| |
| |||||||
Log-Analyse und Auswertung: Windows 10, www.smartnewtab.comWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
29.01.2016, 23:07
| #1 |
| |  Windows 10, www.smartnewtab.com Hallo zusammen, ich habe versehentlich ein Programm installiert, welches ich zwar schnell wieder deinstalliert habe aber die Folgeschaden waren wohl nicht mehr aufzuhalten. Es kommt regelmäßig vor das, nach dem Klick auf einen Link, sich eine neue Seite öffnet. Regelmäßig taucht die eine Seite von www.smartnewtab.com auf. Ich benutze in der Regel Chrome. FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
durchgeführt von Phanto (Administrator) auf PHANTO-MSI (28-01-2016 21:45:13)
Gestartet von C:\Users\Phanto\Downloads
Geladene Profile: Phanto (Verfügbare Profile: Phanto & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
() C:\Program Files (x86)\GameXPComService\gamexpcomsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(TeamViewer GmbH) D:\teamviewer\TeamViewer_Service.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
konnte nicht auf den Prozess zugreifen -> AllShareFrameworkDMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(© 2015 Microsoft Corporation) C:\Users\Phanto\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSYNC.EXE
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Users\Phanto\AppData\Local\Temp\NVIDIA\DisplayDriver\GeForceGameReadyDriver361.75\setup.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareDesktop.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{652D8EC1-C38A-4E51-B707-FE608F883B49}\NvCplSetupInt.exe
(NVIDIA Corporation) C:\temp\NVIDIA\ControlPanelInstallerTemp\setup.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3347680 2015-12-06] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-31] (Intel Corporation)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184632 2013-11-13] (Motorola Solutions, Inc.)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [405504 2014-09-01] (MSI)
HKLM\...\Run: [MBCfg64] => C:\windows\system32\RunDLL32.exe C:\windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [607584 2015-03-18] (Copyright 2013 SAMSUNG)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-09] (Apple Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareTray.exe [9574112 2015-12-09] ()
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\windows\UpdReg.EXE
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-09-10] (MSI)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2011-10-13] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [230696 2011-10-13] (CyberLink Corp.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Phanto\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [61200 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [103696 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [BingSvc] => C:\Users\Phanto\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-16] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [Spotify Web Helper] => C:\Users\Phanto\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2021944 2015-06-03] (Spotify Ltd)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [GoogleChromeAutoLaunch_DAA386977797F795B90F1D630584EC5B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [748872 2016-01-27] (Google Inc.)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4177784 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\MountPoints2: {3c4cf68f-c44f-11e5-9da0-448a5beed61d} - "F:\setup.exe"
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\...\MountPoints2: {7a8dd918-c62a-11e4-99ed-303a64f78082} - "F:\AutoRun.exe"
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Phanto\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Phanto\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Phanto\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Phanto\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Phanto\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Phanto\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1fdd006d-b8d6-4815-b73a-df6c8c6849e2}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{265af83c-6258-44cc-89f0-3f1b4afce630}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{2948bd3b-4f65-4b3b-b224-71ffc82ac18a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{63b2b05d-f126-41a0-b988-829948bd5d1a}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a0bceb1d-565c-4f02-b7b0-36d5f97f42da}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-4238552743-3114925317-4059068160-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM-x32 -> {78EB40B5-899A-4C68-B75F-FBF05F01A75A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSITDF&pc=MAM3&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4238552743-3114925317-4059068160-1000 -> {35FEB0C1-FD19-48EE-903F-649C7C5FAF35} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-01-07] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-10-21] (AO Kaspersky Lab)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-01-07] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-01-07] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-27] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-10-21] (AO Kaspersky Lab)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-01-07] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-27] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-10-21] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-10-21] (AO Kaspersky Lab)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-07] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-07] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-07] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-07] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Phanto\AppData\Roaming\Mozilla\Firefox\Profiles\epl1l8nv.default
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Yahoo!
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-20] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-20] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-05-07] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-01-07] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-01-07] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nielsen/FirefoxTracker -> C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Phanto\AppData\Roaming\Mozilla\Firefox\Profiles\epl1l8nv.default\searchplugins\google-default.xml [2015-10-06]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Phanto\AppData\Roaming\Mozilla\Firefox\Profiles\epl1l8nv.default\Extensions\2020Player_IKEA@2020Technologies.com [2015-06-19] [ist nicht signiert]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox [2015-12-06]
Chrome:
=======
CHR Profile: C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-14]
CHR Extension: (Google Docs) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-14]
CHR Extension: (Google Drive) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google-Suche) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-24]
CHR Extension: (Kaspersky Protection) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2015-10-06]
CHR Extension: (Google Tabellen) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-14]
CHR Extension: (Google Docs Offline) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-16]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Google Mail) - C:\Users\Phanto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-14]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000 2015-10-06] (Kaspersky Lab ZAO)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-12-30] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2762936 2016-01-07] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144096 2015-12-06] (ELAN Microelectronics Corp.)
R2 gamexpcomsvc; C:\Program Files (x86)\GameXPComService\gamexpcomsvc.exe [602352 2015-12-04] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2016-01-27] (SurfRight B.V.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-31] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-17] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.696.8769\AdAwareService.exe [712432 2015-12-09] ()
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2014-09-01] (Micro-Star International Co., Ltd.) [Datei ist nicht signiert]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161776 2013-09-10] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2104840 2015-12-28] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-03-04] (Qualcomm Atheros) [Datei ist nicht signiert]
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [616288 2015-03-18] (Copyright 2013 SAMSUNG)
R2 TeamViewer; D:\teamviewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe [144640 2015-07-08] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-07-29] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-07-29] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-07-29] (BitDefender)
R1 BdfNdisf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys [97816 2015-01-06] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys [107080 2015-01-06] (BitDefender LLC)
R1 BfLwf; C:\Windows\system32\DRIVERS\bflwfx64.sys [80560 2014-02-28] (Qualcomm Atheros, Inc.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2014-12-30] (BitRaider)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-05] (Kaspersky Lab ZAO)
S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-01-26] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-01-26] (Disc Soft Ltd)
R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.99.0\gzflt.sys [155912 2015-12-09] (BitDefender LLC)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [263952 2015-07-14] (Intel Corporation)
S3 ipadtst; C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [19952 2013-02-01] (Windows (R) Win 7 DDK provider)
R3 Ke2200; C:\Windows\System32\drivers\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2015-10-21] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2015-10-21] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2015-12-06] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-10-06] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2015-10-21] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3496216 2015-07-10] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [466648 2014-02-21] (Realsil Semiconductor Corporation)
S3 SAlphamBth; C:\Windows\system32\drivers\SAlphabt64.sys [31232 2014-05-16] (SteelSeries Corporation) [Datei ist nicht signiert]
S3 SAlphamHid; C:\Windows\system32\drivers\SAlpham64.sys [39168 2014-05-27] (SteelSeries Corporation)
R3 SAlphaPS2; C:\Windows\System32\drivers\SAlphaPS264.sys [27520 2014-05-16] (SteelSeries Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [452040 2015-12-09] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Gaming Center\winio64.sys [15160 2010-06-07] ()
S3 xhunter1; C:\WINDOWS\xhunter1.sys [35880 2015-12-22] (Wellbia.com Co., Ltd.)
U3 idsvc; kein ImagePath
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-28 21:45 - 2016-01-28 21:45 - 00035077 _____ C:\Users\Phanto\Downloads\FRST.txt
2016-01-28 21:44 - 2016-01-28 21:45 - 00000000 ____D C:\FRST
2016-01-28 21:44 - 2016-01-23 04:31 - 42983992 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 37615040 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 31115712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 24941112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 21202488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 20741880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 19778944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 17632544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 17224664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 17174032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 17116616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 14114944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 02543160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 02187712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 01924152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436175.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436175.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00948672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00882232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00745408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00689600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00423360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00378784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00316960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00175368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-01-28 21:44 - 2016-01-23 04:31 - 00153208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-01-28 21:39 - 2016-01-28 21:44 - 02370560 _____ (Farbar) C:\Users\Phanto\Downloads\FRST64.exe
2016-01-28 21:35 - 2016-01-28 21:45 - 00000000 ____D C:\WINDOWS\LastGood
2016-01-28 21:34 - 2015-12-18 07:10 - 00099472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-01-28 21:34 - 2015-12-18 07:10 - 00090768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-01-28 21:33 - 2016-01-28 21:33 - 00016148 _____ C:\WINDOWS\system32\PHANTO-MSI_Phanto_HistoryPrediction.bin
2016-01-28 21:33 - 2016-01-28 21:33 - 00000000 ___HD C:\OneDriveTemp
2016-01-28 21:02 - 2016-01-28 21:02 - 03079859 _____ C:\Users\Phanto\Downloads\E1759IMS.62D.zip
2016-01-27 20:04 - 2016-01-27 19:52 - 11323704 _____ (SurfRight B.V.) C:\Users\Phanto\Downloads\HitmanPro_x64.exe
2016-01-27 20:02 - 2016-01-27 20:03 - 02870984 _____ (ESET) C:\Users\Phanto\Downloads\esetsmartinstaller_deu.exe
2016-01-27 19:55 - 2016-01-28 21:01 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-27 19:55 - 2016-01-27 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-01-27 19:55 - 2016-01-27 19:55 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-01-27 19:55 - 2016-01-27 19:53 - 00001179 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-27 19:55 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-01-27 19:55 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-01-27 19:55 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-01-27 19:54 - 2016-01-27 19:55 - 22908888 _____ (Malwarebytes ) C:\Users\Phanto\Downloads\mbam-setup-2.2.0.1024.exe
2016-01-27 19:53 - 2016-01-27 19:53 - 00001988 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2016-01-27 19:53 - 2016-01-27 19:53 - 00001758 _____ C:\Users\Phanto\Desktop\Fixlist.txt
2016-01-27 19:53 - 2016-01-27 19:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2016-01-27 19:53 - 2016-01-27 19:53 - 00000000 ____D C:\Program Files\HitmanPro
2016-01-27 19:52 - 2016-01-27 19:58 - 00000000 ____D C:\ProgramData\HitmanPro
2016-01-27 19:49 - 2016-01-27 19:49 - 01507840 _____ C:\Users\Phanto\Downloads\adwcleaner_5.031.exe
2016-01-26 19:59 - 2016-01-26 19:59 - 00000000 ____D C:\ProgramData\BitDefender
2016-01-26 19:59 - 2016-01-26 19:14 - 447335144 _____ () C:\Users\Phanto\Downloads\TC2016_Setup_Originaldaten_v20160110.exe
2016-01-26 19:50 - 2016-01-28 21:14 - 00002412 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2016-01-26 19:50 - 2016-01-26 19:50 - 00000000 ____D C:\Users\Phanto\AppData\Roaming\LavasoftStatistics
2016-01-26 19:50 - 2016-01-26 19:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2016-01-26 19:50 - 2015-01-06 12:47 - 01061776 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2016-01-26 19:50 - 2015-01-06 12:47 - 00209984 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2016-01-26 19:50 - 2015-01-06 12:47 - 00195016 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2016-01-26 19:50 - 2015-01-06 12:47 - 00156936 _____ C:\WINDOWS\system32\bdfwcore.dll
2016-01-26 19:50 - 2015-01-06 12:47 - 00155912 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2016-01-26 19:50 - 2015-01-06 12:47 - 00122928 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2016-01-26 19:50 - 2015-01-06 12:47 - 00096160 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2016-01-26 19:50 - 2015-01-06 12:37 - 02084072 _____ (Bitdefender) C:\WINDOWS\system32\bdnc.dll
2016-01-26 19:48 - 2016-01-26 19:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2016-01-26 19:47 - 2016-01-26 19:47 - 00000000 ____D C:\Program Files\Lavasoft
2016-01-26 19:45 - 2016-01-26 19:45 - 00000000 ____D C:\Program Files\Common Files\Lavasoft
2016-01-26 19:44 - 2016-01-26 19:44 - 02012504 _____ C:\Users\Phanto\Downloads\AdAwareWeb119Installer.exe
2016-01-26 19:44 - 2016-01-26 19:44 - 02012504 _____ C:\Users\Phanto\Downloads\AdAwareWeb119Installer (1).exe
2016-01-26 19:44 - 2016-01-26 19:44 - 00000000 ____D C:\ProgramData\Lavasoft
2016-01-26 19:34 - 2016-01-26 19:34 - 00000000 ____D C:\ProgramData\Service1104
2016-01-26 19:34 - 2016-01-26 19:34 - 00000000 ____D C:\ProgramData\19a87fa1ec024bbcbb41931263354405
2016-01-26 19:32 - 2016-01-26 19:50 - 17711037 _____ () C:\Users\Phanto\Downloads\update_1_52.exe
2016-01-26 19:13 - 2016-01-26 19:13 - 00000000 ____D C:\Users\Phanto\clubmanager2016
2016-01-26 19:10 - 2016-01-27 20:03 - 00000000 ____D C:\Program Files\Club Manager 2016
2016-01-26 19:10 - 2016-01-27 19:53 - 00000687 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Club Manager 2016.lnk
2016-01-26 19:10 - 2016-01-27 19:52 - 00000681 _____ C:\Users\Public\Desktop\Club Manager 2016.lnk
2016-01-26 19:06 - 2016-01-26 19:06 - 00000000 ____D C:\Users\Phanto\AppData\Roaming\Lavasoft
2016-01-26 19:05 - 2016-01-26 19:05 - 01327104 _____ C:\Users\Phanto\Downloads\check1.exe
2016-01-26 19:05 - 2016-01-26 19:05 - 01327104 _____ C:\Users\Phanto\Downloads\check1 (1).exe
2016-01-26 19:04 - 2016-01-26 18:31 - 00000000 ____D C:\Users\Phanto\Downloads\Torchance 2016
2016-01-26 19:03 - 2016-01-26 19:03 - 00339320 _____ C:\WINDOWS\Minidump\012616-26000-01.dmp
2016-01-26 18:36 - 2016-01-26 18:36 - 00000000 ____D C:\Users\Phanto\AppData\Local\Disc_Soft_Ltd
2016-01-26 18:17 - 2016-01-27 19:52 - 00001862 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-01-26 18:17 - 2016-01-26 19:34 - 00000000 ____D C:\Users\Phanto\AppData\Roaming\DAEMON Tools Lite
2016-01-26 18:17 - 2016-01-26 18:17 - 00047672 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2016-01-26 18:17 - 2016-01-26 18:17 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2016-01-26 18:17 - 2016-01-26 18:17 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-01-26 18:17 - 2016-01-26 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-01-26 18:17 - 2016-01-26 18:17 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-01-26 18:17 - 2016-01-26 18:17 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-01-26 18:12 - 2016-01-26 18:12 - 00689160 _____ (Disc Soft Ltd.) C:\Users\Phanto\Downloads\DTLiteInstaller.exe
2016-01-26 18:10 - 2016-01-26 18:10 - 00000196 _____ C:\Users\Phanto\Downloads\3f981d5e-1226-4514-8f96-dfa28b277ac3.htm
2016-01-26 18:06 - 2016-01-26 18:10 - 10216369 _____ C:\Users\Phanto\Downloads\aa97c18ac48ba2bbf7f8cc712b1f9f0b(1).rar.part
2016-01-24 22:58 - 2016-01-24 22:58 - 00014643 _____ C:\Users\Phanto\Downloads\1516-KL A-01-22-Spieler-Einsatz.zip
2016-01-24 22:58 - 2016-01-24 22:58 - 00002140 _____ C:\Users\Phanto\Downloads\1516-KL A-01-22-Karten-gesamt-bisher.csv
2016-01-24 18:58 - 2016-01-24 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoccerLobby
2016-01-24 18:50 - 2016-01-24 18:50 - 00334978 _____ (SoccerLobby ) C:\Users\Phanto\Downloads\Trainingsplan_Bundesliga_1394279281_2669.exe
2016-01-24 18:48 - 2016-01-24 18:49 - 00328231 _____ (SoccerLobby ) C:\Users\Phanto\Downloads\Trainingsplan_2_Liga_1394279365_2158.exe
2016-01-24 18:47 - 2016-01-24 18:47 - 01018370 _____ C:\Users\Phanto\Downloads\Tutorial---Trainingsplan.pdf
2016-01-24 18:47 - 2016-01-24 18:47 - 00597402 _____ C:\Users\Phanto\Downloads\Fähigkeitenübersicht-FM14.pdf
2016-01-24 18:12 - 2016-01-24 18:12 - 00000000 ____D C:\Users\Phanto\Documents\Fussball Manager 13
2016-01-24 17:49 - 2016-01-24 18:11 - 714065047 _____ () C:\Users\Phanto\Downloads\fm15-16_datensatz_deutschland_v1-0 (1).exe
2016-01-24 15:39 - 2016-01-24 15:39 - 00002419 _____ C:\Users\Phanto\Downloads\ProgrammingAssignment2-master.zip
2016-01-24 15:09 - 2016-01-24 15:09 - 00000153 _____ C:\Users\Phanto\.gitconfig
2016-01-20 21:26 - 2016-01-20 21:26 - 00000097 _____ C:\Users\Phanto\Downloads\Text
2016-01-20 21:19 - 2016-01-20 20:53 - 00037533 _____ C:\Users\Phanto\Downloads\Jugendleiter_Adressen.xlsx
2016-01-20 20:58 - 2016-01-20 20:58 - 00000000 ____D C:\Users\Phanto\AppData\Local\Steam
2016-01-17 10:52 - 2016-01-17 11:05 - 00000000 ____D C:\Users\Phanto\Downloads\Conny
2016-01-17 10:50 - 2016-01-17 10:50 - 00000000 ____D C:\Users\Phanto\AppData\Roaming\Usenet.nl
2016-01-17 10:49 - 2016-01-17 10:50 - 00000000 ____D C:\Program Files (x86)\Usenet.nl
2016-01-17 10:48 - 2016-01-17 10:49 - 07457256 _____ ( ) C:\Users\Phanto\Downloads\canna_power_client_433867f (1).exe
2016-01-17 10:47 - 2016-01-17 10:48 - 07457256 _____ ( ) C:\Users\Phanto\Downloads\canna_power_client_433867f.exe
2016-01-13 23:07 - 2016-01-13 23:07 - 00014731 _____ C:\Users\Phanto\Documents\.RData
2016-01-13 22:38 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 22:38 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-13 22:38 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 22:38 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-13 22:38 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 22:38 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-13 22:38 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-13 22:38 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-13 22:38 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-13 22:38 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-13 22:38 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-13 22:38 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 22:38 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-13 22:38 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-13 22:38 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-13 22:38 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-13 22:38 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-13 22:38 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-13 22:38 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-13 22:38 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-13 22:38 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-13 22:38 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-13 22:38 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-13 22:38 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-13 22:38 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-13 22:38 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-13 22:38 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-13 22:38 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-13 22:38 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-13 22:38 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-13 22:38 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-13 22:38 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-13 22:38 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-13 22:38 - 2016-01-05 03:18 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-13 22:38 - 2016-01-05 03:15 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-13 22:38 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-13 22:38 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 22:38 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 22:38 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2016-01-13 22:38 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-13 22:38 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-13 22:38 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-13 22:38 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-13 22:38 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 22:38 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-13 22:38 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 22:38 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 22:38 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 22:38 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-13 22:38 - 2016-01-05 03:00 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-01-13 22:38 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 22:38 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-13 22:38 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-13 22:38 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 22:38 - 2016-01-05 02:56 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-13 22:38 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 22:38 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 22:38 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-13 22:38 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-13 22:38 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-13 22:38 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-13 22:38 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-01-13 22:38 - 2016-01-05 02:43 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-13 22:38 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-13 22:38 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2016-01-13 22:38 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-13 22:38 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-13 22:38 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-13 22:38 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-13 22:38 - 2016-01-05 02:30 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-13 22:38 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-13 22:38 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-13 22:38 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-13 22:38 - 2016-01-05 02:24 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-01-13 22:38 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-13 22:38 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-13 22:38 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-13 22:38 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-13 22:38 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-01-10 09:32 - 2016-01-10 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!Box
2016-01-10 09:32 - 2016-01-10 09:32 - 00000000 ____D C:\Program Files (x86)\FRITZ!BoxPrint
2016-01-10 09:32 - 2016-01-10 09:32 - 00000000 ____D C:\Program Files (x86)\FRITZ!Box
2016-01-10 09:32 - 2006-12-14 12:42 - 00069120 ____R (AVM Berlin) C:\WINDOWS\SysWOW64\avmadd32.dll
2016-01-10 09:32 - 2006-05-29 01:00 - 00016384 ____R (AVM Berlin GmbH) C:\WINDOWS\SysWOW64\avmprmon.dll
2016-01-09 18:45 - 2016-01-09 18:45 - 00052391 _____ C:\Users\Phanto\Desktop\antrag (1).pdf
2016-01-09 18:44 - 2016-01-09 18:44 - 00053786 _____ C:\Users\Phanto\Downloads\antrag (1).pdf
2016-01-07 18:24 - 2016-01-10 09:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-07 18:15 - 2016-01-07 18:15 - 00000000 _____ C:\Users\Phanto\Desktop\Neues Textdokument.txt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-28 22:08 - 2015-07-14 21:34 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-28 21:51 - 2014-09-19 18:57 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-28 21:45 - 2015-08-01 10:31 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-28 21:45 - 2015-04-29 16:42 - 00000000 ____D C:\Users\Phanto\AppData\Local\NXEPassportClient
2016-01-28 21:45 - 2015-01-19 17:21 - 00000000 ____D C:\temp
2016-01-28 21:44 - 2015-08-01 10:31 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-01-28 21:44 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2016-01-28 21:35 - 2014-12-31 16:20 - 00000000 ____D C:\Users\Phanto\AppData\Local\NVIDIA
2016-01-28 21:33 - 2015-10-06 16:47 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-01-28 21:33 - 2015-08-01 10:31 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-01-28 21:33 - 2015-07-14 21:34 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-28 21:33 - 2015-04-03 11:51 - 00000000 ____D C:\Users\Phanto\AppData\Local\HTC MediaHub
2016-01-28 21:33 - 2015-02-24 17:41 - 00000000 ___RD C:\Users\Phanto\OneDrive
2016-01-28 21:33 - 2014-12-31 03:57 - 00000000 __SHD C:\Users\Phanto\IntelGraphicsProfiles
2016-01-28 21:21 - 2015-08-01 10:32 - 02080612 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-28 21:21 - 2015-07-10 17:34 - 00885982 _____ C:\WINDOWS\system32\perfh007.dat
2016-01-28 21:21 - 2015-07-10 17:34 - 00196578 _____ C:\WINDOWS\system32\perfc007.dat
2016-01-28 21:13 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-28 21:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2016-01-28 21:13 - 2015-07-10 10:05 - 08912896 ___SH C:\WINDOWS\system32\config\BBI
2016-01-28 21:09 - 2015-07-14 21:35 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-28 20:54 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-28 20:54 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-27 20:33 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2016-01-27 20:17 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-27 20:16 - 2015-12-28 19:16 - 00000000 ____D C:\Users\Phanto\AppData\Local\CrashDumps
2016-01-27 20:00 - 2015-01-08 17:37 - 00000000 ____D C:\ProgramData\Oracle
2016-01-27 19:59 - 2015-08-27 13:36 - 00000000 ____D C:\Users\Phanto\.oracle_jre_usage
2016-01-27 19:59 - 2015-01-08 17:37 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-01-27 19:59 - 2015-01-08 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-27 19:59 - 2015-01-08 17:37 - 00000000 ____D C:\Program Files (x86)\Java
2016-01-27 19:55 - 2015-03-14 09:34 - 00000000 ____D C:\AdwCleaner
2016-01-27 19:53 - 2015-12-28 20:03 - 00000952 _____ C:\Users\Public\Desktop\FUSSBALL MANAGER 14.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002584 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002581 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002577 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002556 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-01-27 19:53 - 2015-12-21 20:14 - 00002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-01-27 19:53 - 2015-12-13 15:09 - 00001826 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-01-27 19:53 - 2015-12-09 18:23 - 00001189 _____ C:\Users\Public\Desktop\FINAL FANTASY XIV - A Realm Reborn.lnk
2016-01-27 19:53 - 2015-11-06 18:43 - 00000556 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2016-01-27 19:53 - 2015-10-06 16:48 - 00002298 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2016-01-27 19:53 - 2015-09-22 17:58 - 00000551 _____ C:\Users\Public\Desktop\KP-Darts.lnk
2016-01-27 19:53 - 2015-09-18 14:21 - 00000633 _____ C:\Users\Public\Desktop\Gameforge Live.lnk
2016-01-27 19:53 - 2015-08-27 16:10 - 00000981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2016-01-27 19:53 - 2015-08-01 10:37 - 00001540 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-27 19:53 - 2015-07-06 17:21 - 00001849 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2016-01-27 19:53 - 2015-06-23 16:41 - 00002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-27 19:53 - 2015-04-27 16:34 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-01-27 19:53 - 2015-04-14 22:37 - 00002222 _____ C:\Users\Public\Desktop\tax 2015.lnk
2016-01-27 19:53 - 2015-03-20 20:01 - 00000919 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-01-27 19:53 - 2015-03-12 18:07 - 00000686 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2016-01-27 19:53 - 2015-03-12 18:07 - 00000655 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2016-01-27 19:53 - 2015-03-12 18:07 - 00000621 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2016-01-27 19:53 - 2015-03-09 12:12 - 00000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2016-01-27 19:53 - 2015-02-24 17:43 - 00002484 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2016-01-27 19:53 - 2015-02-24 17:43 - 00001303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-01-27 19:53 - 2015-01-19 18:48 - 00000568 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2016-01-27 19:53 - 2015-01-19 18:48 - 00000568 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2016-01-27 19:53 - 2015-01-09 20:48 - 00000630 _____ C:\Users\Public\Desktop\StarCraft II.lnk
2016-01-27 19:53 - 2015-01-08 19:43 - 00001065 _____ C:\Users\Public\Desktop\R x64 3.1.2.lnk
2016-01-27 19:53 - 2015-01-03 18:30 - 00000528 _____ C:\Users\Public\Desktop\Origin.lnk
2016-01-27 19:53 - 2015-01-03 18:20 - 00000516 _____ C:\Users\Public\Desktop\Steam.lnk
2016-01-27 19:53 - 2015-01-01 02:27 - 00002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-01-27 19:53 - 2014-12-30 22:15 - 00001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-27 19:53 - 2014-09-19 18:59 - 00001488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-01-27 19:53 - 2014-09-19 18:59 - 00001372 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-01-27 19:53 - 2014-09-19 18:47 - 00001839 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SCM.lnk
2016-01-27 19:52 - 2015-10-01 17:29 - 00000911 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-01-27 19:52 - 2015-03-09 12:12 - 00000933 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2016-01-27 19:52 - 2015-03-09 08:09 - 00001924 _____ C:\Users\Public\Desktop\1&1 Surf-Stick.lnk
2016-01-27 19:52 - 2015-01-09 20:44 - 00001126 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-01-27 19:52 - 2015-01-03 18:58 - 00000848 _____ C:\Users\Public\Desktop\FIFA 15.lnk
2016-01-27 19:51 - 2015-12-28 20:09 - 00001097 _____ C:\Users\Phanto\Desktop\FUSSBALL MANAGER 15-16.lnk
2016-01-27 19:51 - 2015-12-22 22:35 - 00002282 _____ C:\Users\Phanto\Desktop\Git Shell.lnk
2016-01-27 19:51 - 2015-12-14 21:54 - 00000788 _____ C:\Users\Phanto\Desktop\Echo Of Soul.lnk
2016-01-27 19:51 - 2015-11-19 17:47 - 00000965 _____ C:\Users\Phanto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-01-27 19:51 - 2015-11-19 17:47 - 00000917 _____ C:\Users\Phanto\Desktop\Start Tor Browser.lnk
2016-01-27 19:51 - 2015-10-06 18:27 - 00001359 _____ C:\Users\Phanto\Desktop\ANSTOSS 2007.lnk
2016-01-27 19:51 - 2015-08-01 10:39 - 00002442 _____ C:\Users\Phanto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-27 19:51 - 2015-08-01 10:39 - 00001061 _____ C:\Users\Phanto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-01-27 19:51 - 2015-07-25 14:50 - 00001975 _____ C:\Users\Phanto\Desktop\Samsung Link post.sventhomas@gmail.com.lnk
2016-01-27 19:51 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\security
2016-01-27 19:51 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SchCache
2016-01-27 19:51 - 2015-03-12 18:07 - 00000722 _____ C:\Users\Phanto\Desktop\JDownloader.lnk
2016-01-27 19:51 - 2015-02-23 18:57 - 00001824 _____ C:\Users\Phanto\Desktop\Spotify.lnk
2016-01-27 19:51 - 2015-02-23 18:57 - 00001810 _____ C:\Users\Phanto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-01-27 19:51 - 2015-01-08 19:45 - 00000932 _____ C:\Users\Phanto\Desktop\RStudio.lnk
2016-01-27 19:51 - 2015-01-01 16:28 - 00000540 _____ C:\Users\Phanto\Desktop\Glyph.lnk
2016-01-27 19:51 - 2014-12-31 11:45 - 00000649 _____ C:\Users\Phanto\Desktop\Uplay.lnk
2016-01-27 19:51 - 2014-12-31 02:06 - 00000623 _____ C:\Users\Phanto\Desktop\Atlantica Europe.lnk
2016-01-27 19:51 - 2014-09-19 18:57 - 00002263 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2016-01-27 19:48 - 2015-09-18 15:06 - 00004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{01110DE6-B60C-43FF-805A-811430EA9A8D}
2016-01-26 19:53 - 2015-01-08 19:45 - 00000000 ____D C:\Users\Phanto\AppData\Local\RStudio-Desktop
2016-01-26 19:13 - 2015-08-01 10:34 - 00000000 ____D C:\Users\Phanto
2016-01-26 19:04 - 2015-01-09 00:14 - 00007932 _____ C:\Users\Phanto\Documents\.Rhistory
2016-01-26 19:03 - 2015-10-21 10:12 - 00000000 ____D C:\WINDOWS\Minidump
2016-01-26 19:02 - 2015-10-01 17:18 - 00150016 ___SH C:\Users\Phanto\Desktop\Thumbs.db
2016-01-26 18:35 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-26 18:26 - 2014-12-31 15:29 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-26 18:09 - 2014-12-31 15:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-25 18:34 - 2015-07-23 03:02 - 12474312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-01-24 22:53 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-24 22:53 - 2015-02-16 20:40 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-24 22:53 - 2015-02-16 20:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-24 18:58 - 2015-12-28 20:09 - 00000000 ____D C:\Users\Phanto\Documents\FUSSBALL MANAGER 14
2016-01-24 17:48 - 2015-12-22 22:35 - 00000000 ____D C:\Users\Phanto\AppData\Roaming\GitHub
2016-01-24 17:48 - 2015-12-22 22:35 - 00000000 ____D C:\Users\Phanto\AppData\Local\GitHub
2016-01-24 17:09 - 2015-12-22 22:32 - 00000000 ____D C:\Users\Phanto\AppData\Local\Deployment
2016-01-24 14:55 - 2015-12-22 22:35 - 00000000 ____D C:\Users\Phanto\Documents\GitHub
2016-01-23 04:31 - 2015-07-23 03:02 - 03648552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-01-23 04:31 - 2015-07-23 03:02 - 03230824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-01-23 04:31 - 2015-07-23 03:02 - 00035832 _____ C:\WINDOWS\system32\nvinfo.pb
2016-01-23 02:01 - 2015-08-01 10:31 - 06366656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-01-23 02:01 - 2015-08-01 10:31 - 02992064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-01-23 02:01 - 2015-08-01 10:31 - 02563128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-01-23 02:01 - 2015-08-01 10:31 - 01263040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-01-23 02:01 - 2015-08-01 10:31 - 00530368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-01-23 02:01 - 2015-08-01 10:31 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-01-23 02:01 - 2015-08-01 10:31 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-01-23 02:01 - 2015-08-01 10:31 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-01-22 03:06 - 2015-08-01 10:31 - 06125650 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-01-20 21:21 - 2015-08-01 10:37 - 00000000 ____D C:\Users\Phanto\AppData\Local\Packages
2016-01-20 21:13 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-01-20 21:11 - 2014-09-19 18:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-01-18 19:38 - 2015-01-13 00:10 - 00000000 ____D C:\Users\Phanto\Documents\Youcam
2016-01-17 17:45 - 2015-04-27 16:34 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-17 10:49 - 2015-03-20 19:46 - 00000000 ____D C:\Users\Phanto\Documents\Usenet.nl
2016-01-13 22:44 - 2015-02-16 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-13 22:43 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-12 18:22 - 2015-06-23 16:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-12 05:41 - 2014-12-31 16:20 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-01-12 05:41 - 2014-12-30 22:00 - 01542600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-01-12 05:40 - 2015-12-28 19:29 - 00112032 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-01-12 05:40 - 2014-12-31 16:20 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-01-12 05:40 - 2014-12-30 22:00 - 01860120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-01-10 09:26 - 2015-12-14 21:35 - 00000000 ____D C:\Program Files (x86)\GameXPComService
2016-01-10 09:26 - 2014-12-30 22:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-03 02:40 - 2015-07-10 12:06 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-03 02:40 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-12-31 01:42 - 2014-12-31 01:47 - 1572864000 _____ () C:\Program Files (x86)\Atlantica.tmp.001
2014-12-31 01:47 - 2014-12-31 01:52 - 1572864000 _____ () C:\Program Files (x86)\Atlantica.tmp.002
2014-12-31 01:52 - 2014-12-31 01:56 - 1262969925 _____ () C:\Program Files (x86)\Atlantica.tmp.003
2014-12-31 01:42 - 2014-12-31 01:42 - 0435736 _____ () C:\Program Files (x86)\Setup_Atlantica_41025.exe
2015-06-27 08:29 - 2015-06-27 10:10 - 0037173 _____ () C:\Users\Phanto\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2015-06-13 10:34 - 2015-10-19 09:39 - 0000600 _____ () C:\Users\Phanto\AppData\Local\PUTTY.RND
2015-10-21 15:31 - 2015-10-21 15:31 - 0003969 _____ () C:\Users\Phanto\AppData\Local\recently-used.xbel
Einige Dateien in TEMP:
====================
C:\Users\Phanto\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Phanto\AppData\Local\Temp\sqlite3.dll
C:\Users\Phanto\AppData\Local\Temp\vmO0silF6n.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-20 21:23
==================== Ende von FRST.txt ============================
Viele Grüße Phanto |
| Themen zu Windows 10, www.smartnewtab.com |
| .dll, ad-aware, adobe, akamai, antivirus, bonjour, defender, dnsapi.dll, excel, explorer, flash player, google, home, homepage, kaspersky, mozilla, onedrive, programm, prozesse, realtek, registry, rundll, scan, software, system, temp, windows |
Baum-Darstellung