| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Tabs mit Werbung öffnen sichWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
06.06.2016, 11:54
| #1 |
 |  Tabs mit Werbung öffnen sich Hallo, seit gestern Abend öffnen sich andauernd beim Klicken und auch Scrollen unkontrolliert bei Chrome automatisch Tabs mit Werbung. Manchmal öffnen sich gleich mehrere Tabs mit Werbung hintereinander. Und anstatt meiner google Startseite öffnet sich zudem eine andere Seite (hightsearch.com). Ich habe auch schon den adwcleaner und CCleaner drüber laufen lassen, hat aber beides nichts gebracht. Schon mal Danke im voraus |
|
06.06.2016, 12:26
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Tabs mit Werbung öffnen sich Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
06.06.2016, 12:43
| #3 |
| | Tabs mit Werbung öffnen sichCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-06-2016 02
durchgeführt von Janine (Administrator) auf JANINE (06-06-2016 12:41:10)
Gestartet von C:\Users\Janine\Downloads
Geladene Profile: Janine (Verfügbare Profile: UpdatusUser & Janine & Dokomi)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(Paltiosoft Inc.) C:\Program Files (x86)\SoftDenchi\UCManSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(BitTorrent Inc.) C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe
() C:\Users\Janine\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Dropbox, Inc.) C:\Users\Janine\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\Janine\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(BitTorrent Inc.) C:\Users\Janine\AppData\Roaming\BitTorrent\updates\7.9.7_42331\utorrentie.exe
(Spotify Ltd) C:\Users\Janine\AppData\Roaming\Spotify\Spotify.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
(BitTorrent Inc.) C:\Users\Janine\AppData\Roaming\BitTorrent\updates\7.9.7_42331\utorrentie.exe
(Dropbox, Inc.) C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Spotify Ltd) C:\Users\Janine\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Spotify Ltd) C:\Users\Janine\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Janine\AppData\Roaming\Spotify\Spotify.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3347688 2015-09-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174328 2015-10-01] (Realtek Semiconductor)
HKLM\...\Run: [Radio Manager] => C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2012-12-03] (MSI)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [406432 2012-12-03] (MSI)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-02] (Intel Corporation)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [814608 2016-05-15] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [UIExec] => C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe [153424 2011-08-25] ()
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [fst_de_167] => [X]
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1298504 2014-11-08] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [454248 2013-08-02] (CANON INC.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2086240 2015-04-28] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [BitTorrent] => C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe [1972232 2016-05-20] (BitTorrent Inc.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [GoogleChromeAutoLaunch_860360592AC846D552AC557A11FF1366] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [881304 2016-05-11] (Google Inc.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Amazon Music] => C:\Users\Janine\AppData\Local\Amazon Music\Amazon Music Helper.exe [6277952 2014-11-19] ()
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Dropbox Update] => C:\Users\Janine\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-22] (Dropbox, Inc.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Spotify Web Helper] => C:\Users\Janine\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-06-01] (Spotify Ltd)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Spotify] => C:\Users\Janine\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-06-01] (Spotify Ltd)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8721624 2016-05-13] (Piriform Ltd)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\MountPoints2: {dd706713-a7f5-11e5-bfdd-0cd2922b27bb} - "G:\OnePlus_setup.exe" /s
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\MountPoints2: {f7130f6f-e8e7-11e5-bfe6-0cd2922b27bb} - "G:\OnePlus_setup.exe" /s
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [805888 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS PC Sound.lnk [2013-02-27]
ShortcutTarget: SRS PC Sound.lnk -> C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
Startup: C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2016-03-09]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-06-03]
ShortcutTarget: Dropbox.lnk -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{118a6730-97df-45a9-a121-6d5d0adb72d3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{402b29aa-aa22-4b4c-90b5-60be6febe7b2}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{82e541ba-6756-4678-a30c-d8d4856b3546}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{d54ed115-c805-40a6-b545-60c86c8593ec}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F5FB33AC-8982-4FED-9781-91D4A54F8234}: [NameServer] 139.7.30.126 139.7.30.125
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-705900732-3080402841-1693879770-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-705900732-3080402841-1693879770-1002 -> {F1FD7556-6413-47D0-9B6B-2073C2FF6890} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-06] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-06] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL => Keine Datei
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-06-15] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - Keine Datei
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [2014-02-17] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-08-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [2014-02-17] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2014-07-28] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-27] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-27] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-03] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-06-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com => nicht gefunden
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\pdf.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Profile: C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YoBookmarks) - C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgnaagbkdmcfdpbedkpgakhpnbkmokpf [2016-06-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2016-03-09] (Adobe Systems) [Datei ist nicht signiert]
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [970656 2016-05-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [467016 2016-05-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [467016 2016-05-15] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1435704 2016-05-15] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3009264 2016-05-17] (Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-10-29] (Digital Wave Ltd.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144104 2015-09-04] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2013-02-27] (Intel Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2012-12-03] (Micro-Star International Co., Ltd.) [Datei ist nicht signiert]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI) [Datei ist nicht signiert]
R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-15] (Electronic Arts)
R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [315648 2015-10-01] (Realtek Semiconductor)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2015-09-04] () [Datei ist nicht signiert]
R2 UCManSvc; C:\Program Files (x86)\SoftDenchi\UCManSvc.exe [241808 2010-03-12] (Paltiosoft Inc.) [Datei ist nicht signiert]
S2 UI Assistant Service; C:\Program Files (x86)\1&1 Surf-Stick\AssistantServices.exe [270672 2011-08-25] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128664 2016-03-13] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146712 2016-05-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-05-15] (Avira Operations GmbH & Co. KG)
S3 cleanhlp; C:\EEK\RUN\cleanhlp64.sys [57024 2014-03-07] (Emsisoft GmbH)
S3 ipadtst; C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [19952 2013-02-01] (Windows (R) Win 7 DDK provider)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-06 12:41 - 2016-06-06 12:42 - 00028539 _____ C:\Users\Janine\Downloads\FRST.txt
2016-06-06 12:40 - 2016-06-06 12:41 - 00000000 ____D C:\FRST
2016-06-06 12:40 - 2016-06-06 12:40 - 02384896 _____ (Farbar) C:\Users\Janine\Downloads\FRST64.exe
2016-06-06 11:46 - 2016-04-22 09:57 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-06 11:36 - 2016-06-06 11:36 - 05655992 _____ (Piriform Ltd) C:\Users\Janine\Downloads\ccsetup518_slim.exe
2016-06-06 11:36 - 2016-06-06 11:36 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-06 11:36 - 2016-06-06 11:36 - 00000873 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-06-06 11:36 - 2016-06-06 11:36 - 00000000 ____D C:\Program Files\CCleaner
2016-06-06 11:31 - 2016-06-06 11:31 - 03677248 _____ C:\Users\Janine\Downloads\adwcleaner_5.119.exe
2016-06-05 10:36 - 2016-06-05 10:38 - 446439080 _____ C:\Users\Janine\Downloads\[KaHo] Netoge no Yome wa Onnanoko ja Nai to Omotta 02 [TV 720P H264 AAC].mp4
2016-06-05 04:02 - 2016-06-05 04:05 - 418225287 _____ C:\Users\Janine\Downloads\[KaHo] Netoge no Yome wa Onnanoko ja Nai to Omotta 01 [TV 720P H264 AAC].mp4
2016-06-05 00:46 - 2016-06-05 00:55 - 733181800 ____R C:\Users\Janine\Downloads\[SHFS] Super Lovers - 08 (10bit, 720p, x264, AAC)[B872CBBF].mkv
2016-06-05 00:46 - 2016-06-05 00:55 - 669287607 ____R C:\Users\Janine\Downloads\[SHFS] Super Lovers - 07 (10bit, 720p, x264, AAC)[428C57D7].mkv
2016-06-05 00:46 - 2016-06-05 00:48 - 204715534 _____ C:\Users\Janine\Downloads\[SHFS] Owari no Seraph - OAD (DVD, 10bit, x264, AC3, 480p)[A6BC243E].mkv
2016-06-05 00:45 - 2016-06-05 00:45 - 00015893 _____ C:\Users\Janine\Downloads\[SHFS] Owari no Seraph - OAD (DVD, 10bit, x264, AC3, 480p)[A6BC243E].mkv.torrent
2016-06-05 00:45 - 2016-06-05 00:45 - 00014265 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 08 (10bit, 720p, x264, AAC)[B872CBBF].mkv.torrent
2016-06-05 00:45 - 2016-06-05 00:45 - 00013045 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 07 (10bit, 720p, x264, AAC)[428C57D7].mkv.torrent
2016-06-03 23:14 - 2016-06-03 23:14 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-06-03 21:32 - 2016-06-03 22:00 - 125829120 _____ C:\Users\Janine\Downloads\Shokugeki_no_Soma_Folge_4.mkv.part4.rar
2016-06-03 19:57 - 2016-06-03 20:12 - 1972701292 _____ C:\Users\Janine\Downloads\Anohana_S01_EP01_japdub_gersub_1080p_2.0.mp4
2016-06-03 14:44 - 2016-06-03 14:44 - 00524778 _____ C:\Users\Janine\Downloads\11101238 I 158 Omelett-Meister Rezeptideen.pdf
2016-06-02 20:57 - 2016-06-02 21:09 - 642854194 _____ C:\Users\Janine\Downloads\[Mirai-Fansubs] Gyakuten Saiban 01v2 [H264 720p AAC][A99DCA55].mp4
2016-06-02 20:57 - 2016-06-02 21:08 - 465928058 _____ C:\Users\Janine\Downloads\[Mirai-Fansubs] Gyakuten Saiban 03 [H264 720p AAC] [8C84B6F0].mp4
2016-06-02 20:57 - 2016-06-02 21:07 - 431544868 _____ C:\Users\Janine\Downloads\[Mirai-Fansubs] Gyakuten Saiban 02 [H264 720p AAC][46B3D459].mp4
2016-06-01 15:05 - 2016-06-01 15:05 - 00017641 _____ C:\Users\Janine\Downloads\Aleks und 85 andere.vcf
2016-05-31 09:39 - 2016-05-31 09:39 - 00025404 _____ C:\Users\Janine\Downloads\Übergabeprotokoll-Mieterwechsel.pdf
2016-05-28 19:07 - 2016-05-28 19:07 - 00434753 _____ C:\Users\Janine\Downloads\Tati_VRL_2015 (1).pdf
2016-05-26 22:56 - 2016-05-26 22:56 - 00434753 _____ C:\Users\Janine\Downloads\Tati_VRL_2015.pdf
2016-05-25 06:14 - 2016-06-06 12:32 - 00000000 ____D C:\Users\Janine\AppData\LocalLow\BitTorrent
2016-05-21 20:50 - 2016-05-21 20:51 - 00000000 ____D C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 07-12 [BD 1080p Hi10P FLAC]
2016-05-21 20:50 - 2016-05-21 20:51 - 00000000 ____D C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 01-06 [BD 1080p Hi10P FLAC]
2016-05-21 20:49 - 2016-05-21 20:49 - 00022941 _____ C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 01-06 [BD 1080p Hi10P FLAC].torrent
2016-05-21 20:49 - 2016-05-21 20:49 - 00020653 _____ C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 07-12 [BD 1080p Hi10P FLAC].torrent
2016-05-21 18:10 - 2016-05-21 18:14 - 285966647 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_06_(Hi10P)[D7B6AD63].mkv
2016-05-21 18:10 - 2016-05-21 18:14 - 231187991 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_05_(Hi10P)[8FE25FD2].mkv
2016-05-21 18:09 - 2016-05-21 18:20 - 299505013 _____ C:\Users\Janine\Downloads\[ASS]Shounen Maid - 01(1280x720 h264 AAC)[5B148728].mp4
2016-05-21 16:19 - 2016-05-21 16:21 - 237092673 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_04_(Hi10P)[BEA51FE8].mkv
2016-05-21 15:57 - 2016-05-21 15:59 - 250892130 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_03v2_(Hi10P)[CF6ECFE5].mkv
2016-05-21 15:54 - 2016-05-21 15:56 - 271651270 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_02_(Hi10P)[D71D7A41].mkv
2016-05-21 15:23 - 2016-05-21 15:25 - 250727608 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_01_(Hi10P)[FA141FDE].mkv
2016-05-20 02:07 - 2016-05-20 02:15 - 1280589196 _____ C:\Users\Janine\Desktop\[SN-Subs] Eve no Jikan Gekijouban [720p][x264 AAC] [799D03A8].mp4
2016-05-20 01:11 - 2016-05-20 01:26 - 2147497918 _____ C:\Users\Janine\Desktop\[SN-Subs] Eve no Jikan Gekijouban [1080p][x264 AAC] [E65702F6].mp4
2016-05-19 21:59 - 2016-05-19 22:07 - 777456162 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 06 (10bit, 720p, x264, AAC)[4F75482C].mkv
2016-05-19 21:58 - 2016-05-19 21:58 - 00015105 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 06 (10bit, 720p, x264, AAC)[4F75482C].mkv.torrent
2016-05-19 11:11 - 2016-05-19 11:11 - 00236619 _____ C:\Users\Janine\Desktop\65070447 __ Top renovierte Wohnung, Laminat, Fliesen, Bad.pdf
2016-05-19 11:09 - 2016-05-19 11:09 - 00232606 _____ C:\Users\Janine\Desktop\66775029 __ Kamen-Heeren, gepflegtes Apartment mit EBK.pdf
2016-05-19 11:07 - 2016-05-19 11:07 - 00623407 _____ C:\Users\Janine\Downloads\29UAC4S_Wohnung_zur_Miete_in_Unna_(Unna).pdf
2016-05-19 11:07 - 2016-05-19 11:07 - 00618034 _____ C:\Users\Janine\Desktop\29UAC4S_Wohnung_zur_Miete_in_Unna_(Unna).pdf
2016-05-18 19:49 - 2014-04-20 21:15 - 305687020 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 24-(720p x264 AAC)(10 Bit - Softsub).mkv
2016-05-18 19:07 - 2016-05-18 19:36 - 305687166 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 24-(720p x264 AAC)(10 Bit - Softsub).rar
2016-05-18 19:07 - 2014-04-19 08:26 - 333319775 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 23-(720p x264 AAC)(10 Bit - Softsub).mkv
2016-05-18 19:07 - 2014-04-13 16:20 - 294547776 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 22-(720p x264 AAC)(10 Bit - Softsub).mkv
2016-05-18 18:37 - 2016-05-18 19:05 - 333319918 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 23-(720p x264 AAC)(10 Bit - Softsub).rar
2016-05-18 18:01 - 2016-05-18 18:26 - 294547918 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 22-(720p x264 AAC)(10 Bit - Softsub).rar
2016-05-18 09:10 - 2016-05-18 09:10 - 00010602 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (10bit, 720p, x264, AAC)[4063B7F3].mkv.torrent
2016-05-17 22:19 - 2016-05-17 22:28 - 524943184 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 12 (1280x720 H264 AAC 10-Bit)[10892FE8].mkv
2016-05-17 22:19 - 2016-05-17 22:27 - 347429610 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 13v2 (1280x720 H264 AAC 10-Bit)[6B8A8EF3].mkv
2016-05-17 22:19 - 2016-05-17 22:27 - 314200127 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 11v2 (1280x720 H264 AAC 10Bit)[2122AE23].mp4
2016-05-17 22:19 - 2016-05-17 22:26 - 255371051 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 10 (1280x720 H264 AAC 10Bit)[E8B8C076].mp4
2016-05-17 22:18 - 2016-05-17 22:25 - 206336130 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 09 (1280x720 H264 AAC 10Bit)[692845E8].mp4
2016-05-17 22:13 - 2016-05-17 22:18 - 541664350 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (10bit, 720p, x264, AAC).mkv
2016-05-17 22:13 - 2016-05-17 22:13 - 00013701 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 04 (8bit, 720p, x264, AAC)[0A14A321].mkv.torrent
2016-05-17 22:13 - 2016-05-17 22:13 - 00013322 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 04 (10bit, 720p, x264, AAC)[D9C6B79F].mkv.torrent
2016-05-17 22:13 - 2016-05-17 22:13 - 00010911 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (8bit, 720p, x264, AAC).mkv.torrent
2016-05-17 22:12 - 2016-05-17 22:12 - 00010592 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (10bit, 720p, x264, AAC).mkv.torrent
2016-05-17 10:10 - 2016-05-17 10:10 - 01092447 _____ C:\Users\Janine\Desktop\Alg II Anlage KDU.pdf
2016-05-17 10:08 - 2016-05-17 10:08 - 00779974 _____ C:\Users\Janine\Desktop\Alg II Hauptantrag.pdf
2016-05-17 10:06 - 2016-05-17 10:06 - 00091292 _____ C:\Users\Janine\Desktop\Sparkasse UnnaKamen (44350060) - Finanzstatus.pdf
2016-05-17 10:02 - 2016-05-17 10:02 - 00056920 _____ C:\Users\Janine\Desktop\Konto_1000276293-Auszug_2016_003.pdf
2016-05-17 10:02 - 2016-05-17 10:02 - 00053264 _____ C:\Users\Janine\Desktop\Konto_1000276293-Auszug_2016_002.pdf
2016-05-17 10:02 - 2016-05-17 10:02 - 00053178 _____ C:\Users\Janine\Desktop\Konto_1000276293-Auszug_2016_004.pdf
2016-05-17 09:48 - 2016-05-17 09:48 - 00000458 _____ C:\Users\Janine\Downloads\20160517-1000276293-umsatz.csv
2016-05-17 09:47 - 2016-05-17 09:47 - 00108740 _____ C:\Users\Janine\Downloads\Bedingungen_fuer_die_Nutzung_des_Elektronischen_Postfachs.PDF
2016-05-17 09:47 - 2016-05-17 09:47 - 00057963 _____ C:\Users\Janine\Downloads\Konto_1000276293-Auszug_2016_002.PDF
2016-05-17 09:46 - 2016-05-17 09:46 - 00061618 _____ C:\Users\Janine\Downloads\Konto_1000276293-Auszug_2016_003.PDF
2016-05-17 09:46 - 2016-05-17 09:46 - 00057882 _____ C:\Users\Janine\Downloads\Konto_1000276293-Auszug_2016_004.PDF
2016-05-17 00:38 - 2016-05-17 00:45 - 343032182 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 07 (1280x720 H264 AAC 10Bit)[17839CA2].mp4
2016-05-17 00:38 - 2016-05-17 00:44 - 295568400 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 08 (1280x720 H264 AAC 10Bit)[4464DD93].mp4
2016-05-17 00:38 - 2016-05-17 00:43 - 237082735 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 06 (1280x720 H264 AAC 10Bit)[FCFB8428].mp4
2016-05-16 23:28 - 2016-05-16 23:34 - 284522157 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 04 (1280x720 H264 AAC 10Bit)[0D8A65EE].mp4
2016-05-16 23:28 - 2016-05-16 23:34 - 246933825 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 03 (1280x720 H264 AAC 10Bit)[EFB89B9E].mp4
2016-05-16 23:28 - 2016-05-16 23:33 - 197420905 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 05 (1280x720 H264 AAC 10Bit)[16DC0905].mp4
2016-05-16 23:28 - 2016-05-16 23:33 - 192329853 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 02 (1280x720 H264 AAC 10Bit)[50CD942F].mp4
2016-05-16 23:27 - 2016-05-16 23:28 - 180190853 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 01 (1280x720 H264 AAC 10Bit)[062E65E1].mp4
2016-05-16 18:32 - 2016-05-16 18:36 - 229547811 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_15_HD_10BIT_V2.mkv
2016-05-16 18:32 - 2016-05-16 18:36 - 202068313 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_16_HD_10BIT_V2.mkv
2016-05-16 18:32 - 2016-05-16 18:36 - 198272002 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_17_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:52 - 248270231 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_14_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:51 - 284723046 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_10_HD_10BIT.mkv
2016-05-16 16:44 - 2016-05-16 16:51 - 240669610 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_12_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:51 - 223226265 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_11_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:50 - 195227815 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_13_HD_10BIT.mkv
2016-05-16 05:21 - 2016-05-16 05:27 - 998185889 _____ C:\Users\Janine\Downloads\[M-L]Ano Natsu de Matteru - E01 - OVA [Hi10P FLAC 1080p BD][1EFD7A76].mkv
2016-05-15 23:45 - 2016-05-15 23:48 - 203616354 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_09_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:46 - 230349049 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_08_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:46 - 225271473 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_07_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:45 - 211907554 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_06_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:45 - 210172628 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_05_HD_10BIT.mkv
2016-05-15 23:27 - 2016-05-15 23:33 - 254714526 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_03_HD_10BIT.mkv
2016-05-15 23:27 - 2016-05-15 23:33 - 227839796 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_04_HD_10BIT.mkv
2016-05-15 23:26 - 2016-05-15 23:33 - 311525508 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_02_HD.mp4
2016-05-15 23:26 - 2016-05-15 23:31 - 212231877 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_01_HD_10BIT_V3.mp4
2016-05-15 19:40 - 2016-05-15 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-05-15 18:29 - 2016-05-15 18:44 - 00000000 ____D C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_Ga_Shitai_Ren_HD_10BIT
2016-05-15 17:48 - 2016-05-15 18:02 - 553955026 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_01_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 18:02 - 523168351 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_03_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 18:02 - 491153534 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_02_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 18:02 - 454289249 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_04_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 17:59 - 386461616 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_05_10BIT.mkv
2016-05-15 17:46 - 2016-05-15 17:46 - 00015188 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_Ga_Shitai_Ren_HD_10BIT.torrent
2016-05-15 12:46 - 2016-05-15 12:59 - 2292051544 _____ C:\Users\Janine\Downloads\Kyoukai no Kanata Movie - I'll Be Here - Mirai-hen Ger-sub.mp4
2016-05-14 17:49 - 2016-05-14 18:10 - 946606021 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E16 - Meine kleine Schwester kann unmöglich so süß sein [Hi10P FLAC 1080p BD][668CDEF8].mkv
2016-05-14 17:49 - 2016-05-14 18:09 - 847943210 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E15 - Meine kleine Schwester ist so süß [Hi10P FLAC 1080p BD][E474D34C].mkv
2016-05-14 17:49 - 2016-05-14 18:09 - 781613487 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E13 - Eine Schwester würde sich niemals in ihren Bruder verlieben! [Hi10P FLAC 1080p BD][8E9034FA].mkv
2016-05-14 17:49 - 2016-05-14 18:09 - 1046606951 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E14 - Ich könnte es ihr niemals gestehen [Hi10P FLAC 1080p BD][63286003].mkv
2016-05-14 17:30 - 2016-05-15 17:46 - 00000000 ____D C:\Users\Janine\Downloads\[M-L]Ore no Imouto Staffel 2[Hi10p FLAC 1080p BD]
2016-05-14 17:26 - 2016-05-14 17:47 - 848608477 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E10 - Meine Schwester würde niemals ein Hochzeitskleid tragen! [Hi10P FLAC 1080p BD][D1A7AACA].mkv
2016-05-14 17:26 - 2016-05-14 17:47 - 780633831 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E08 - Ich könnte niemals Erinnerungen an den Sommer mit meiner Kouhai sammeln! [Hi10P FLAC 1080p BD][FC6B5A61].mkv
2016-05-14 17:26 - 2016-05-14 17:47 - 741742085 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E12 - Eine engelsgleiche Ayase-tan würde niemals zu meiner Wohnung herabsteigen! [Hi10P FLAC 1080p BD][E23A1068].mkv
2016-05-14 17:26 - 2016-05-14 17:45 - 706189927 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E09 - Meine Schwester kann unmöglich so süß sein! [Hi10P FLAC 1080p BD][1BB3AAB5].mkv
2016-05-14 17:26 - 2016-05-14 17:44 - 601084751 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E11 - Meine Schwester und Co. würden niemals die Einzimmerwohnung ihres Bruders besuchen! [Hi10P FLAC 1080p BD][4317AAE7].mkv
2016-05-14 17:25 - 2016-05-14 17:25 - 00061875 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2BatchTorrent [Hi10P FLAC 1080p BD][Hi10p FL].torrent
2016-05-14 01:10 - 2016-05-14 01:10 - 00023773 _____ C:\Users\Dokomi\Downloads\bab.sql
2016-05-13 10:05 - 2016-05-13 10:06 - 64519267 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 06 (1280x720 x264 AAC)[C8D25775] (1).mkv
2016-05-13 10:04 - 2016-05-13 10:06 - 68365371 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 03 (1280x720 x264 AAC)[C6E5F7E9] (1).mkv
2016-05-13 09:51 - 2016-05-13 09:52 - 63516531 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 05 (1280x720 x264 AAC)[DA72C277].mkv
2016-05-13 09:51 - 2016-05-13 09:51 - 00000000 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 06 (1280x720 x264 AAC)[C8D25775].mkv
2016-05-13 09:50 - 2016-05-13 09:52 - 73298674 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 04 (1280x720 x264 AAC)[4DCC25B7].mkv
2016-05-13 09:50 - 2016-05-13 09:50 - 00000000 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 03 (1280x720 x264 AAC)[C6E5F7E9].mkv
2016-05-13 09:49 - 2016-05-13 09:51 - 57533221 _____ C:\Users\Janine\Downloads\[ASS-HIS] Koitabi - True Tours Nanto - 02 (1280x720 H264 AAC)[DA062C27].mkv
2016-05-13 09:49 - 2016-05-13 09:50 - 66128762 _____ C:\Users\Janine\Downloads\[ASS-HIS] Koitabi - True Tours Nanto - 01 (1280x720 H264 AAC)[1EB75AE2].mkv
2016-05-12 23:57 - 2016-05-13 00:02 - 627261716 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 05 (10bit, 720p, x264, AAC)[07C3D232].mkv
2016-05-12 23:57 - 2016-05-12 23:57 - 00012245 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 05 (10bit, 720p, x264, AAC)[07C3D232].mkv.torrent
2016-05-10 22:32 - 2016-04-30 08:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-10 22:32 - 2016-04-30 08:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-10 22:32 - 2016-04-23 08:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-05-10 22:32 - 2016-04-23 08:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-10 22:32 - 2016-04-23 07:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-05-10 22:32 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-05-10 22:32 - 2016-04-23 07:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-10 22:32 - 2016-04-23 07:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-05-10 22:32 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-10 22:32 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-05-10 22:32 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-05-10 22:32 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-05-10 22:32 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-05-10 22:32 - 2016-04-23 07:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-10 22:32 - 2016-04-23 07:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-10 22:32 - 2016-04-23 07:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-10 22:32 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-05-10 22:32 - 2016-04-23 07:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-05-10 22:32 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-05-10 22:32 - 2016-04-23 07:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-05-10 22:32 - 2016-04-23 07:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-05-10 22:32 - 2016-04-23 07:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-05-10 22:32 - 2016-04-23 07:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-05-10 22:32 - 2016-04-23 07:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-10 22:32 - 2016-04-23 07:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-05-10 22:32 - 2016-04-23 07:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-05-10 22:32 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-05-10 22:32 - 2016-04-23 07:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-10 22:32 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-05-10 22:32 - 2016-04-23 07:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-05-10 22:32 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-05-10 22:32 - 2016-04-23 06:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-05-10 22:32 - 2016-04-23 06:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-10 22:32 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-05-10 22:32 - 2016-04-23 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-05-10 22:32 - 2016-04-23 06:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-10 22:32 - 2016-04-23 06:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-10 22:32 - 2016-04-23 06:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-05-10 22:32 - 2016-04-23 06:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-10 22:32 - 2016-04-23 06:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-05-10 22:32 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-05-10 22:32 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-05-10 22:32 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-05-10 22:32 - 2016-04-23 06:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-05-10 22:32 - 2016-04-23 06:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-05-10 22:32 - 2016-04-23 06:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-05-10 22:32 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-05-10 22:32 - 2016-04-23 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-05-10 22:32 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-10 22:32 - 2016-04-23 06:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-05-10 22:32 - 2016-04-23 06:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-05-10 22:32 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-05-10 22:32 - 2016-04-23 06:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-05-10 22:32 - 2016-04-23 06:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-10 22:32 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-05-10 22:32 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-10 22:32 - 2016-04-23 06:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-05-10 22:32 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-05-10 22:32 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-05-10 22:32 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-05-10 22:32 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-05-10 22:32 - 2016-04-23 06:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-10 22:32 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-05-10 22:32 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-05-10 22:32 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-05-10 22:32 - 2016-04-23 06:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-10 22:32 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-05-10 22:32 - 2016-04-23 06:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-05-10 22:32 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-05-10 22:32 - 2016-04-23 06:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-05-10 22:32 - 2016-04-23 06:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-10 22:32 - 2016-04-23 06:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-05-10 22:32 - 2016-04-23 06:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-10 22:32 - 2016-04-23 06:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-10 22:32 - 2016-04-23 04:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-05-10 22:31 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-05-10 22:31 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-05-10 22:31 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-05-10 22:31 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-05-10 22:31 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-10 22:31 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-05-10 22:31 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-05-10 22:31 - 2016-05-06 05:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-10 22:31 - 2016-04-23 08:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-05-10 22:31 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-05-10 22:31 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-05-10 22:31 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-10 22:31 - 2016-04-23 07:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-05-10 22:31 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-10 22:31 - 2016-04-23 07:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-05-10 22:31 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-05-10 22:31 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-05-10 22:31 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-05-10 22:31 - 2016-04-23 07:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-10 22:31 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-05-10 22:31 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-05-10 22:31 - 2016-04-23 07:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-05-10 22:31 - 2016-04-23 07:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-05-10 22:31 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-05-10 22:31 - 2016-04-23 07:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-10 22:31 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-05-10 22:31 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-05-10 22:31 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-05-10 22:31 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-05-10 22:31 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-05-10 22:31 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-05-10 22:31 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-10 22:31 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-05-10 22:31 - 2016-04-23 07:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-05-10 22:31 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-05-10 22:31 - 2016-04-23 06:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-05-10 22:31 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-05-10 22:31 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-05-10 22:31 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-05-10 22:31 - 2016-04-23 06:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-10 22:31 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-05-10 22:31 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-05-10 22:31 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-10 22:31 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-05-10 22:31 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-10 22:31 - 2016-04-23 06:30 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-05-10 22:31 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-05-10 22:31 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-10 22:31 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-05-10 22:31 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-05-10 22:31 - 2016-04-23 06:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-05-10 22:31 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-05-10 22:31 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-05-10 22:31 - 2016-04-23 06:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-05-10 22:31 - 2016-04-23 06:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-05-10 22:31 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-10 22:31 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-05-10 22:31 - 2016-04-23 06:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-10 22:31 - 2016-04-23 06:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-10 22:31 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-05-10 22:31 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-05-10 22:31 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-05-10 22:31 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-05-10 22:31 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-05-10 22:31 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-05-10 22:31 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-05-10 22:31 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-05-10 22:31 - 2016-04-23 06:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-05-10 22:31 - 2016-04-23 06:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-05-10 22:31 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-05-10 22:31 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-05-10 22:31 - 2016-04-23 06:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-05-10 22:31 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-05-10 22:31 - 2016-04-23 04:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-05-10 22:31 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-05-09 23:46 - 2016-05-09 23:47 - 00000000 ____D C:\Users\Janine\Downloads\Air
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-06 12:42 - 2013-08-21 09:09 - 00000000 ____D C:\Users\Janine\AppData\Roaming\BitTorrent
2016-06-06 12:35 - 2013-08-26 11:48 - 00000000 ___RD C:\Users\Janine\Dropbox
2016-06-06 12:34 - 2016-04-08 15:17 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Spotify
2016-06-06 12:33 - 2016-04-08 15:18 - 00000000 ____D C:\Users\Janine\AppData\Local\Spotify
2016-06-06 12:32 - 2015-12-26 01:06 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-06 12:31 - 2015-09-04 10:10 - 00000000 __SHD C:\Users\Janine\IntelGraphicsProfiles
2016-06-06 12:30 - 2015-12-07 06:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-06 12:30 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-06-06 12:29 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-06 12:29 - 2015-10-24 17:20 - 00000000 ____D C:\Users\Janine\Desktop\Anime Zitate
2016-06-06 12:29 - 2015-09-04 18:24 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-06-06 12:29 - 2015-04-23 17:19 - 00000000 ____D C:\AdwCleaner
2016-06-06 12:06 - 2014-02-17 01:38 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-06 11:54 - 2015-12-07 06:16 - 00000000 ___DC C:\WINDOWS\Panther
2016-06-06 11:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-06 11:37 - 2013-08-20 22:09 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-06 11:32 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-06 11:30 - 2013-12-28 16:10 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{83C61FC1-2D8F-4E49-92D8-6BC45DACCCB0}
2016-06-06 02:21 - 2015-09-15 12:05 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-06-06 01:41 - 2014-04-21 20:34 - 00042585 _____ C:\Users\Janine\Desktop\Manga Liste.ods
2016-06-05 11:02 - 2013-08-20 22:37 - 00000000 ____D C:\Users\Janine\AppData\Roaming\vlc
2016-06-05 05:09 - 2015-06-22 22:21 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Skype
2016-06-04 14:07 - 2015-10-30 20:35 - 00777804 _____ C:\WINDOWS\system32\perfh007.dat
2016-06-04 14:07 - 2015-10-30 20:35 - 00156080 _____ C:\WINDOWS\system32\perfc007.dat
2016-06-04 14:07 - 2015-09-04 09:55 - 01802588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-03 23:14 - 2013-08-26 11:45 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Dropbox
2016-05-31 09:48 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-31 09:47 - 2015-06-15 22:45 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-31 09:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-05-24 02:45 - 2014-08-09 23:53 - 00009282 _____ C:\Users\Janine\Desktop\Unbenannt 1.odt
2016-05-23 23:51 - 2015-09-04 10:16 - 00002434 _____ C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-05-23 23:51 - 2013-11-26 16:57 - 00000000 __RDO C:\Users\Janine\SkyDrive
2016-05-20 12:06 - 2015-12-07 06:25 - 00000000 ____D C:\Users\Janine
2016-05-18 22:40 - 2016-04-30 07:57 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{42A9A5F2-45F7-460C-8182-E460AF62F668}
2016-05-15 19:39 - 2013-10-15 15:42 - 00146712 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-05-15 19:39 - 2013-10-15 15:42 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-05-15 04:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-14 21:30 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-14 17:18 - 2013-08-21 13:47 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-05-14 17:16 - 2016-04-30 07:21 - 00000000 __SHD C:\Users\Dokomi\IntelGraphicsProfiles
2016-05-14 01:13 - 2015-10-30 20:44 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-14 01:11 - 2016-04-30 07:21 - 00000000 ____D C:\Users\Dokomi\AppData\Local\Packages
2016-05-14 01:03 - 2016-04-30 07:23 - 00000000 ____D C:\Users\Dokomi\AppData\Roaming\Canon
2016-05-13 11:38 - 2015-06-22 19:12 - 00000000 ____D C:\Users\Janine\AppData\Local\Dropbox
2016-05-13 11:04 - 2015-10-30 09:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-05-13 11:01 - 2013-08-24 22:16 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-13 10:44 - 2013-08-24 22:16 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-13 08:51 - 2013-09-02 12:05 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-05-13 00:38 - 2013-08-20 22:10 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-12 23:52 - 2014-12-26 15:16 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-05-11 21:57 - 2015-12-10 04:37 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-05-11 21:57 - 2015-12-10 04:37 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-10 22:32 - 2013-08-20 22:09 - 00004190 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-10 22:32 - 2013-08-20 22:09 - 00003958 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-10 22:32 - 2013-08-20 22:09 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-08 16:07 - 2015-05-25 21:39 - 00021430 _____ C:\Users\Janine\Desktop\Animes.ods
2016-05-08 10:26 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-08 10:26 - 2015-06-15 22:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-05-07 23:26 - 2015-10-18 17:11 - 00000000 ____D C:\Users\Janine\Desktop\Black Cat
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-10-08 10:50 - 2014-11-11 22:51 - 0000096 _____ () C:\Users\Janine\AppData\Roaming\WB.CFG
Einige Dateien in TEMP:
====================
C:\Users\Dokomi\AppData\Local\Temp\avgnt.exe
C:\Users\Janine\AppData\Local\Temp\libeay32.dll
C:\Users\Janine\AppData\Local\Temp\msvcr120.dll
C:\Users\Janine\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-06-04 17:06
==================== Ende von FRST.txt ============================
|
|
06.06.2016, 12:44
| #4 |
| | Tabs mit Werbung öffnen sichCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-06-2016 02
durchgeführt von Janine (2016-06-06 12:42:22)
Gestartet von C:\Users\Janine\Downloads
Windows 10 Home Version 1511 (X64) (2015-12-07 04:58:52)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-705900732-3080402841-1693879770-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-705900732-3080402841-1693879770-503 - Limited - Disabled)
Dokomi (S-1-5-21-705900732-3080402841-1693879770-1007 - Limited - Enabled) => C:\Users\Dokomi
Gast (S-1-5-21-705900732-3080402841-1693879770-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-705900732-3080402841-1693879770-1006 - Limited - Enabled)
Janine (S-1-5-21-705900732-3080402841-1693879770-1002 - Administrator - Enabled) => C:\Users\Janine
UpdatusUser (S-1-5-21-705900732-3080402841-1693879770-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
„Windows Live Essentials“ (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
1&1 Surf-Stick (HKLM-x32\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.2 - )
Adobe After Effects 7.0 (HKLM-x32\...\Adobe After Effects 7.0) (Version: 7.0.0.244 - Adobe Systems, Inc.)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
Amazon Music (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Amazon Amazon Music) (Version: 3.7.0.693 - Amazon Services LLC)
Amnesia™: Memories (HKLM-x32\...\Steam App 359390) (Version: - Idea Factory)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1208.0301 - Micro-Star International Co., Ltd.)
BitTorrent (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\BitTorrent) (Version: 7.9.7.42331 - BitTorrent Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 4.0.1212.1401 - Micro-Star International Co., Ltd.)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.5.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.1.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.4.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.5.14 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon Kurzwahlprogramm (HKLM-x32\...\Speed Dial Utility) (Version: 1.6.0 - Canon Inc.)
Canon MX470 series Benutzerregistrierung (HKLM-x32\...\Canon MX470 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MX470 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX470_series) (Version: 1.00 - Canon Inc.)
Canon MX470 series On-screen Manual (HKLM-x32\...\Canon MX470 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.2.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.2.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.6.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Dropbox (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.)
ELAN Touchpad 15.13.1.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.13.1.1 - ELAN Microelectronic Corp.)
Fotoattēlu galerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotografias (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
HDvid Codec V1 (HKLM-x32\...\HDvid Codec V1) (Version: 1.27.153.8 - installdaddy) <==== ACHTUNG
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KB9X Radio Switch Driver (HKLM\...\B16388B2E5D3CBA8F0EE88A8C5459BADAF4DE251) (Version: 1.0.7112.20593 - ENE TECHNOLOGY INC.)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4823.1004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Norton PC Checkup (HKLM-x32\...\NortonPCCheckup) (Version: 2.0.18.16 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
NVIDIA Grafiktreiber 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
OpenOffice 4.0.0 (HKLM-x32\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.)
PC Sound (HKLM\...\{3007FF9F-5B2C-41FF-8BFC-08BF25DB2681}) (Version: 1.12.2900 - SRS Labs, Inc.)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.30136 - Realtek Semiconductor Corp.)
SCM (HKLM\...\{5953EEE5-3F52-46F7-A609-81A5F5BE8FB4}) (Version: 10.012.12038 - )
SdRt4200 (HKLM-x32\...\{140347A0-4A0C-44FC-9CA1-C8A3471899B7}) (Version: 4.2.8.0 - パルティオソフト株式会社)
Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.5 - Electronic Arts)
Valokuvavalikoima (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - Intel (NETwNe64) net (09/12/2012 15.5.4.45) (HKLM\...\A007E57753F87B14A4737DA95057F173950A6A3D) (Version: 09/12/2012 15.5.4.45 - Intel)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 5.00 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.2-1 - Bitnami)
Yume Nikki 0.10 English (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Yume Nikki 0.10 English) (Version: - )
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Основи Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотоальбом (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотоколекція (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
"{01C7C80F-DA6A-4698-BA70-4DA27991C5A9}" task wurde entsperrt. <===== ACHTUNG
"{08629A58-75ED-46AA-8646-8C7015698215}" task wurde entsperrt. <===== ACHTUNG
"{0A493256-4ADB-4CF2-8AB5-8CCBEFDFC5FE}" task wurde entsperrt. <===== ACHTUNG
"{0B545118-B563-42FC-8D07-B78F602FCF34}" task wurde entsperrt. <===== ACHTUNG
Task: {0B565079-1D61-45CB-A543-3C2BD30B20BE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
"{0C20E8DB-DCF0-4C48-B9B9-482E02BD9F1F}" task wurde entsperrt. <===== ACHTUNG
"{0CFE2E40-6A97-48C5-9F38-DE82315CF1B0}" task wurde entsperrt. <===== ACHTUNG
"{0DC0DAD2-F84F-429D-B085-411AE7CDE2D5}" task wurde entsperrt. <===== ACHTUNG
"{11406457-2C26-401D-B271-B7393CAD7F85}" task wurde entsperrt. <===== ACHTUNG
"{181EF958-CF2C-45C1-BFE2-0048458E3EFC}" task wurde entsperrt. <===== ACHTUNG
"{1A289232-BCB9-4599-A894-898D820255F8}" task wurde entsperrt. <===== ACHTUNG
"{1A4230A2-E136-4936-9B22-DDF624BB8332}" task wurde entsperrt. <===== ACHTUNG
"{1A438DBA-6F47-44D6-8207-124A92E1597E}" task wurde entsperrt. <===== ACHTUNG
"{1A8A1750-6B60-430B-A914-E01C395D222E}" task wurde entsperrt. <===== ACHTUNG
Task: {1E98F84E-0D53-43BE-A6DE-37D37C61C2E9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
"{1F0B1B6D-6FB8-495E-8D1D-0B6BA27883EB}" task wurde entsperrt. <===== ACHTUNG
"{216D44FB-2DD3-4478-8395-49C0E0D2D767}" task wurde entsperrt. <===== ACHTUNG
"{22DF95EE-A3BC-4A00-8468-0FF46BF970FC}" task wurde entsperrt. <===== ACHTUNG
"{2300B6D1-D409-499E-92DF-030662B73A6B}" task wurde entsperrt. <===== ACHTUNG
Task: {25A4D346-B0DA-49F6-A733-6D99A6BE9B81} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
"{27A7ABEB-AF7C-40F4-BAD4-95630EB0C1FA}" task wurde entsperrt. <===== ACHTUNG
"{287EB61E-849D-44F1-BF41-56B2A8081F95}" task wurde entsperrt. <===== ACHTUNG
"{2B307AD0-33EA-4DB6-81B3-05FEADBE1140}" task wurde entsperrt. <===== ACHTUNG
Task: {2BB69D5F-14D3-47B1-8A19-8DBFD5523BAD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-04-12] (Microsoft Corporation)
"{2CCA2563-023C-4159-8011-59C6C9E1973A}" task wurde entsperrt. <===== ACHTUNG
"{317107BF-13F6-48B4-AA5A-BA0B03A02F4B}" task wurde entsperrt. <===== ACHTUNG
"{33046BDC-2974-457F-A198-055760713D46}" task wurde entsperrt. <===== ACHTUNG
"{330DDC8E-A32D-4363-9C85-527F2673DDF7}" task wurde entsperrt. <===== ACHTUNG
Task: {3362602B-205D-4CCC-999A-5C8BB9B428C0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
"{352E6CA0-7314-4DF4-89C4-682368D80D57}" task wurde entsperrt. <===== ACHTUNG
"{3627755F-6629-4D94-850A-FBE43D28BEB8}" task wurde entsperrt. <===== ACHTUNG
"{37307B43-41DC-4BBE-BF3B-9B1631BEE311}" task wurde entsperrt. <===== ACHTUNG
"{3788B008-08AE-42A1-AECB-404EE0EFEAA5}" task wurde entsperrt. <===== ACHTUNG
Task: {418BB90D-E7C9-4A69-9F75-9AEEF5FAC139} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
"{4208A7BF-D622-476E-A1A3-F9EB2719ECD4}" task wurde entsperrt. <===== ACHTUNG
"{43744BF4-03F7-4B73-87FC-2BA232F6D655}" task wurde entsperrt. <===== ACHTUNG
"{44AF46C9-4AA6-4851-959E-023D755ED880}" task wurde entsperrt. <===== ACHTUNG
"{44EA678F-7E08-4531-92E2-587CA13B5D2C}" task wurde entsperrt. <===== ACHTUNG
"{45561755-0BB2-49DF-9B3C-3F0CEB4AB61E}" task wurde entsperrt. <===== ACHTUNG
"{45A1E736-EAAA-4735-ABBA-A9C5CF2BDAEF}" task wurde entsperrt. <===== ACHTUNG
"{48A98229-5C8E-4DDD-8139-CF35F7262A95}" task wurde entsperrt. <===== ACHTUNG
"{48E4EF46-2962-499E-B496-FD87DEFA9D4D}" task wurde entsperrt. <===== ACHTUNG
Task: {49FCC9A8-D6A4-4C45-871B-08792A0F9DC4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
"{4A944005-EAD7-4E3D-A0CB-E36A03948234}" task wurde entsperrt. <===== ACHTUNG
"{4ADD02F8-8A80-4037-93AF-01F0D391A8D4}" task wurde entsperrt. <===== ACHTUNG
Task: {4B8A61A2-87EB-410E-B018-15A2BB4C8FCB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
"{4BC5D02D-368A-405A-B471-F9CAB6666731}" task wurde entsperrt. <===== ACHTUNG
"{4C5A8A03-2384-464F-AEAA-F58928D854D8}" task wurde entsperrt. <===== ACHTUNG
"{4E3CB8C2-8A0C-4570-A32E-7319C6E8E432}" task wurde entsperrt. <===== ACHTUNG
"{4E4954A6-C22F-4537-87FE-9A696B7BF9C4}" task wurde entsperrt. <===== ACHTUNG
"{511CB694-F6BB-49BA-AC20-E2916B05BD90}" task wurde entsperrt. <===== ACHTUNG
"{52362630-34B3-46AA-8508-9857D8B13B4F}" task wurde entsperrt. <===== ACHTUNG
"{5587F1DC-15D0-4331-A673-6EF75E5CD9C0}" task wurde entsperrt. <===== ACHTUNG
"{57ED60D2-6B0B-4069-90B4-50B067491212}" task wurde entsperrt. <===== ACHTUNG
"{59CBDFB9-8D90-4443-9AF8-5C3B45220F5E}" task wurde entsperrt. <===== ACHTUNG
"{59CE74C9-886F-4121-8052-508A4B829DC6}" task wurde entsperrt. <===== ACHTUNG
"{5A3FB241-0B11-4EA5-BC66-0D9F1B406040}" task wurde entsperrt. <===== ACHTUNG
"{5B4C02FF-5C7C-42FB-877E-4F57C6198A71}" task wurde entsperrt. <===== ACHTUNG
Task: {5B942E60-333F-40E3-9775-A3D6370318FA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {60098505-F682-4DCF-B725-3D16D6953276} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-05-13] (Piriform Ltd)
"{61E97BCB-528E-4B3C-A43A-CDFC978E48E7}" task wurde entsperrt. <===== ACHTUNG
"{62C6204C-B449-4C2C-B915-D8E513C8D2DC}" task wurde entsperrt. <===== ACHTUNG
"{64EFDCE4-067E-45AD-80B7-9ACADBA7145A}" task wurde entsperrt. <===== ACHTUNG
"{669B944E-926D-4382-AB83-710022AE3EA2}" task wurde entsperrt. <===== ACHTUNG
"{66FE0026-8E27-493D-BED2-EF4ACF50814C}" task wurde entsperrt. <===== ACHTUNG
"{679EB820-C80C-4B8C-81EB-D3B5A83C3BF3}" task wurde entsperrt. <===== ACHTUNG
"{697E18DD-943C-470A-B9E3-6E5DDCB42D05}" task wurde entsperrt. <===== ACHTUNG
"{6B0D6754-588A-4B5C-95F7-7F39A9780F7E}" task wurde entsperrt. <===== ACHTUNG
"{6B696BCF-C866-41CA-B4E4-3D19FB1E9250}" task wurde entsperrt. <===== ACHTUNG
"{6CBA2464-1DAD-4F1D-919F-4E6DFC499277}" task wurde entsperrt. <===== ACHTUNG
"{6D88DE84-0813-4C51-99FC-12A9A98DD1D9}" task wurde entsperrt. <===== ACHTUNG
"{6DFCB649-0769-4F83-BB10-F60F235F6D3D}" task wurde entsperrt. <===== ACHTUNG
Task: {708CBAC9-66DA-47AE-A85A-442C5598572F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
"{70CF17D8-ACB3-4DBF-B283-6A71C9BF3D0E}" task wurde entsperrt. <===== ACHTUNG
"{71E53243-3A2D-47EE-9DAB-6D71B2366657}" task wurde entsperrt. <===== ACHTUNG
"{73F84A2E-E267-44CD-AE43-26F5FADC07BC}" task wurde entsperrt. <===== ACHTUNG
"{7464E64D-F916-44C4-8B4D-8285C95325A1}" task wurde entsperrt. <===== ACHTUNG
"{7506EE3F-10D4-4FCF-9DDD-77B8FF1182D4}" task wurde entsperrt. <===== ACHTUNG
Task: {750DC9F8-F242-486A-A414-7EE54543DFD0} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
"{75336275-E3E0-4BC0-B373-3CFB8C1E4130}" task wurde entsperrt. <===== ACHTUNG
"{75EEC801-5298-41FE-BD51-F07E4178CA3E}" task wurde entsperrt. <===== ACHTUNG
Task: {7966432F-DFE5-4F52-8512-A759F0E98E56} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
"{7A6FA6EC-ED66-42B8-B9D7-06523FB6E039}" task wurde entsperrt. <===== ACHTUNG
"{7AE1BCAC-061D-4672-BACB-88BC74CE1D7A}" task wurde entsperrt. <===== ACHTUNG
"{7B857988-3067-4E13-8891-998F430972F7}" task wurde entsperrt. <===== ACHTUNG
"{7BC12C89-A012-46EA-B9EB-052EB5CD4326}" task wurde entsperrt. <===== ACHTUNG
"{7BD8F44E-530D-41CF-B1D0-B9BB0B0C1C73}" task wurde entsperrt. <===== ACHTUNG
"{7C5E946D-5C65-4AA7-A5A1-877556CC00F2}" task wurde entsperrt. <===== ACHTUNG
Task: {7E4AF0CF-65D3-4FEF-92E6-F273E47793EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
"{7F64EAF9-FFE6-49DB-90DD-80D2B8774614}" task wurde entsperrt. <===== ACHTUNG
"{7FAF6FA5-8557-4C4D-9206-7460555EAB06}" task wurde entsperrt. <===== ACHTUNG
"{830038A6-9046-42E5-B03C-1455E6BDFBAF}" task wurde entsperrt. <===== ACHTUNG
Task: {838FA800-B593-4F8D-ABCC-8250DD1CDE19} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\SymErr.exe
"{84E4A8CF-CE13-47C4-ABC1-BC5DD42C6C83}" task wurde entsperrt. <===== ACHTUNG
"{860F596C-A1D8-4651-B747-D134041D80AD}" task wurde entsperrt. <===== ACHTUNG
"{872D0E53-FD2E-41E3-B431-698AF82882CE}" task wurde entsperrt. <===== ACHTUNG
"{8865CC07-3C24-475C-896D-8ABA96F2471A}" task wurde entsperrt. <===== ACHTUNG
"{88A080C6-CF81-4BFB-9242-0BA5BD6B51D0}" task wurde entsperrt. <===== ACHTUNG
"{90D79106-3D12-40AF-A9BA-231F2327770C}" task wurde entsperrt. <===== ACHTUNG
"{94582C27-CA52-4593-9A48-A317C4D361E3}" task wurde entsperrt. <===== ACHTUNG
"{955E8D5B-0718-411A-9D8F-83454788272B}" task wurde entsperrt. <===== ACHTUNG
Task: {95623207-84D9-415A-B35A-F2298E5C37A7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {96B86FDD-F5BF-4125-94BF-18359E9D1F28} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
"{97601E9E-9C9C-415D-B81D-9F86ACA7CDC5}" task wurde entsperrt. <===== ACHTUNG
"{9768ABD2-EB67-498E-A669-15A536AF817A}" task wurde entsperrt. <===== ACHTUNG
"{9A58602B-2D48-4E55-BA94-672A29521C76}" task wurde entsperrt. <===== ACHTUNG
"{9B3A6CD7-4CDE-4432-BE99-B316D2296C86}" task wurde entsperrt. <===== ACHTUNG
"{9C8E21C9-6AB1-4D66-8DF5-73AF5359B24E}" task wurde entsperrt. <===== ACHTUNG
"{9FFB29C5-38ED-47CB-B89B-EA84708EBA65}" task wurde entsperrt. <===== ACHTUNG
"{A483A62A-BEE2-43EF-B43D-C4B6555D6F1E}" task wurde entsperrt. <===== ACHTUNG
"{A4D1B478-9D9D-489F-98BF-846F21D1EA6C}" task wurde entsperrt. <===== ACHTUNG
"{A6D9FF76-0705-4B3D-9D8E-0BB183A7D3E9}" task wurde entsperrt. <===== ACHTUNG
Task: {A75AE611-5EAF-482D-B6B2-862D9920CAEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {A9E70911-46E5-4F03-A4A7-026D672C4733} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
"{AE229047-6634-45F4-A0F4-6A9522659F2D}" task wurde entsperrt. <===== ACHTUNG
"{AF8621E4-DD0A-4E22-AEBD-D252114A7D89}" task wurde entsperrt. <===== ACHTUNG
Task: {AF932774-6928-4AA3-AAD0-9254F3C4A282} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\SymErr.exe
"{AFD4A8A3-508B-4785-8271-CDEBAEED3F46}" task wurde entsperrt. <===== ACHTUNG
"{B3DD4C81-C4AC-4263-806F-E5B540C1B26A}" task wurde entsperrt. <===== ACHTUNG
"{B4A5B97B-E0F1-4984-ADA4-432088751E1B}" task wurde entsperrt. <===== ACHTUNG
Task: {B4D5DB87-4F58-4E46-A485-D1B30E67066E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
"{BA3388B9-C9D3-47A9-A9B5-E79B50DD0270}" task wurde entsperrt. <===== ACHTUNG
"{BB94B31D-4FE5-42FB-A144-A393F6C54A6F}" task wurde entsperrt. <===== ACHTUNG
"{BD62F7BB-7242-4904-A8A8-4E358ED75D6B}" task wurde entsperrt. <===== ACHTUNG
"{BF589992-F6BB-4FFC-8766-FB138C7DE18D}" task wurde entsperrt. <===== ACHTUNG
"{C0A4DF9B-B00D-4626-8994-BF17C88860B0}" task wurde entsperrt. <===== ACHTUNG
"{C1E1F555-5EEC-4D6B-98FB-9934616F00E9}" task wurde entsperrt. <===== ACHTUNG
"{C349BB67-3672-4975-AE02-517BAD9318EE}" task wurde entsperrt. <===== ACHTUNG
"{C415FE0E-DDCB-44E0-A459-B9164B72424B}" task wurde entsperrt. <===== ACHTUNG
"{C4E89737-E6D8-4D86-B15E-50A93654BBC1}" task wurde entsperrt. <===== ACHTUNG
"{C7752DC6-148D-4AB0-93E1-D84AEB7AA014}" task wurde entsperrt. <===== ACHTUNG
"{C881A742-1A15-4EAC-96B9-9C6EA38AC7FA}" task wurde entsperrt. <===== ACHTUNG
"{C8DB9D2B-AB0A-4D3F-8409-427C806748D6}" task wurde entsperrt. <===== ACHTUNG
"{CA1E905A-B064-48AF-9F06-68C7E71498B9}" task wurde entsperrt. <===== ACHTUNG
"{CA4BE44E-107E-4B2D-91AF-FC3B077B02FC}" task wurde entsperrt. <===== ACHTUNG
"{CC8236FF-A055-4083-A37E-D0F85E135DE3}" task wurde entsperrt. <===== ACHTUNG
"{CE2DE968-E342-40D7-9566-427D45E4A886}" task wurde entsperrt. <===== ACHTUNG
"{CFC77F13-E27C-4C44-8D9B-CB2163D27C89}" task wurde entsperrt. <===== ACHTUNG
Task: {D57B7E86-6A42-40A9-BB43-20F2D539A682} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-17] (Adobe Systems Incorporated)
"{D7F0F250-0978-4FFA-BA28-A14C0AB462FF}" task wurde entsperrt. <===== ACHTUNG
"{DAAFAEC3-BC03-44D7-A77D-05760FE578AD}" task wurde entsperrt. <===== ACHTUNG
"{DB458018-DEBA-4577-AB8B-EA1506110FB8}" task wurde entsperrt. <===== ACHTUNG
"{DE9EF05D-D131-41FC-87C9-ABF449872934}" task wurde entsperrt. <===== ACHTUNG
Task: {DF7C47F0-D4CF-4C13-BE34-D51BDE8EB60C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-13] (Microsoft Corporation)
"{E03596C8-B2A4-4553-B379-B678F0EBCA95}" task wurde entsperrt. <===== ACHTUNG
"{E15B0834-C96C-40E1-8995-12FE38D52648}" task wurde entsperrt. <===== ACHTUNG
"{E506F4C9-20BB-40AE-AD65-2304E5EF9B80}" task wurde entsperrt. <===== ACHTUNG
"{E5217668-D921-4907-8CE1-276EABA44515}" task wurde entsperrt. <===== ACHTUNG
"{E6010D43-6AE7-4B59-8E67-EC78FD8E8E96}" task wurde entsperrt. <===== ACHTUNG
"{E7D61507-58B7-44DC-8D1E-932F96FC2D62}" task wurde entsperrt. <===== ACHTUNG
Task: {E98F394B-A6E4-451E-A32D-A4487ACF74D8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
"{EA5D5FA7-79F4-4BC8-8C91-CA1A24F86527}" task wurde entsperrt. <===== ACHTUNG
"{EC59CC4E-A8CB-476D-8421-92558446E9A3}" task wurde entsperrt. <===== ACHTUNG
Task: {ED42215F-D852-42A8-82EB-10CD3754958C} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-705900732-3080402841-1693879770-1002
"{EF3EC7C4-1CB5-43F1-A074-D1D74BB07D7A}" task wurde entsperrt. <===== ACHTUNG
"{EFB2C913-BFA0-4FB9-8130-48BEE6BD1B12}" task wurde entsperrt. <===== ACHTUNG
"{F120A436-C215-4927-87AA-934387AF5782}" task wurde entsperrt. <===== ACHTUNG
"{F2341244-5F02-41C5-BA40-4FBADCD67206}" task wurde entsperrt. <===== ACHTUNG
"{F35162BA-CDE7-4746-A368-D590640A3FA9}" task wurde entsperrt. <===== ACHTUNG
"{F4BF89A9-8488-4988-B163-F7F0341D521B}" task wurde entsperrt. <===== ACHTUNG
Task: {F4D26EBD-78AB-429A-A645-44F4C540E695} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
"{F6734075-627C-47CE-918F-B51866D629BB}" task wurde entsperrt. <===== ACHTUNG
"{F775C69D-FE09-4105-8F98-5DC6D956FA4E}" task wurde entsperrt. <===== ACHTUNG
"{F98BB314-575B-453F-A9F9-A13B9D088426}" task wurde entsperrt. <===== ACHTUNG
"{F98C81FF-D786-4067-AAFB-D67F2BA8542A}" task wurde entsperrt. <===== ACHTUNG
"{FA625267-66E0-464A-AE95-8754007E78AD}" task wurde entsperrt. <===== ACHTUNG
"{FB1868EE-5CA8-4DE9-A8B1-6171EB0EDB5A}" task wurde entsperrt. <===== ACHTUNG
"{FC52F032-45F0-4B04-99DA-5A5F43CB0392}" task wurde entsperrt. <===== ACHTUNG
"{FC5681F1-C930-414C-8049-16F7B32D0FEF}" task wurde entsperrt. <===== ACHTUNG
"{FEF85651-4DD3-461C-AB7B-44FC3276E219}" task wurde entsperrt. <===== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-705900732-3080402841-1693879770-1002Core1d0c20c481d665b.job => C:\Users\Janine\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-07 06:21 - 2015-07-23 03:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-06-15 22:45 - 2015-10-13 05:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-09-15 12:07 - 2013-06-28 15:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-04-15 12:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-15 12:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-23 23:51 - 2016-05-23 23:51 - 00959168 _____ () C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2015-12-21 01:09 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-10 22:32 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-10 22:32 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-10 22:32 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-10 22:32 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-11-29 00:26 - 2014-11-19 02:55 - 06277952 _____ () C:\Users\Janine\AppData\Local\Amazon Music\Amazon Music Helper.exe
2014-06-12 17:45 - 2011-08-25 10:50 - 00153424 _____ () C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe
2016-05-13 18:44 - 2016-05-13 18:44 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2016-04-22 17:13 - 2016-04-22 17:13 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-05-23 23:51 - 2016-05-23 23:51 - 00679624 _____ () C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2015-12-26 01:07 - 2016-04-29 22:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-12-26 01:07 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-12-26 01:07 - 2016-04-30 02:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-12-26 01:07 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-12-26 01:07 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-12-26 01:07 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-12-26 01:07 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-12-26 01:07 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-12-26 01:07 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-12-26 01:07 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-12-26 01:07 - 2016-04-30 02:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-13 08:56 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-04-08 15:18 - 2016-06-01 16:05 - 47503472 _____ () C:\Users\Janine\AppData\Roaming\Spotify\libcef.dll
2015-12-12 11:05 - 2016-05-05 12:09 - 00034768 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2016-06-03 23:13 - 2016-05-05 12:10 - 00019408 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2016-06-03 23:13 - 2016-05-05 12:09 - 00116688 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2015-12-12 11:05 - 2016-05-05 12:09 - 00093640 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2015-12-12 11:05 - 2016-05-05 12:09 - 00018376 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\select.pyd
2015-12-12 11:05 - 2016-05-31 20:34 - 00019760 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00105928 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32api.pyd
2016-06-03 23:13 - 2016-05-05 12:09 - 00392144 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2015-12-12 11:05 - 2016-05-31 20:34 - 00381752 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2015-12-12 11:05 - 2016-05-05 12:09 - 00692688 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00020816 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2015-12-12 11:05 - 2016-05-05 12:10 - 00123856 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 01682760 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00020808 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2015-12-12 11:05 - 2016-05-31 20:34 - 00021840 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00038696 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\fastpath.pyd
2016-06-03 23:13 - 2016-05-05 12:11 - 00020936 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00024528 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32event.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00114640 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32security.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00124880 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32file.pyd
2016-02-12 12:12 - 2016-05-31 20:34 - 00021832 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00024016 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00175560 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32gui.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00030160 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00043472 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32process.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00048592 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32service.pyd
2016-02-12 12:12 - 2016-05-31 20:34 - 00023872 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winffi.kernel32._winffi_kernel32.pyd
2016-06-03 23:13 - 2016-05-05 12:09 - 00134088 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00026456 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00057808 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00024016 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32profile.pyd
2016-06-03 23:13 - 2016-05-31 20:33 - 00246592 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00028616 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32ts.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00052024 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2015-12-12 11:05 - 2016-05-05 12:09 - 00134608 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2016-06-03 23:13 - 2016-05-05 12:10 - 00240584 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2016-02-12 12:12 - 2016-05-31 20:34 - 00020800 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-02-12 12:12 - 2016-05-31 20:34 - 00019776 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd
2016-02-12 12:12 - 2016-05-31 20:34 - 00020800 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00020280 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2015-12-12 11:05 - 2016-05-31 20:34 - 00023376 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00350152 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2016-02-12 12:12 - 2016-05-31 20:34 - 00022352 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00024392 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2016-06-03 23:13 - 2016-05-05 12:12 - 00036296 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\librsync.dll
2016-06-03 23:13 - 2016-05-31 20:34 - 00031568 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd
2016-06-03 23:13 - 2016-03-12 02:46 - 00293392 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2016-06-03 23:13 - 2016-05-31 20:34 - 00084280 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2016-06-03 23:13 - 2016-05-31 20:34 - 01826096 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2015-12-12 11:05 - 2016-05-05 12:10 - 00083912 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\sip.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 03928880 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 01971504 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00531248 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00132912 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00223544 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00207672 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2015-12-12 11:05 - 2016-05-05 12:11 - 00060880 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\win32print.pyd
2016-04-15 12:38 - 2016-05-31 20:34 - 00025928 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.pyd
2015-12-12 11:05 - 2016-05-31 20:34 - 00024904 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00546096 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2016-06-03 23:13 - 2016-05-31 20:34 - 00357680 _____ () C:\Users\Janine\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2015-11-05 22:49 - 2015-04-28 16:22 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-11-05 22:49 - 2014-05-19 18:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2015-12-26 01:07 - 2016-04-28 03:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-05-13 00:38 - 2016-05-11 13:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-13 00:38 - 2016-05-11 13:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
2016-04-08 15:18 - 2016-06-01 16:05 - 01584240 _____ () C:\Users\Janine\AppData\Roaming\Spotify\libglesv2.dll
2016-04-08 15:18 - 2016-06-01 16:05 - 00082032 _____ () C:\Users\Janine\AppData\Roaming\Spotify\libegl.dll
2016-05-13 00:38 - 2016-05-11 13:48 - 17565848 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll
2013-02-27 21:20 - 2013-02-27 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-04-22 17:13 - 2016-04-22 17:13 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-22 17:13 - 2016-04-22 17:13 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Janine\Desktop\Animes.ods:com.dropbox.attributes [168]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6F1F22C2-022C-4D3C-AF68-029F7BE02553}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{B2C4D1F1-FCED-4ED6-A17E-1BBCEE8F0934}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{01A2CF75-0AB0-48DE-A684-4C9B619E4A78}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{E24D7003-769D-4F40-92CE-8BF6D48CFDC8}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [UDP Query User{23DC8BF4-C457-4920-9556-BC16CB415BD0}C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{1C661DB5-51AA-4750-AC46-924DF28FA014}C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{F4DA9F69-D64B-4F9C-9A53-86204F5B5541}] => (Allow) C:\Users\Janine\AppData\Roaming\ICQM\icq.exe
FirewallRules: [{13A00208-84A1-4F5B-95E5-F43B618E1AA9}] => (Allow) C:\Users\Janine\AppData\Roaming\ICQM\icq.exe
FirewallRules: [{9EFFF97D-FEA8-490E-A76B-E1C2B679900D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2CA7F870-E974-48EE-9980-0BA670DDA3C9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{63A34E96-65C9-442B-8DEC-16163E768A26}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B32736E4-45E5-4543-A202-56C91C5F102E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{297E0848-CB4D-441D-A3A4-39B58302C848}] => (Allow) C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{2873EBC0-683B-4C49-BAE6-96B0D88BFFDE}] => (Allow) C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{0557E1D0-D1E0-4F2B-81D5-41EA3F5DA899}] => (Allow) C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E2014EFC-A2EA-4F8D-ADCE-CA6867043E80}] => (Allow) C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{EED702E0-7A87-49E7-B0C7-367EF9B78760}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{0855C43A-5143-43E8-B708-59A1AAF94D91}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{96D03EA3-C749-43FA-B3F2-12FB7AAFD8DA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{725D0BF9-00C6-4145-B290-52EF6A71A496}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{15C402AA-B342-4FC0-AE32-4459FE86065D}] => (Allow) LPort=1900
FirewallRules: [{5F8C8330-D9F7-440E-A64D-9867D09885AF}] => (Allow) LPort=2869
FirewallRules: [{9526FDB2-C2FF-4CAE-A94A-100218AAE4FB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C92AF41F-A0DD-4A28-8AD2-7C3FD8F404E0}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [TCP Query User{24114A8A-8BBA-45D4-BC4D-146AB694E68C}C:\users\janine\appdata\roaming\icqm\icq.exe] => (Allow) C:\users\janine\appdata\roaming\icqm\icq.exe
FirewallRules: [UDP Query User{FFA3776F-E96A-410D-B700-2680B4468D7A}C:\users\janine\appdata\roaming\icqm\icq.exe] => (Allow) C:\users\janine\appdata\roaming\icqm\icq.exe
FirewallRules: [TCP Query User{DD7A4FBE-3642-4539-8606-07393711FB5A}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{3985EF89-3D39-4FFF-BCE4-8506604902E0}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{33D1D2C3-D821-407C-907B-726B4D0D7E8F}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{CCA157B3-1FA9-4BFE-AE6E-3820AD9DB62C}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{14AC3790-F2E5-4CC3-AD3C-717B84AAC80C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{C0A005E7-7F89-4653-8632-EB1B66F55AA6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{748D4429-4D57-4710-A580-A825DFFB5371}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C6A1B6D0-406A-42DC-9031-557B7250F9FC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{82152167-72C7-4FF8-8FFD-18ED903307F5}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{777B3976-C943-4D44-B3CF-8D63C45EFF7F}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{68EE4202-6480-42B6-B288-EFAFE44E00AC}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{955C85A7-DC27-4B56-982C-D7588F30C4BE}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{20EFE33C-A969-40A2-A9E1-88EC37C322DB}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{2A60279F-C02E-47D9-9685-5E7B353F4A62}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{62E7DA06-E60F-468C-AC0C-D6395648DA31}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{0E11B683-FBA2-4F39-8007-C3F618885DBC}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{83042FA9-EF32-4AA8-AEDF-B69FD90A49D1}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{DDE6B8BB-A808-40AD-8F18-D62878B48A68}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{7C90EAE1-0D6C-46ED-9947-4B5687C34A69}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{821879A2-94B0-4FC0-8540-18B2C31AC79D}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{2E8234E9-EAF2-49A2-80F4-438C794BD1C2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [TCP Query User{E23C2E10-76FF-4683-8F88-0F7D78F4E231}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{25564244-1C98-4C63-BC37-123CFED627B1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{59C0BAA7-FA20-4220-A57A-DB5973999B2C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{A3EA725D-0CA3-4D21-AB44-C53E9B7C3A9A}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{F0D43DAA-2B63-4BD7-8DE0-985150724872}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{62FC7482-B6C2-45D5-85FB-7DBB182A409E}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{921AA811-FFE6-4C89-9757-53AF51357559}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [{0ED8E6CA-4E8A-4AFC-90F5-FC564D09A8E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E6AF8FA6-5604-4E50-A4D3-B20F42204AD0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D41532E8-84C1-4EE0-BCF0-F5C22FC9C98B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ECD55CA8-9865-463D-9594-2A8D7355B76C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1BBC3A08-0081-42BA-9ED3-3A7B08A6D257}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia\amnesia.exe
FirewallRules: [{08F9D65F-C9B6-4F71-A931-A1B834425862}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia\amnesia.exe
FirewallRules: [TCP Query User{2F350D57-6944-40B3-A193-E5ED50199F52}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{69F1542A-890F-4DB0-894C-A9CD1676C0F2}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{8357ECD2-3C72-4944-9DB4-381917A4C871}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{E5BBB0CA-EDF9-4A5D-8136-529C337E11D7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{2ECDA661-4747-4669-933D-96618030F732}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{3FBCF7EE-CF4A-41BA-9B32-601CAF839180}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{71A37431-7EB3-426B-8321-95BB842F2E3D}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [UDP Query User{A05446C6-2D1C-4252-BABD-D19428F7C725}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [TCP Query User{D332CF67-5A21-4427-8FC5-35448B37F81B}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{22A555E0-9AD7-4B8D-8F48-E8DE1D1F5FAD}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{7D19E366-5880-4196-A1D9-A8F13593F687}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{B294E2A3-E285-4050-AE58-C33812E29C55}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{B4DD70CF-A905-42DD-B6A4-6C4342974D85}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe
FirewallRules: [UDP Query User{1D8FEA0C-9200-4793-979D-96426632DE89}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe
FirewallRules: [{9554E2E6-30E0-495A-9B63-5F2D201ED471}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe
FirewallRules: [{BE2B9126-F2D5-4E44-8394-F2B5FA3AF9A2}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe
FirewallRules: [TCP Query User{B3353C15-0598-4872-A786-4144C0AFD0C3}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{8331D768-09DF-4556-B960-C6B8A591DEF4}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{6419072A-913B-4C29-8F74-D594BBFC28FD}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [UDP Query User{5E899FF1-07B8-49FE-8BF1-089ACF96F6EE}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [TCP Query User{166F58B5-A547-46B9-9B94-13262778085A}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1052D32C-B1D1-4FF0-AB14-3ED667686926}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{C8A07D32-1E70-470D-9953-BDDCBE5AD7E9}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{98A50D25-EF32-4C36-906E-71D2493F0730}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E5EFBA27-2EAF-4BE1-BE60-FDDDFBF249D2}C:\program files\java\jre1.8.0_74\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\java.exe
FirewallRules: [UDP Query User{081B1951-FDAF-4D21-B7B3-B4C01692D5B0}C:\program files\java\jre1.8.0_74\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\java.exe
FirewallRules: [{ECD0E9AD-1E50-41C1-AB61-113DFB92E867}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
05-06-2016 23:15:04 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/06/2016 12:42:16 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:42:16Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:41:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:41:46Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:41:16 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:41:16Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:40:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:40:46Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:40:16 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:40:16Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:39:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:39:46Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:39:16 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:39:16Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:38:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:38:46Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:38:16 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:38:16Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:37:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2116-05-13T10:37:46Z. Fehlercode: 0x80070005.
Systemfehler:
=============
Error: (06/06/2016 12:35:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (06/06/2016 12:35:48 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1326
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (06/06/2016 12:31:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UI Assistant Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (06/06/2016 12:31:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst UI Assistant Service erreicht.
Error: (06/06/2016 12:30:48 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147942405.
Error: (06/06/2016 12:30:48 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147942405.
Error: (06/06/2016 12:30:48 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 412) (User: NT-AUTORITÄT)
Description: Die Aufgabenplanungdienst konnte durch den Computerstart ausgelöste Aufgaben nicht starten. Zusätzliche Daten: Fehlerwert: 2147942405.
Error: (06/06/2016 12:30:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Apple Mobile Device" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (06/06/2016 12:29:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_3fe14" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (06/06/2016 12:29:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _3fe14" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2016-06-05 14:37:13.423
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-03 21:59:35.110
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-01 21:59:52.774
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-31 20:33:48.433
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-30 21:59:41.742
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-29 01:23:33.011
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-28 01:17:26.806
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-26 21:59:11.176
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-19 21:59:27.247
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-14 21:44:40.019
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 8081.21 MB
Verfügbarer physikalischer RAM: 4915.24 MB
Summe virtueller Speicher: 9361.21 MB
Verfügbarer virtueller Speicher: 5837.72 MB
==================== Laufwerke ================================
Drive c: (OS_Install) (Fixed) (Total:448.87 GB) (Free:43.52 GB) NTFS
Drive d: (Anime) (Fixed) (Total:462.54 GB) (Free:198.31 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: EE2F5E89)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
06.06.2016, 13:22
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Tabs mit Werbung öffnen sich Was ist mit meiner Frage nach bisherigen Funden und wenn es welche gab, den Logs dazu?
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
06.06.2016, 13:47
| #6 |
| | Tabs mit Werbung öffnen sich Ich hätte noch was vom adwcleaner Code:
ATTFilter # AdwCleaner v5.119 - Bericht erstellt am 06/06/2016 um 11:37:31
# Aktualisiert am 30/05/2016 von Xplode
# Datenbank : 2016-06-03.1 [Server]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Janine - JANINE
# Gestartet von : C:\Users\Janine\Downloads\adwcleaner_5.119.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht : C:\Users\Janine\AppData\Roaming\RPEng
[-] Ordner gelöscht : C:\Users\Janine\AppData\Local\CrashRpt
[-] Ordner gelöscht : C:\Users\Janine\AppData\Local\com
***** [ Dateien ] *****
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_de.anisearch.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_de.anisearch.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.anisearch.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.anisearch.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_uebersetzer.babylon.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_uebersetzer.babylon.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.anisearch.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.anisearch.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.anisearch.de_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.anisearch.de_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.movshare.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.movshare.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.veoh.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.veoh.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.watch4.de_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.watch4.de_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.watch4kfilm.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.watch4kfilm.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Dokomi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Record\{425E7597-03A2-338D-B72A-0E51FFE77A7E}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Record\{915BB7D5-082E-3B91-B1E0-45B5FDE01F24}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Record\{2009AF2F-5786-3067-8799-B97F7832FDD6}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Record\{FB2E65F4-5687-33EF-9BBF-4E3C9C98D3B9}
[-] Wert gelöscht : HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION [HDvid Codec V1-bg.exe]
[-] Wert gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{b64d9b05-48e1-4ceb-bf58-e0643994e900}]
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
[-] Wert gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Wert gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{58124A0B-DC32-4180-9BFF-E0E21AE34026}]
[-] Wert gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
[-] Wert gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}]
[-] Schlüssel gelöscht : HKCU\Software\Reg\Clean
[-] Schlüssel gelöscht : HKCU\Software\Mail.Ru
[-] Schlüssel gelöscht : HKCU\Software\AppDataLow\Software\re-markit
[-] Schlüssel gelöscht : HKCU\Software\AppDataLow\Software\Mail.Ru
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Reg\Clean
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Mail.Ru
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\1ClickMovie-Download V9.0
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-705900732-3080402841-1693879770-1002\Software\SweetIM
[-] Schlüssel gelöscht : HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\1ClickMovie-Download V9.0
[-] Schlüssel gelöscht : HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Crossrider
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3038A20B9089EC34D8F74220191FAB30
[-] Wert gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{3969CD54-C03C-4F15-A4B8-1AB9693694CE}]
[-] Wert gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{23FADAF4-113E-43AC-9D18-8D99A58F97BB}]
[-] Wert gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{E04F7867-B9D5-490A-8AA7-B141FAF45384}]
[-] Wert gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{F19369EF-72EB-4736-958B-8B7160B866D4}]
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[-] Wert gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [ApnTBMon]
[-] Wert gelöscht : HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [NTRedirect]
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [10635 Bytes] - [06/06/2016 11:37:31]
C:\AdwCleaner\AdwCleaner[R0].txt - [47465 Bytes] - [23/04/2015 17:19:52]
C:\AdwCleaner\AdwCleaner[R1].txt - [5263 Bytes] - [23/04/2015 17:33:24]
C:\AdwCleaner\AdwCleaner[R2].txt - [5322 Bytes] - [23/04/2015 17:34:27]
C:\AdwCleaner\AdwCleaner[R3].txt - [4850 Bytes] - [24/04/2015 16:46:10]
C:\AdwCleaner\AdwCleaner[S0].txt - [24090 Bytes] - [23/04/2015 17:21:40]
C:\AdwCleaner\AdwCleaner[S1].txt - [16077 Bytes] - [24/04/2015 16:47:24]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [11150 Bytes] ##########
Code:
ATTFilter # AdwCleaner v5.119 - Bericht erstellt am 06/06/2016 um 12:29:16
# Aktualisiert am 30/05/2016 von Xplode
# Datenbank : 2016-06-03.1 [Server]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Janine - JANINE
# Gestartet von : C:\Users\Janine\Downloads\adwcleaner_5.119.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage-journal
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [11270 Bytes] - [06/06/2016 11:37:31]
C:\AdwCleaner\AdwCleaner[C2].txt - [2819 Bytes] - [06/06/2016 12:29:16]
C:\AdwCleaner\AdwCleaner[R0].txt - [47465 Bytes] - [23/04/2015 17:19:52]
C:\AdwCleaner\AdwCleaner[R1].txt - [5263 Bytes] - [23/04/2015 17:33:24]
C:\AdwCleaner\AdwCleaner[R2].txt - [5322 Bytes] - [23/04/2015 17:34:27]
C:\AdwCleaner\AdwCleaner[R3].txt - [4850 Bytes] - [24/04/2015 16:46:10]
C:\AdwCleaner\AdwCleaner[S0].txt - [24090 Bytes] - [23/04/2015 17:21:40]
C:\AdwCleaner\AdwCleaner[S1].txt - [16077 Bytes] - [24/04/2015 16:47:24]
C:\AdwCleaner\AdwCleaner[S2].txt - [3095 Bytes] - [06/06/2016 12:26:10]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [3406 Bytes] ##########
|
|
06.06.2016, 13:50
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Tabs mit Werbung öffnen sich Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.06.2016, 14:09
| #8 |
| | Tabs mit Werbung öffnen sich Ich habe Avira deinstalliert |
|
06.06.2016, 16:28
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Tabs mit Werbung öffnen sich Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.06.2016, 18:27
| #10 |
| | Tabs mit Werbung öffnen sich Ich habe das genannte Programm heruntergeladen und auch den Clean Up gemacht. Beim zweiten Starten des Programms und anschließenden Scannens wurde nichts mehr gefunden. nach dem 1. Scan Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.06.06.04
rootkit: v2016.05.27.01
Windows 10 x64 NTFS
Internet Explorer 11.306.10586.0
Janine :: JANINE [administrator]
06.06.2016 17:33:31
mbar-log-2016-06-06 (17-33-31).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 433053
Time elapsed: 50 minute(s), 5 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\Windows\System32\drivers\Msft_Kernel_webinstr_01009.Wdf (PUP.Optional.WebInstr) -> Delete on reboot. []
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.06.06.05
rootkit: v2016.05.27.01
Windows 10 x64 NTFS
Internet Explorer 11.306.10586.0
Janine :: JANINE [administrator]
06.06.2016 18:34:40
mbar-log-2016-06-06 (18-34-40).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 433250
Time elapsed: 45 minute(s), 38 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
|
|
06.06.2016, 22:02
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Tabs mit Werbung öffnen sich Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.06.2016, 05:20
| #12 |
| | Tabs mit Werbung öffnen sich AdwCleaner Code:
ATTFilter # AdwCleaner v5.119 - Bericht erstellt am 07/06/2016 um 06:06:27
# Aktualisiert am 30/05/2016 von Xplode
# Datenbank : 2016-06-06.1 [Server]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Janine - JANINE
# Gestartet von : C:\Users\Janine\Desktop\AdwCleaner_5.119.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage-journal
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.anisearch.de_0.localstorage
[-] Datei gelöscht : C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.anisearch.de_0.localstorage-journal
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0002DF01-0000-0000-C000-000000000046}
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [3363 Bytes] - [07/06/2016 06:06:27]
C:\AdwCleaner\AdwCleaner[S1].txt - [3206 Bytes] - [07/06/2016 06:04:23]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3509 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 10 Home x64
Ran by Janine (Administrator) on 07.06.2016 at 6:15:16,63
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 1
Successfully deleted: C:\Users\Janine\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\hdvc3@hdvidcodec.com.xpi (File)
Registry: 4
Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_860360592AC846D552AC557A11FF1366 (Registry Value)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\fst_de_167 (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F1FD7556-6413-47D0-9B6B-2073C2FF6890} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07.06.2016 at 6:17:59,21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
07.06.2016, 09:50
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Tabs mit Werbung öffnen sich Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.06.2016, 11:04
| #14 |
| | Tabs mit Werbung öffnen sichCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:06-06-2016
durchgeführt von Janine (Administrator) auf JANINE (07-06-2016 12:00:24)
Gestartet von C:\Users\Janine\Desktop
Geladene Profile: Janine (Verfügbare Profile: UpdatusUser & Janine & Dokomi)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(Paltiosoft Inc.) C:\Program Files (x86)\SoftDenchi\UCManSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3347688 2015-09-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174328 2015-10-01] (Realtek Semiconductor)
HKLM\...\Run: [Radio Manager] => C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2012-12-03] (MSI)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [406432 2012-12-03] (MSI)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-02] (Intel Corporation)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [UIExec] => C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe [153424 2011-08-25] ()
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1298504 2014-11-08] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [454248 2013-08-02] (CANON INC.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2086240 2015-04-28] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [BitTorrent] => C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe [1972232 2016-05-20] (BitTorrent Inc.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Amazon Music] => C:\Users\Janine\AppData\Local\Amazon Music\Amazon Music Helper.exe [6277952 2014-11-19] ()
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Dropbox Update] => C:\Users\Janine\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-22] (Dropbox, Inc.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Spotify Web Helper] => C:\Users\Janine\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-06-01] (Spotify Ltd)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [Spotify] => C:\Users\Janine\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-06-01] (Spotify Ltd)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8721624 2016-05-13] (Piriform Ltd)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\MountPoints2: {dd706713-a7f5-11e5-bfdd-0cd2922b27bb} - "G:\OnePlus_setup.exe" /s
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\MountPoints2: {f7130f6f-e8e7-11e5-bfe6-0cd2922b27bb} - "G:\OnePlus_setup.exe" /s
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [805888 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-05-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS PC Sound.lnk [2013-02-27]
ShortcutTarget: SRS PC Sound.lnk -> C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
Startup: C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2016-03-09]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-06-03]
ShortcutTarget: Dropbox.lnk -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{118a6730-97df-45a9-a121-6d5d0adb72d3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{402b29aa-aa22-4b4c-90b5-60be6febe7b2}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{82e541ba-6756-4678-a30c-d8d4856b3546}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{d54ed115-c805-40a6-b545-60c86c8593ec}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F5FB33AC-8982-4FED-9781-91D4A54F8234}: [NameServer] 139.7.30.126 139.7.30.125
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-705900732-3080402841-1693879770-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-06] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-06] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL => Keine Datei
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-06-15] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - Keine Datei
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [2014-02-17] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-08-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [2014-02-17] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2014-07-28] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-27] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-27] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-03] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-06-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com => nicht gefunden
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\pdf.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Profile: C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YoBookmarks) - C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgnaagbkdmcfdpbedkpgakhpnbkmokpf [2016-06-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Janine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2016-03-09] (Adobe Systems) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3009264 2016-05-17] (Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-10-29] (Digital Wave Ltd.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144104 2015-09-04] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2013-02-27] (Intel Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2012-12-03] (Micro-Star International Co., Ltd.) [Datei ist nicht signiert]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI) [Datei ist nicht signiert]
R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-15] (Electronic Arts)
R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [315648 2015-10-01] (Realtek Semiconductor)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2015-09-04] () [Datei ist nicht signiert]
R2 UCManSvc; C:\Program Files (x86)\SoftDenchi\UCManSvc.exe [241808 2010-03-12] (Paltiosoft Inc.) [Datei ist nicht signiert]
S2 UI Assistant Service; C:\Program Files (x86)\1&1 Surf-Stick\AssistantServices.exe [270672 2011-08-25] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 cleanhlp; C:\EEK\RUN\cleanhlp64.sys [57024 2014-03-07] (Emsisoft GmbH)
S3 ipadtst; C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [19952 2013-02-01] (Windows (R) Win 7 DDK provider)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-07 12:00 - 2016-06-07 12:00 - 00000000 ____D C:\Users\Janine\Desktop\FRST-OlderVersion
2016-06-07 06:17 - 2016-06-07 06:17 - 00001176 _____ C:\Users\Janine\Desktop\JRT.txt
2016-06-07 06:14 - 2016-06-07 06:15 - 01610816 _____ (Malwarebytes) C:\Users\Janine\Desktop\JRT.exe
2016-06-07 06:01 - 2016-06-07 06:03 - 03677248 _____ C:\Users\Janine\Desktop\AdwCleaner_5.119.exe
2016-06-06 18:29 - 2016-06-07 06:09 - 00000000 ____D C:\Users\Janine\AppData\LocalLow\BitTorrent
2016-06-06 17:33 - 2016-06-07 06:07 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-06-06 17:33 - 2016-06-06 18:34 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-06-06 17:33 - 2016-06-06 17:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-06-06 17:32 - 2016-06-06 19:21 - 00000000 ____D C:\Users\Janine\Desktop\mbar
2016-06-06 17:32 - 2016-06-06 18:34 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-06-06 17:30 - 2016-06-06 17:31 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Janine\Desktop\mbar-1.09.3.1001.exe
2016-06-06 14:53 - 2016-06-07 12:01 - 00024807 _____ C:\Users\Janine\Desktop\FRST.txt
2016-06-06 14:53 - 2016-06-06 14:53 - 00072683 _____ C:\Users\Janine\Desktop\Addition.txt
2016-06-06 12:42 - 2016-06-06 12:43 - 00072683 _____ C:\Users\Janine\Downloads\Addition.txt
2016-06-06 12:41 - 2016-06-06 12:43 - 00082049 _____ C:\Users\Janine\Downloads\FRST.txt
2016-06-06 12:40 - 2016-06-07 12:00 - 02385408 _____ (Farbar) C:\Users\Janine\Desktop\FRST64.exe
2016-06-06 12:40 - 2016-06-07 12:00 - 00000000 ____D C:\FRST
2016-06-06 11:46 - 2016-04-22 09:57 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-06 11:36 - 2016-06-06 11:36 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-06 11:36 - 2016-06-06 11:36 - 00000873 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-06-06 11:36 - 2016-06-06 11:36 - 00000000 ____D C:\Program Files\CCleaner
2016-06-05 10:36 - 2016-06-05 10:38 - 446439080 _____ C:\Users\Janine\Downloads\[KaHo] Netoge no Yome wa Onnanoko ja Nai to Omotta 02 [TV 720P H264 AAC].mp4
2016-06-05 04:02 - 2016-06-05 04:05 - 418225287 _____ C:\Users\Janine\Downloads\[KaHo] Netoge no Yome wa Onnanoko ja Nai to Omotta 01 [TV 720P H264 AAC].mp4
2016-06-05 00:46 - 2016-06-05 00:55 - 733181800 ____R C:\Users\Janine\Downloads\[SHFS] Super Lovers - 08 (10bit, 720p, x264, AAC)[B872CBBF].mkv
2016-06-05 00:46 - 2016-06-05 00:55 - 669287607 ____R C:\Users\Janine\Downloads\[SHFS] Super Lovers - 07 (10bit, 720p, x264, AAC)[428C57D7].mkv
2016-06-05 00:46 - 2016-06-05 00:48 - 204715534 _____ C:\Users\Janine\Downloads\[SHFS] Owari no Seraph - OAD (DVD, 10bit, x264, AC3, 480p)[A6BC243E].mkv
2016-06-05 00:45 - 2016-06-05 00:45 - 00015893 _____ C:\Users\Janine\Downloads\[SHFS] Owari no Seraph - OAD (DVD, 10bit, x264, AC3, 480p)[A6BC243E].mkv.torrent
2016-06-05 00:45 - 2016-06-05 00:45 - 00014265 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 08 (10bit, 720p, x264, AAC)[B872CBBF].mkv.torrent
2016-06-05 00:45 - 2016-06-05 00:45 - 00013045 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 07 (10bit, 720p, x264, AAC)[428C57D7].mkv.torrent
2016-06-03 23:14 - 2016-06-03 23:14 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-06-03 21:32 - 2016-06-03 22:00 - 125829120 _____ C:\Users\Janine\Downloads\Shokugeki_no_Soma_Folge_4.mkv.part4.rar
2016-06-03 19:57 - 2016-06-03 20:12 - 1972701292 _____ C:\Users\Janine\Downloads\Anohana_S01_EP01_japdub_gersub_1080p_2.0.mp4
2016-06-03 14:44 - 2016-06-03 14:44 - 00524778 _____ C:\Users\Janine\Downloads\11101238 I 158 Omelett-Meister Rezeptideen.pdf
2016-06-02 20:57 - 2016-06-02 21:09 - 642854194 _____ C:\Users\Janine\Downloads\[Mirai-Fansubs] Gyakuten Saiban 01v2 [H264 720p AAC][A99DCA55].mp4
2016-06-02 20:57 - 2016-06-02 21:08 - 465928058 _____ C:\Users\Janine\Downloads\[Mirai-Fansubs] Gyakuten Saiban 03 [H264 720p AAC] [8C84B6F0].mp4
2016-06-02 20:57 - 2016-06-02 21:07 - 431544868 _____ C:\Users\Janine\Downloads\[Mirai-Fansubs] Gyakuten Saiban 02 [H264 720p AAC][46B3D459].mp4
2016-06-01 15:05 - 2016-06-01 15:05 - 00017641 _____ C:\Users\Janine\Downloads\Aleks und 85 andere.vcf
2016-05-31 09:39 - 2016-05-31 09:39 - 00025404 _____ C:\Users\Janine\Downloads\Übergabeprotokoll-Mieterwechsel.pdf
2016-05-28 19:07 - 2016-05-28 19:07 - 00434753 _____ C:\Users\Janine\Downloads\Tati_VRL_2015 (1).pdf
2016-05-26 22:56 - 2016-05-26 22:56 - 00434753 _____ C:\Users\Janine\Downloads\Tati_VRL_2015.pdf
2016-05-21 20:50 - 2016-05-21 20:51 - 00000000 ____D C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 07-12 [BD 1080p Hi10P FLAC]
2016-05-21 20:50 - 2016-05-21 20:51 - 00000000 ____D C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 01-06 [BD 1080p Hi10P FLAC]
2016-05-21 20:49 - 2016-05-21 20:49 - 00022941 _____ C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 01-06 [BD 1080p Hi10P FLAC].torrent
2016-05-21 20:49 - 2016-05-21 20:49 - 00020653 _____ C:\Users\Janine\Downloads\[Tanoshi] Watashi ga Motenai no wa Dou Kangaete mo Omaera ga Warui! (Watamote) 07-12 [BD 1080p Hi10P FLAC].torrent
2016-05-21 18:10 - 2016-05-21 18:14 - 285966647 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_06_(Hi10P)[D7B6AD63].mkv
2016-05-21 18:10 - 2016-05-21 18:14 - 231187991 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_05_(Hi10P)[8FE25FD2].mkv
2016-05-21 18:09 - 2016-05-21 18:20 - 299505013 _____ C:\Users\Janine\Downloads\[ASS]Shounen Maid - 01(1280x720 h264 AAC)[5B148728].mp4
2016-05-21 16:19 - 2016-05-21 16:21 - 237092673 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_04_(Hi10P)[BEA51FE8].mkv
2016-05-21 15:57 - 2016-05-21 15:59 - 250892130 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_03v2_(Hi10P)[CF6ECFE5].mkv
2016-05-21 15:54 - 2016-05-21 15:56 - 271651270 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_02_(Hi10P)[D71D7A41].mkv
2016-05-21 15:23 - 2016-05-21 15:25 - 250727608 _____ C:\Users\Janine\Downloads\[No]Katte_ni_Kaizou_-_01_(Hi10P)[FA141FDE].mkv
2016-05-20 02:07 - 2016-05-20 02:15 - 1280589196 _____ C:\Users\Janine\Desktop\[SN-Subs] Eve no Jikan Gekijouban [720p][x264 AAC] [799D03A8].mp4
2016-05-20 01:11 - 2016-05-20 01:26 - 2147497918 _____ C:\Users\Janine\Desktop\[SN-Subs] Eve no Jikan Gekijouban [1080p][x264 AAC] [E65702F6].mp4
2016-05-19 21:59 - 2016-05-19 22:07 - 777456162 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 06 (10bit, 720p, x264, AAC)[4F75482C].mkv
2016-05-19 21:58 - 2016-05-19 21:58 - 00015105 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 06 (10bit, 720p, x264, AAC)[4F75482C].mkv.torrent
2016-05-19 11:11 - 2016-05-19 11:11 - 00236619 _____ C:\Users\Janine\Desktop\65070447 __ Top renovierte Wohnung, Laminat, Fliesen, Bad.pdf
2016-05-19 11:09 - 2016-05-19 11:09 - 00232606 _____ C:\Users\Janine\Desktop\66775029 __ Kamen-Heeren, gepflegtes Apartment mit EBK.pdf
2016-05-19 11:07 - 2016-05-19 11:07 - 00623407 _____ C:\Users\Janine\Downloads\29UAC4S_Wohnung_zur_Miete_in_Unna_(Unna).pdf
2016-05-19 11:07 - 2016-05-19 11:07 - 00618034 _____ C:\Users\Janine\Desktop\29UAC4S_Wohnung_zur_Miete_in_Unna_(Unna).pdf
2016-05-18 19:49 - 2014-04-20 21:15 - 305687020 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 24-(720p x264 AAC)(10 Bit - Softsub).mkv
2016-05-18 19:07 - 2016-05-18 19:36 - 305687166 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 24-(720p x264 AAC)(10 Bit - Softsub).rar
2016-05-18 19:07 - 2014-04-19 08:26 - 333319775 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 23-(720p x264 AAC)(10 Bit - Softsub).mkv
2016-05-18 19:07 - 2014-04-13 16:20 - 294547776 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 22-(720p x264 AAC)(10 Bit - Softsub).mkv
2016-05-18 18:37 - 2016-05-18 19:05 - 333319918 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 23-(720p x264 AAC)(10 Bit - Softsub).rar
2016-05-18 18:01 - 2016-05-18 18:26 - 294547918 _____ C:\Users\Janine\Downloads\[YinYang-Subs]Tokyo Ravens - 22-(720p x264 AAC)(10 Bit - Softsub).rar
2016-05-18 09:10 - 2016-05-18 09:10 - 00010602 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (10bit, 720p, x264, AAC)[4063B7F3].mkv.torrent
2016-05-17 22:19 - 2016-05-17 22:28 - 524943184 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 12 (1280x720 H264 AAC 10-Bit)[10892FE8].mkv
2016-05-17 22:19 - 2016-05-17 22:27 - 347429610 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 13v2 (1280x720 H264 AAC 10-Bit)[6B8A8EF3].mkv
2016-05-17 22:19 - 2016-05-17 22:27 - 314200127 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 11v2 (1280x720 H264 AAC 10Bit)[2122AE23].mp4
2016-05-17 22:19 - 2016-05-17 22:26 - 255371051 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 10 (1280x720 H264 AAC 10Bit)[E8B8C076].mp4
2016-05-17 22:18 - 2016-05-17 22:25 - 206336130 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 09 (1280x720 H264 AAC 10Bit)[692845E8].mp4
2016-05-17 22:13 - 2016-05-17 22:18 - 541664350 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (10bit, 720p, x264, AAC).mkv
2016-05-17 22:13 - 2016-05-17 22:13 - 00013701 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 04 (8bit, 720p, x264, AAC)[0A14A321].mkv.torrent
2016-05-17 22:13 - 2016-05-17 22:13 - 00013322 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 04 (10bit, 720p, x264, AAC)[D9C6B79F].mkv.torrent
2016-05-17 22:13 - 2016-05-17 22:13 - 00010911 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (8bit, 720p, x264, AAC).mkv.torrent
2016-05-17 22:12 - 2016-05-17 22:12 - 00010592 _____ C:\Users\Janine\Downloads\[SHFS] Big Order - 05 (10bit, 720p, x264, AAC).mkv.torrent
2016-05-17 10:10 - 2016-05-17 10:10 - 01092447 _____ C:\Users\Janine\Desktop\Alg II Anlage KDU.pdf
2016-05-17 10:08 - 2016-05-17 10:08 - 00779974 _____ C:\Users\Janine\Desktop\Alg II Hauptantrag.pdf
2016-05-17 10:06 - 2016-05-17 10:06 - 00091292 _____ C:\Users\Janine\Desktop\Sparkasse UnnaKamen (44350060) - Finanzstatus.pdf
2016-05-17 10:02 - 2016-05-17 10:02 - 00056920 _____ C:\Users\Janine\Desktop\Konto_1000276293-Auszug_2016_003.pdf
2016-05-17 10:02 - 2016-05-17 10:02 - 00053264 _____ C:\Users\Janine\Desktop\Konto_1000276293-Auszug_2016_002.pdf
2016-05-17 10:02 - 2016-05-17 10:02 - 00053178 _____ C:\Users\Janine\Desktop\Konto_1000276293-Auszug_2016_004.pdf
2016-05-17 09:48 - 2016-05-17 09:48 - 00000458 _____ C:\Users\Janine\Downloads\20160517-1000276293-umsatz.csv
2016-05-17 09:47 - 2016-05-17 09:47 - 00108740 _____ C:\Users\Janine\Downloads\Bedingungen_fuer_die_Nutzung_des_Elektronischen_Postfachs.PDF
2016-05-17 09:47 - 2016-05-17 09:47 - 00057963 _____ C:\Users\Janine\Downloads\Konto_1000276293-Auszug_2016_002.PDF
2016-05-17 09:46 - 2016-05-17 09:46 - 00061618 _____ C:\Users\Janine\Downloads\Konto_1000276293-Auszug_2016_003.PDF
2016-05-17 09:46 - 2016-05-17 09:46 - 00057882 _____ C:\Users\Janine\Downloads\Konto_1000276293-Auszug_2016_004.PDF
2016-05-17 00:38 - 2016-05-17 00:45 - 343032182 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 07 (1280x720 H264 AAC 10Bit)[17839CA2].mp4
2016-05-17 00:38 - 2016-05-17 00:44 - 295568400 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 08 (1280x720 H264 AAC 10Bit)[4464DD93].mp4
2016-05-17 00:38 - 2016-05-17 00:43 - 237082735 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 06 (1280x720 H264 AAC 10Bit)[FCFB8428].mp4
2016-05-16 23:28 - 2016-05-16 23:34 - 284522157 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 04 (1280x720 H264 AAC 10Bit)[0D8A65EE].mp4
2016-05-16 23:28 - 2016-05-16 23:34 - 246933825 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 03 (1280x720 H264 AAC 10Bit)[EFB89B9E].mp4
2016-05-16 23:28 - 2016-05-16 23:33 - 197420905 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 05 (1280x720 H264 AAC 10Bit)[16DC0905].mp4
2016-05-16 23:28 - 2016-05-16 23:33 - 192329853 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 02 (1280x720 H264 AAC 10Bit)[50CD942F].mp4
2016-05-16 23:27 - 2016-05-16 23:28 - 180190853 _____ C:\Users\Janine\Downloads\[Riku] Campione! - 01 (1280x720 H264 AAC 10Bit)[062E65E1].mp4
2016-05-16 18:32 - 2016-05-16 18:36 - 229547811 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_15_HD_10BIT_V2.mkv
2016-05-16 18:32 - 2016-05-16 18:36 - 202068313 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_16_HD_10BIT_V2.mkv
2016-05-16 18:32 - 2016-05-16 18:36 - 198272002 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_17_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:52 - 248270231 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_14_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:51 - 284723046 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_10_HD_10BIT.mkv
2016-05-16 16:44 - 2016-05-16 16:51 - 240669610 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_12_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:51 - 223226265 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_11_HD_10BIT_V2.mkv
2016-05-16 16:44 - 2016-05-16 16:50 - 195227815 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_13_HD_10BIT.mkv
2016-05-16 05:21 - 2016-05-16 05:27 - 998185889 _____ C:\Users\Janine\Downloads\[M-L]Ano Natsu de Matteru - E01 - OVA [Hi10P FLAC 1080p BD][1EFD7A76].mkv
2016-05-15 23:45 - 2016-05-15 23:48 - 203616354 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_09_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:46 - 230349049 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_08_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:46 - 225271473 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_07_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:45 - 211907554 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_06_HD_10BIT.mkv
2016-05-15 23:40 - 2016-05-15 23:45 - 210172628 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_05_HD_10BIT.mkv
2016-05-15 23:27 - 2016-05-15 23:33 - 254714526 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_03_HD_10BIT.mkv
2016-05-15 23:27 - 2016-05-15 23:33 - 227839796 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_04_HD_10BIT.mkv
2016-05-15 23:26 - 2016-05-15 23:33 - 311525508 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_02_HD.mp4
2016-05-15 23:26 - 2016-05-15 23:31 - 212231877 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Kokoro_Connect_Folge_01_HD_10BIT_V3.mp4
2016-05-15 18:29 - 2016-05-15 18:44 - 00000000 ____D C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_Ga_Shitai_Ren_HD_10BIT
2016-05-15 17:48 - 2016-05-15 18:02 - 553955026 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_01_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 18:02 - 523168351 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_03_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 18:02 - 491153534 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_02_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 18:02 - 454289249 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_04_10BIT.mkv
2016-05-15 17:48 - 2016-05-15 17:59 - 386461616 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_ga_Shitai!_Ren_Folge_05_10BIT.mkv
2016-05-15 17:46 - 2016-05-15 17:46 - 00015188 _____ C:\Users\Janine\Downloads\[Chinurarete_Subs]Chuunibyou_Demo_Koi_Ga_Shitai_Ren_HD_10BIT.torrent
2016-05-15 12:46 - 2016-05-15 12:59 - 2292051544 _____ C:\Users\Janine\Downloads\Kyoukai no Kanata Movie - I'll Be Here - Mirai-hen Ger-sub.mp4
2016-05-14 17:49 - 2016-05-14 18:10 - 946606021 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E16 - Meine kleine Schwester kann unmöglich so süß sein [Hi10P FLAC 1080p BD][668CDEF8].mkv
2016-05-14 17:49 - 2016-05-14 18:09 - 847943210 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E15 - Meine kleine Schwester ist so süß [Hi10P FLAC 1080p BD][E474D34C].mkv
2016-05-14 17:49 - 2016-05-14 18:09 - 781613487 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E13 - Eine Schwester würde sich niemals in ihren Bruder verlieben! [Hi10P FLAC 1080p BD][8E9034FA].mkv
2016-05-14 17:49 - 2016-05-14 18:09 - 1046606951 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E14 - Ich könnte es ihr niemals gestehen [Hi10P FLAC 1080p BD][63286003].mkv
2016-05-14 17:30 - 2016-05-15 17:46 - 00000000 ____D C:\Users\Janine\Downloads\[M-L]Ore no Imouto Staffel 2[Hi10p FLAC 1080p BD]
2016-05-14 17:26 - 2016-05-14 17:47 - 848608477 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E10 - Meine Schwester würde niemals ein Hochzeitskleid tragen! [Hi10P FLAC 1080p BD][D1A7AACA].mkv
2016-05-14 17:26 - 2016-05-14 17:47 - 780633831 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E08 - Ich könnte niemals Erinnerungen an den Sommer mit meiner Kouhai sammeln! [Hi10P FLAC 1080p BD][FC6B5A61].mkv
2016-05-14 17:26 - 2016-05-14 17:47 - 741742085 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E12 - Eine engelsgleiche Ayase-tan würde niemals zu meiner Wohnung herabsteigen! [Hi10P FLAC 1080p BD][E23A1068].mkv
2016-05-14 17:26 - 2016-05-14 17:45 - 706189927 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E09 - Meine Schwester kann unmöglich so süß sein! [Hi10P FLAC 1080p BD][1BB3AAB5].mkv
2016-05-14 17:26 - 2016-05-14 17:44 - 601084751 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2E11 - Meine Schwester und Co. würden niemals die Einzimmerwohnung ihres Bruders besuchen! [Hi10P FLAC 1080p BD][4317AAE7].mkv
2016-05-14 17:25 - 2016-05-14 17:25 - 00061875 _____ C:\Users\Janine\Downloads\[M-L]Ore no Imouto - S2BatchTorrent [Hi10P FLAC 1080p BD][Hi10p FL].torrent
2016-05-14 01:10 - 2016-05-14 01:10 - 00023773 _____ C:\Users\Dokomi\Downloads\bab.sql
2016-05-13 10:05 - 2016-05-13 10:06 - 64519267 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 06 (1280x720 x264 AAC)[C8D25775] (1).mkv
2016-05-13 10:04 - 2016-05-13 10:06 - 68365371 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 03 (1280x720 x264 AAC)[C6E5F7E9] (1).mkv
2016-05-13 09:51 - 2016-05-13 09:52 - 63516531 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 05 (1280x720 x264 AAC)[DA72C277].mkv
2016-05-13 09:51 - 2016-05-13 09:51 - 00000000 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 06 (1280x720 x264 AAC)[C8D25775].mkv
2016-05-13 09:50 - 2016-05-13 09:52 - 73298674 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 04 (1280x720 x264 AAC)[4DCC25B7].mkv
2016-05-13 09:50 - 2016-05-13 09:50 - 00000000 _____ C:\Users\Janine\Downloads\[ASS]Koitabi - True Tours Nanto - 03 (1280x720 x264 AAC)[C6E5F7E9].mkv
2016-05-13 09:49 - 2016-05-13 09:51 - 57533221 _____ C:\Users\Janine\Downloads\[ASS-HIS] Koitabi - True Tours Nanto - 02 (1280x720 H264 AAC)[DA062C27].mkv
2016-05-13 09:49 - 2016-05-13 09:50 - 66128762 _____ C:\Users\Janine\Downloads\[ASS-HIS] Koitabi - True Tours Nanto - 01 (1280x720 H264 AAC)[1EB75AE2].mkv
2016-05-12 23:57 - 2016-05-13 00:02 - 627261716 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 05 (10bit, 720p, x264, AAC)[07C3D232].mkv
2016-05-12 23:57 - 2016-05-12 23:57 - 00012245 _____ C:\Users\Janine\Downloads\[SHFS] Super Lovers - 05 (10bit, 720p, x264, AAC)[07C3D232].mkv.torrent
2016-05-10 22:32 - 2016-04-30 08:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-10 22:32 - 2016-04-30 08:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-10 22:32 - 2016-04-23 08:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-05-10 22:32 - 2016-04-23 08:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-05-10 22:32 - 2016-04-23 08:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-10 22:32 - 2016-04-23 07:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-05-10 22:32 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-05-10 22:32 - 2016-04-23 07:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-10 22:32 - 2016-04-23 07:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-05-10 22:32 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-10 22:32 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-05-10 22:32 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-05-10 22:32 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-05-10 22:32 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-05-10 22:32 - 2016-04-23 07:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-10 22:32 - 2016-04-23 07:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-10 22:32 - 2016-04-23 07:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-10 22:32 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-05-10 22:32 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-05-10 22:32 - 2016-04-23 07:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-05-10 22:32 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-05-10 22:32 - 2016-04-23 07:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-05-10 22:32 - 2016-04-23 07:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-05-10 22:32 - 2016-04-23 07:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-05-10 22:32 - 2016-04-23 07:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-05-10 22:32 - 2016-04-23 07:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-10 22:32 - 2016-04-23 07:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-05-10 22:32 - 2016-04-23 07:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-05-10 22:32 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-05-10 22:32 - 2016-04-23 07:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-10 22:32 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-05-10 22:32 - 2016-04-23 07:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-05-10 22:32 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-05-10 22:32 - 2016-04-23 06:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-05-10 22:32 - 2016-04-23 06:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-10 22:32 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-05-10 22:32 - 2016-04-23 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-05-10 22:32 - 2016-04-23 06:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-10 22:32 - 2016-04-23 06:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-10 22:32 - 2016-04-23 06:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-05-10 22:32 - 2016-04-23 06:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-10 22:32 - 2016-04-23 06:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-05-10 22:32 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-05-10 22:32 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-05-10 22:32 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-05-10 22:32 - 2016-04-23 06:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-05-10 22:32 - 2016-04-23 06:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-05-10 22:32 - 2016-04-23 06:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-05-10 22:32 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-05-10 22:32 - 2016-04-23 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-05-10 22:32 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-10 22:32 - 2016-04-23 06:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-05-10 22:32 - 2016-04-23 06:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-05-10 22:32 - 2016-04-23 06:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-05-10 22:32 - 2016-04-23 06:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-05-10 22:32 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-05-10 22:32 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-05-10 22:32 - 2016-04-23 06:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-05-10 22:32 - 2016-04-23 06:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-10 22:32 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-05-10 22:32 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-10 22:32 - 2016-04-23 06:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-05-10 22:32 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-10 22:32 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-05-10 22:32 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-05-10 22:32 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-05-10 22:32 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-05-10 22:32 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-05-10 22:32 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-05-10 22:32 - 2016-04-23 06:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-10 22:32 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-05-10 22:32 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-05-10 22:32 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-05-10 22:32 - 2016-04-23 06:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-10 22:32 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-05-10 22:32 - 2016-04-23 06:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-05-10 22:32 - 2016-04-23 06:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-05-10 22:32 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-05-10 22:32 - 2016-04-23 06:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-05-10 22:32 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-05-10 22:32 - 2016-04-23 06:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-10 22:32 - 2016-04-23 06:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-05-10 22:32 - 2016-04-23 06:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-10 22:32 - 2016-04-23 06:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-10 22:32 - 2016-04-23 04:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-05-10 22:31 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-05-10 22:31 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-05-10 22:31 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-05-10 22:31 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-05-10 22:31 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-10 22:31 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-05-10 22:31 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-05-10 22:31 - 2016-05-06 05:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-10 22:31 - 2016-04-23 08:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-05-10 22:31 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-05-10 22:31 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-05-10 22:31 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-10 22:31 - 2016-04-23 07:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-05-10 22:31 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-10 22:31 - 2016-04-23 07:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-05-10 22:31 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-05-10 22:31 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-05-10 22:31 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-05-10 22:31 - 2016-04-23 07:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-10 22:31 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-05-10 22:31 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-05-10 22:31 - 2016-04-23 07:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-05-10 22:31 - 2016-04-23 07:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-05-10 22:31 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-05-10 22:31 - 2016-04-23 07:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-10 22:31 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-05-10 22:31 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-05-10 22:31 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-05-10 22:31 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-05-10 22:31 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-05-10 22:31 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-05-10 22:31 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-10 22:31 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-05-10 22:31 - 2016-04-23 07:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-05-10 22:31 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-05-10 22:31 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-05-10 22:31 - 2016-04-23 06:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-05-10 22:31 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-05-10 22:31 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-05-10 22:31 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-05-10 22:31 - 2016-04-23 06:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-10 22:31 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-05-10 22:31 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-05-10 22:31 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-10 22:31 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-05-10 22:31 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-10 22:31 - 2016-04-23 06:30 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-05-10 22:31 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-05-10 22:31 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-10 22:31 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-05-10 22:31 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-05-10 22:31 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-05-10 22:31 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-05-10 22:31 - 2016-04-23 06:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-05-10 22:31 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-05-10 22:31 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-10 22:31 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-05-10 22:31 - 2016-04-23 06:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-05-10 22:31 - 2016-04-23 06:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-05-10 22:31 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-10 22:31 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-05-10 22:31 - 2016-04-23 06:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-10 22:31 - 2016-04-23 06:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-10 22:31 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-05-10 22:31 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-05-10 22:31 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-05-10 22:31 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-05-10 22:31 - 2016-04-23 06:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-05-10 22:31 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-05-10 22:31 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-05-10 22:31 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-05-10 22:31 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-05-10 22:31 - 2016-04-23 06:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-05-10 22:31 - 2016-04-23 06:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-05-10 22:31 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-05-10 22:31 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-05-10 22:31 - 2016-04-23 06:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-05-10 22:31 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-05-10 22:31 - 2016-04-23 04:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-05-10 22:31 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-05-09 23:46 - 2016-05-09 23:47 - 00000000 ____D C:\Users\Janine\Downloads\Air
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-07 11:37 - 2013-08-20 22:09 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-07 11:35 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-07 11:25 - 2015-10-30 20:35 - 00777804 _____ C:\WINDOWS\system32\perfh007.dat
2016-06-07 11:25 - 2015-10-30 20:35 - 00156080 _____ C:\WINDOWS\system32\perfc007.dat
2016-06-07 11:25 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-07 11:25 - 2015-09-04 09:55 - 01802588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-07 11:06 - 2014-02-17 01:38 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-07 06:15 - 2013-08-21 09:09 - 00000000 ____D C:\Users\Janine\AppData\Roaming\BitTorrent
2016-06-07 06:13 - 2015-06-22 22:21 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Skype
2016-06-07 06:13 - 2013-12-28 16:10 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{83C61FC1-2D8F-4E49-92D8-6BC45DACCCB0}
2016-06-07 06:12 - 2013-08-26 11:48 - 00000000 ___RD C:\Users\Janine\Dropbox
2016-06-07 06:11 - 2016-04-08 15:17 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Spotify
2016-06-07 06:10 - 2016-04-08 15:18 - 00000000 ____D C:\Users\Janine\AppData\Local\Spotify
2016-06-07 06:09 - 2015-12-26 01:06 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-07 06:09 - 2015-09-04 10:10 - 00000000 __SHD C:\Users\Janine\IntelGraphicsProfiles
2016-06-07 06:08 - 2015-12-07 06:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-07 06:07 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-06-07 06:06 - 2015-04-23 17:19 - 00000000 ____D C:\AdwCleaner
2016-06-07 05:30 - 2013-08-25 23:47 - 09574912 ___SH C:\Users\Janine\Downloads\Thumbs.db
2016-06-06 19:40 - 2013-08-20 22:37 - 00000000 ____D C:\Users\Janine\AppData\Roaming\vlc
2016-06-06 18:27 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-06-06 15:08 - 2013-08-21 08:35 - 00000000 ___RD C:\Users\Janine\Desktop\Verknüpfungen
2016-06-06 14:56 - 2013-10-15 15:42 - 00000000 ____D C:\Program Files (x86)\Avira
2016-06-06 14:55 - 2013-10-15 15:42 - 00000000 ____D C:\ProgramData\Avira
2016-06-06 12:29 - 2015-10-24 17:20 - 00000000 ____D C:\Users\Janine\Desktop\Anime Zitate
2016-06-06 12:29 - 2015-09-04 18:24 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-06-06 11:54 - 2015-12-07 06:16 - 00000000 ___DC C:\WINDOWS\Panther
2016-06-06 11:32 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-06 02:21 - 2015-09-15 12:05 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-06-06 01:41 - 2014-04-21 20:34 - 00042585 _____ C:\Users\Janine\Desktop\Manga Liste.ods
2016-06-03 23:14 - 2013-08-26 11:45 - 00000000 ____D C:\Users\Janine\AppData\Roaming\Dropbox
2016-05-31 09:48 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-31 09:47 - 2015-06-15 22:45 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-31 09:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-05-24 02:45 - 2014-08-09 23:53 - 00009282 _____ C:\Users\Janine\Desktop\Unbenannt 1.odt
2016-05-23 23:51 - 2015-09-04 10:16 - 00002434 _____ C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-05-23 23:51 - 2013-11-26 16:57 - 00000000 __RDO C:\Users\Janine\SkyDrive
2016-05-20 12:06 - 2015-12-07 06:25 - 00000000 ____D C:\Users\Janine
2016-05-18 22:40 - 2016-04-30 07:57 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{42A9A5F2-45F7-460C-8182-E460AF62F668}
2016-05-15 04:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-14 21:30 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-14 17:18 - 2013-08-21 13:47 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-05-14 17:16 - 2016-04-30 07:21 - 00000000 __SHD C:\Users\Dokomi\IntelGraphicsProfiles
2016-05-14 01:13 - 2015-10-30 20:44 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-14 01:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-14 01:11 - 2016-04-30 07:21 - 00000000 ____D C:\Users\Dokomi\AppData\Local\Packages
2016-05-14 01:03 - 2016-04-30 07:23 - 00000000 ____D C:\Users\Dokomi\AppData\Roaming\Canon
2016-05-13 11:38 - 2015-06-22 19:12 - 00000000 ____D C:\Users\Janine\AppData\Local\Dropbox
2016-05-13 11:04 - 2015-10-30 09:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-05-13 11:01 - 2013-08-24 22:16 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-13 10:44 - 2013-08-24 22:16 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-13 08:51 - 2013-09-02 12:05 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-05-13 00:38 - 2013-08-20 22:10 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-12 23:52 - 2014-12-26 15:16 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-05-11 21:57 - 2015-12-10 04:37 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-05-11 21:57 - 2015-12-10 04:37 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-10 22:32 - 2013-08-20 22:09 - 00004190 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-10 22:32 - 2013-08-20 22:09 - 00003958 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-10 22:32 - 2013-08-20 22:09 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-08 16:07 - 2015-05-25 21:39 - 00021430 _____ C:\Users\Janine\Desktop\Animes.ods
2016-05-08 10:26 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-08 10:26 - 2015-06-15 22:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-10-08 10:50 - 2014-11-11 22:51 - 0000096 _____ () C:\Users\Janine\AppData\Roaming\WB.CFG
Einige Dateien in TEMP:
====================
C:\Users\Dokomi\AppData\Local\Temp\avgnt.exe
C:\Users\Janine\AppData\Local\Temp\libeay32.dll
C:\Users\Janine\AppData\Local\Temp\msvcr120.dll
C:\Users\Janine\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-06-04 17:06
==================== Ende von FRST.txt ============================
|
|
07.06.2016, 11:05
| #15 |
| | Tabs mit Werbung öffnen sichCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:06-06-2016
durchgeführt von Janine (2016-06-07 12:02:15)
Gestartet von C:\Users\Janine\Desktop
Windows 10 Home Version 1511 (X64) (2015-12-07 04:58:52)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-705900732-3080402841-1693879770-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-705900732-3080402841-1693879770-503 - Limited - Disabled)
Dokomi (S-1-5-21-705900732-3080402841-1693879770-1007 - Limited - Enabled) => C:\Users\Dokomi
Gast (S-1-5-21-705900732-3080402841-1693879770-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-705900732-3080402841-1693879770-1006 - Limited - Enabled)
Janine (S-1-5-21-705900732-3080402841-1693879770-1002 - Administrator - Enabled) => C:\Users\Janine
UpdatusUser (S-1-5-21-705900732-3080402841-1693879770-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
„Windows Live Essentials“ (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
1&1 Surf-Stick (HKLM-x32\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.2 - )
Adobe After Effects 7.0 (HKLM-x32\...\Adobe After Effects 7.0) (Version: 7.0.0.244 - Adobe Systems, Inc.)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
Amazon Music (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Amazon Amazon Music) (Version: 3.7.0.693 - Amazon Services LLC)
Amnesia™: Memories (HKLM-x32\...\Steam App 359390) (Version: - Idea Factory)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1208.0301 - Micro-Star International Co., Ltd.)
BitTorrent (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\BitTorrent) (Version: 7.9.7.42331 - BitTorrent Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 4.0.1212.1401 - Micro-Star International Co., Ltd.)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.5.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.1.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.4.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.5.14 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon Kurzwahlprogramm (HKLM-x32\...\Speed Dial Utility) (Version: 1.6.0 - Canon Inc.)
Canon MX470 series Benutzerregistrierung (HKLM-x32\...\Canon MX470 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MX470 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX470_series) (Version: 1.00 - Canon Inc.)
Canon MX470 series On-screen Manual (HKLM-x32\...\Canon MX470 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.2.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.2.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.6.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Dropbox (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.)
ELAN Touchpad 15.13.1.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.13.1.1 - ELAN Microelectronic Corp.)
Fotoattēlu galerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotografias (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
HDvid Codec V1 (HKLM-x32\...\HDvid Codec V1) (Version: 1.27.153.8 - installdaddy) <==== ACHTUNG
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KB9X Radio Switch Driver (HKLM\...\B16388B2E5D3CBA8F0EE88A8C5459BADAF4DE251) (Version: 1.0.7112.20593 - ENE TECHNOLOGY INC.)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4823.1004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Norton PC Checkup (HKLM-x32\...\NortonPCCheckup) (Version: 2.0.18.16 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
NVIDIA Grafiktreiber 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
OpenOffice 4.0.0 (HKLM-x32\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.)
PC Sound (HKLM\...\{3007FF9F-5B2C-41FF-8BFC-08BF25DB2681}) (Version: 1.12.2900 - SRS Labs, Inc.)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.30136 - Realtek Semiconductor Corp.)
SCM (HKLM\...\{5953EEE5-3F52-46F7-A609-81A5F5BE8FB4}) (Version: 10.012.12038 - )
SdRt4200 (HKLM-x32\...\{140347A0-4A0C-44FC-9CA1-C8A3471899B7}) (Version: 4.2.8.0 - パルティオソフト株式会社)
Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.5 - Electronic Arts)
Valokuvavalikoima (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - Intel (NETwNe64) net (09/12/2012 15.5.4.45) (HKLM\...\A007E57753F87B14A4737DA95057F173950A6A3D) (Version: 09/12/2012 15.5.4.45 - Intel)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 5.00 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.2-1 - Bitnami)
Yume Nikki 0.10 English (HKU\S-1-5-21-705900732-3080402841-1693879770-1002\...\Yume Nikki 0.10 English) (Version: - )
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Основи Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотоальбом (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Фотоколекція (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-705900732-3080402841-1693879770-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Janine\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0B565079-1D61-45CB-A543-3C2BD30B20BE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {1E98F84E-0D53-43BE-A6DE-37D37C61C2E9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {25A4D346-B0DA-49F6-A733-6D99A6BE9B81} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {2BB69D5F-14D3-47B1-8A19-8DBFD5523BAD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-04-12] (Microsoft Corporation)
Task: {3362602B-205D-4CCC-999A-5C8BB9B428C0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {418BB90D-E7C9-4A69-9F75-9AEEF5FAC139} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {49FCC9A8-D6A4-4C45-871B-08792A0F9DC4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {4B8A61A2-87EB-410E-B018-15A2BB4C8FCB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {5B942E60-333F-40E3-9775-A3D6370318FA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {60098505-F682-4DCF-B725-3D16D6953276} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-05-13] (Piriform Ltd)
Task: {708CBAC9-66DA-47AE-A85A-442C5598572F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {750DC9F8-F242-486A-A414-7EE54543DFD0} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {7966432F-DFE5-4F52-8512-A759F0E98E56} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {7E4AF0CF-65D3-4FEF-92E6-F273E47793EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {838FA800-B593-4F8D-ABCC-8250DD1CDE19} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\SymErr.exe
Task: {95623207-84D9-415A-B35A-F2298E5C37A7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {96B86FDD-F5BF-4125-94BF-18359E9D1F28} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {A75AE611-5EAF-482D-B6B2-862D9920CAEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {A9E70911-46E5-4F03-A4A7-026D672C4733} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {AF932774-6928-4AA3-AAD0-9254F3C4A282} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\SymErr.exe
Task: {B4D5DB87-4F58-4E46-A485-D1B30E67066E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D57B7E86-6A42-40A9-BB43-20F2D539A682} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-17] (Adobe Systems Incorporated)
Task: {DF7C47F0-D4CF-4C13-BE34-D51BDE8EB60C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-13] (Microsoft Corporation)
Task: {E98F394B-A6E4-451E-A32D-A4487ACF74D8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ED42215F-D852-42A8-82EB-10CD3754958C} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-705900732-3080402841-1693879770-1002
Task: {F4D26EBD-78AB-429A-A645-44F4C540E695} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-705900732-3080402841-1693879770-1002Core1d0c20c481d665b.job => C:\Users\Janine\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-09-15 12:07 - 2013-06-28 15:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2015-06-15 22:45 - 2015-10-13 05:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-04-15 12:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-15 12:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-23 23:51 - 2016-05-23 23:51 - 00959168 _____ () C:\Users\Janine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2015-11-05 22:48 - 2015-02-27 15:38 - 00721263 _____ () C:\WINDOWS\SysWOW64\WSCM64.dll
2015-04-15 22:13 - 2015-04-15 22:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-04-22 17:13 - 2016-04-22 17:13 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-05-13 18:44 - 2016-05-13 18:44 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-12-21 01:09 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 22:31 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-10 22:32 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-10 22:32 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-10 22:32 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-10 22:32 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2014-10-18 15:54 - 2015-10-29 19:10 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-04-22 17:13 - 2016-04-22 17:13 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-22 17:13 - 2016-04-22 17:13 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2013-02-27 21:20 - 2013-02-27 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-05-13 00:38 - 2016-05-11 13:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-13 00:38 - 2016-05-11 13:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
2016-05-13 00:38 - 2016-05-11 13:48 - 17565848 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Janine\Desktop\Animes.ods:com.dropbox.attributes [168]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-705900732-3080402841-1693879770-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Janine\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6F1F22C2-022C-4D3C-AF68-029F7BE02553}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{B2C4D1F1-FCED-4ED6-A17E-1BBCEE8F0934}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{01A2CF75-0AB0-48DE-A684-4C9B619E4A78}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{E24D7003-769D-4F40-92CE-8BF6D48CFDC8}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [UDP Query User{23DC8BF4-C457-4920-9556-BC16CB415BD0}C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{1C661DB5-51AA-4750-AC46-924DF28FA014}C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\janine\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{F4DA9F69-D64B-4F9C-9A53-86204F5B5541}] => (Allow) C:\Users\Janine\AppData\Roaming\ICQM\icq.exe
FirewallRules: [{13A00208-84A1-4F5B-95E5-F43B618E1AA9}] => (Allow) C:\Users\Janine\AppData\Roaming\ICQM\icq.exe
FirewallRules: [{9EFFF97D-FEA8-490E-A76B-E1C2B679900D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2CA7F870-E974-48EE-9980-0BA670DDA3C9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{63A34E96-65C9-442B-8DEC-16163E768A26}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B32736E4-45E5-4543-A202-56C91C5F102E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{297E0848-CB4D-441D-A3A4-39B58302C848}] => (Allow) C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{2873EBC0-683B-4C49-BAE6-96B0D88BFFDE}] => (Allow) C:\Users\Janine\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{0557E1D0-D1E0-4F2B-81D5-41EA3F5DA899}] => (Allow) C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E2014EFC-A2EA-4F8D-ADCE-CA6867043E80}] => (Allow) C:\Users\Janine\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{EED702E0-7A87-49E7-B0C7-367EF9B78760}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{0855C43A-5143-43E8-B708-59A1AAF94D91}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{96D03EA3-C749-43FA-B3F2-12FB7AAFD8DA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{725D0BF9-00C6-4145-B290-52EF6A71A496}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{15C402AA-B342-4FC0-AE32-4459FE86065D}] => (Allow) LPort=1900
FirewallRules: [{5F8C8330-D9F7-440E-A64D-9867D09885AF}] => (Allow) LPort=2869
FirewallRules: [{9526FDB2-C2FF-4CAE-A94A-100218AAE4FB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C92AF41F-A0DD-4A28-8AD2-7C3FD8F404E0}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [TCP Query User{24114A8A-8BBA-45D4-BC4D-146AB694E68C}C:\users\janine\appdata\roaming\icqm\icq.exe] => (Allow) C:\users\janine\appdata\roaming\icqm\icq.exe
FirewallRules: [UDP Query User{FFA3776F-E96A-410D-B700-2680B4468D7A}C:\users\janine\appdata\roaming\icqm\icq.exe] => (Allow) C:\users\janine\appdata\roaming\icqm\icq.exe
FirewallRules: [TCP Query User{DD7A4FBE-3642-4539-8606-07393711FB5A}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{3985EF89-3D39-4FFF-BCE4-8506604902E0}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{33D1D2C3-D821-407C-907B-726B4D0D7E8F}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{CCA157B3-1FA9-4BFE-AE6E-3820AD9DB62C}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{14AC3790-F2E5-4CC3-AD3C-717B84AAC80C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{C0A005E7-7F89-4653-8632-EB1B66F55AA6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{748D4429-4D57-4710-A580-A825DFFB5371}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C6A1B6D0-406A-42DC-9031-557B7250F9FC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{82152167-72C7-4FF8-8FFD-18ED903307F5}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{777B3976-C943-4D44-B3CF-8D63C45EFF7F}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{68EE4202-6480-42B6-B288-EFAFE44E00AC}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{955C85A7-DC27-4B56-982C-D7588F30C4BE}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{20EFE33C-A969-40A2-A9E1-88EC37C322DB}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{2A60279F-C02E-47D9-9685-5E7B353F4A62}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{62E7DA06-E60F-468C-AC0C-D6395648DA31}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{0E11B683-FBA2-4F39-8007-C3F618885DBC}C:\users\janine\desktop\xampp\apache\bin\httpd.exe] => (Allow) C:\users\janine\desktop\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{83042FA9-EF32-4AA8-AEDF-B69FD90A49D1}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{DDE6B8BB-A808-40AD-8F18-D62878B48A68}C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{7C90EAE1-0D6C-46ED-9947-4B5687C34A69}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{821879A2-94B0-4FC0-8540-18B2C31AC79D}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{2E8234E9-EAF2-49A2-80F4-438C794BD1C2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [TCP Query User{E23C2E10-76FF-4683-8F88-0F7D78F4E231}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{25564244-1C98-4C63-BC37-123CFED627B1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{59C0BAA7-FA20-4220-A57A-DB5973999B2C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{A3EA725D-0CA3-4D21-AB44-C53E9B7C3A9A}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{F0D43DAA-2B63-4BD7-8DE0-985150724872}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{62FC7482-B6C2-45D5-85FB-7DBB182A409E}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{921AA811-FFE6-4C89-9757-53AF51357559}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [{0ED8E6CA-4E8A-4AFC-90F5-FC564D09A8E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E6AF8FA6-5604-4E50-A4D3-B20F42204AD0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D41532E8-84C1-4EE0-BCF0-F5C22FC9C98B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ECD55CA8-9865-463D-9594-2A8D7355B76C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1BBC3A08-0081-42BA-9ED3-3A7B08A6D257}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia\amnesia.exe
FirewallRules: [{08F9D65F-C9B6-4F71-A931-A1B834425862}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia\amnesia.exe
FirewallRules: [TCP Query User{2F350D57-6944-40B3-A193-E5ED50199F52}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{69F1542A-890F-4DB0-894C-A9CD1676C0F2}C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\janine\desktop\verknüpfungen\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{8357ECD2-3C72-4944-9DB4-381917A4C871}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{E5BBB0CA-EDF9-4A5D-8136-529C337E11D7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{2ECDA661-4747-4669-933D-96618030F732}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{3FBCF7EE-CF4A-41BA-9B32-601CAF839180}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{71A37431-7EB3-426B-8321-95BB842F2E3D}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [UDP Query User{A05446C6-2D1C-4252-BABD-D19428F7C725}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [TCP Query User{D332CF67-5A21-4427-8FC5-35448B37F81B}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{22A555E0-9AD7-4B8D-8F48-E8DE1D1F5FAD}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{7D19E366-5880-4196-A1D9-A8F13593F687}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{B294E2A3-E285-4050-AE58-C33812E29C55}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{B4DD70CF-A905-42DD-B6A4-6C4342974D85}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe
FirewallRules: [UDP Query User{1D8FEA0C-9200-4793-979D-96426632DE89}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe
FirewallRules: [{9554E2E6-30E0-495A-9B63-5F2D201ED471}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe
FirewallRules: [{BE2B9126-F2D5-4E44-8394-F2B5FA3AF9A2}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe
FirewallRules: [TCP Query User{B3353C15-0598-4872-A786-4144C0AFD0C3}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{8331D768-09DF-4556-B960-C6B8A591DEF4}C:\xampp2\mysql\bin\mysqld.exe] => (Allow) C:\xampp2\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{6419072A-913B-4C29-8F74-D594BBFC28FD}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [UDP Query User{5E899FF1-07B8-49FE-8BF1-089ACF96F6EE}C:\xampp2\apache\bin\httpd.exe] => (Allow) C:\xampp2\apache\bin\httpd.exe
FirewallRules: [TCP Query User{166F58B5-A547-46B9-9B94-13262778085A}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1052D32C-B1D1-4FF0-AB14-3ED667686926}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{C8A07D32-1E70-470D-9953-BDDCBE5AD7E9}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{98A50D25-EF32-4C36-906E-71D2493F0730}C:\users\janine\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\janine\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E5EFBA27-2EAF-4BE1-BE60-FDDDFBF249D2}C:\program files\java\jre1.8.0_74\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\java.exe
FirewallRules: [UDP Query User{081B1951-FDAF-4D21-B7B3-B4C01692D5B0}C:\program files\java\jre1.8.0_74\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\java.exe
FirewallRules: [{ECD0E9AD-1E50-41C1-AB61-113DFB92E867}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
05-06-2016 23:15:04 Geplanter Prüfpunkt
06-06-2016 18:25:34 Malwarebytes Anti-Rootkit Restore Point
07-06-2016 06:15:21 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/07/2016 06:15:57 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (06/07/2016 06:08:37 AM) (Source: SetupARService) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (06/07/2016 06:07:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe, Version: 10.0.10586.0, Zeitstempel: 0x5632d7ba
Name des fehlerhaften Moduls: ESENT.dll, Version: 10.0.10586.212, Zeitstempel: 0x56fa1686
Ausnahmecode: 0xc0000602
Fehleroffset: 0x000000000022885f
ID des fehlerhaften Prozesses: 0x9cc
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe0
Pfad der fehlerhaften Anwendung: svchost.exe1
Pfad des fehlerhaften Moduls: svchost.exe2
Berichtskennung: svchost.exe3
Vollständiger Name des fehlerhaften Pakets: svchost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe5
Error: (06/07/2016 06:07:34 AM) (Source: ESENT) (EventID: 908) (User: )
Description: svchost (2508) Der Prozess wird aufgrund eines nicht behebbaren Fehlers beendet: PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1054(tm.cxx:1630): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS)
Error: (06/07/2016 01:49:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2219
Error: (06/07/2016 01:49:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2219
Error: (06/07/2016 01:49:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/07/2016 01:49:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1125
Error: (06/07/2016 01:49:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1125
Error: (06/07/2016 01:49:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Systemfehler:
=============
Error: (06/07/2016 11:21:46 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT-AUTORITÄT)
Description: H:\Device\HarddiskVolume92
Error: (06/07/2016 06:16:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Display Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (06/07/2016 06:13:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (06/07/2016 06:13:17 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1326
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (06/07/2016 06:12:45 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Übermittlungsoptimierung" wurde nicht richtig gestartet.
Error: (06/07/2016 06:11:47 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (06/07/2016 06:09:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (06/07/2016 06:09:18 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst FontCache3.0.0.0 erreicht.
Error: (06/07/2016 06:08:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UI Assistant Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (06/07/2016 06:08:45 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst UI Assistant Service erreicht.
CodeIntegrity:
===================================
Date: 2016-06-07 11:35:07.866
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-07 06:03:22.453
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-07 06:03:22.439
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-07 06:03:22.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-07 06:03:22.167
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-07 06:03:19.399
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-07 06:03:19.380
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-07 06:03:19.331
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-06 18:04:19.312
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-06 18:04:19.296
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 8081.21 MB
Verfügbarer physikalischer RAM: 4219.09 MB
Summe virtueller Speicher: 9361.21 MB
Verfügbarer virtueller Speicher: 4780.7 MB
==================== Laufwerke ================================
Drive c: (OS_Install) (Fixed) (Total:448.87 GB) (Free:47.13 GB) NTFS
Drive d: (Anime) (Fixed) (Total:462.54 GB) (Free:198.31 GB) NTFS
Drive h: (INTENSO) (Fixed) (Total:2794.51 GB) (Free:1331.89 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: EE2F5E89)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
==================== Ende von Addition.txt ============================
|
|
| Themen zu Tabs mit Werbung öffnen sich |
| abend, adwcleaner, andauernd, andere, automatisch, ccleaner, chrome, danke, dauernd, gestern, google, google startseite, klicke, klicken, kontrolliert, laufe, laufen, nichts, scrollen, seite, startseite, unkontrolliert, werbung, öffnen, öffnet |
Linear-Darstellung
