigung vom System. Aber ich bin doch administrator oder nicht??? |
08.12.2015, 20:47 | #11 |
/// the machine /// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Windows.old Ordner, nicht Windows. Ansonsten über die Datenträgerbereinigung.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
08.12.2015, 21:15 | #12 |
| Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" ja habe auch probiert windows old zu löschen aber ging eben nicht brauche berechtigung vom System Probiere es über datenträger bereinigung Gruss |
10.12.2015, 21:35 | #13 |
/// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Servus, ich übernehme hier für schrauber, er hat gerade viel um die Ohren. Gibt es noch Probleme oder ist dieses Thema fertig? |
11.12.2015, 14:37 | #14 |
| Wunderbar Nein danke es hat alles super geklappt. werde mich dafür bei euch auch noch revangieren sobald ich wieder flüssiger bin. Ich danke euch vielmals hat alles super hin gehauen. Schönes Wochenende und hoffentlich nicht so schnell auf Bald DANKE!!!! |
11.12.2015, 15:20 | #15 |
/// TB-Ausbilder | Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll" Ich bin froh, dass wir helfen konnten In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |