| |
| |||||||
Log-Analyse und Auswertung: Einige Viren/Maleware oder ähnliches lassen sich nicht entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
24.08.2016, 11:30
| #16 |
 |  Einige Viren/Maleware oder ähnliches lassen sich nicht entfernen Hi, Hier das Fixlog Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 21-08-2016 01
durchgeführt von Daniel (23-08-2016 19:08:25) Run:2
Gestartet von C:\Users\Daniel\Desktop\Reinigung
Geladene Profile: Daniel & (Verfügbare Profile: Daniel & Administrator)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
WMI_ActiveScriptEventConsumer_ASEC: <===== ACHTUNG
U2 ziphost; c:\program files\ziptool\ziphost.dll [X] <==== ACHTUNG
U1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [81792 2016-07-04] () [Datei ist nicht signiert] <==== ACHTUNG
emptytemp:
*****************
WMI_ActiveScriptEventConsumer_ASEC: <===== ACHTUNG => erfolgreich entfernt
ziphost => Dienst erfolgreich entfernt
UCGuard => Dienst erfolgreich entfernt
=========== EmptyTemp: ==========
BITS transfer queue => 820558 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 50576320 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 12771406 B
Edge => 0 B
Chrome => 188416 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Daniel => 38673398 B
Administrator => 0 B
RecycleBin => 4076771722 B
EmptyTemp: => 3.9 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 19:09:05 ====
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016 01
durchgeführt von Daniel (Administrator) auf DANIEL (24-08-2016 11:05:14)
Gestartet von C:\Users\Daniel\Desktop\Reinigung
Geladene Profile: Daniel (Verfügbare Profile: Daniel & Administrator)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\WINDOWS\System32\hpservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
() C:\WINDOWS\System32\valWBFPolicyService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
() C:\WINDOWS\System32\igfxTray.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Avid Technology, Inc.) C:\Program Files (x86)\Avid\Application Manager\AvidApplicationManager.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avid Technology, Inc.) C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1604.21020.0_x64__8wekyb3d8bbwe\Calculator.exe
(Gadwin Systems) C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen64.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [396688 2015-07-18] ()
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2015-09-03] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-08] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23892200 2016-08-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2000896 2014-04-04] (iSkySoft)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [220704 2016-04-05] (Geek Software GmbH)
HKLM-x32\...\Run: [win_en_77] => [X]
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [831064 2016-07-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [AppManHelper] => C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe [617984 2015-06-09] (Avid Technology, Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-08-16] ()
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8722136 2016-06-01] (Piriform Ltd)
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53130368 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\Run: [QGuan10in1] => C:\Users\Daniel\AppData\Roaming\UPUpdata\service72564.exe /autorun
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\MountPoints2: {675a7bd4-6429-11e5-beac-a01d48bb3d57} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\MountPoints2: {7e96af65-e84b-11e5-bed1-a01d48bb3d57} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-251479876-2616908072-677848422-1002\...\MountPoints2: {dad46d37-6cce-11e5-beb4-a01d48bb3d57} - "G:\HTC_Sync_Manager_PC.exe"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei
ShellIconOverlayIdentifiers: [JzShlobj] -> {7B286609-DA97-47E1-AC6B-33B8B4732C95} => Keine Datei
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2016-08-08]
ShortcutTarget: Avid Application Manager.lnk -> C:\WINDOWS\Installer\{A59C0B17-6673-46E6-9E00-BB25E755A299}\NewShortcut1_E1E0FF1FC1474601A40EFEF248F11D43.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk [2016-08-02]
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{49e48066-249b-4fa8-a0af-8601f6991a18}: [DhcpNameServer] 192.168.178.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-251479876-2616908072-677848422-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.ch/?gfe_rd=cr&ei=m6SkV7SMLKzC8gfE1YvQDQ&gws_rd=ssl
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {65D2F53C-15FF-4BE4-A4E0-09A3162351A9} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> {494827F1-8BAF-4727-97E0-D663B2A26D46} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> {77960DD2-0A6F-4905-8398-667794441D59} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> {85DB4EC8-BC9B-453F-B970-4237721199E7} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> {A5CC4B88-6297-4AC3-AC3E-5B45605490B1} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> {B9A79508-8EA1-4636-939D-FBF7A436A023} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-07-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
BHO: Kein Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> Keine Datei
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: Kein Name -> {000123B4-9B42-4900-B3F7-F4B073EFC214} -> Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-07-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-04] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-04] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-251479876-2616908072-677848422-1002 -> hxxp://www.google.ch/
FireFox:
========
FF ProfilePath: C:\Users\Daniel\AppData\Roaming\Profiles\s483dh3w.default
FF NewTab: C:\ProgramData\Lamzaps\ff.NT
FF Homepage: C:\ProgramData\Lamzaps\ff.HP
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll [2013-02-07] ( HP)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-03-25] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF SearchPlugin: C:\Users\Daniel\AppData\Roaming\Profiles\s483dh3w.default\searchplugins\findit.xml [2016-08-02]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [hmbkhknacohfhbmmpnmbkgdffdbildof] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-12-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159320 2016-08-22] (Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [989696 2016-07-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [472112 2016-07-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [472112 2016-07-18] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1453696 2016-07-18] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3189488 2016-07-05] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-06] (Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-04-25] (Digital Wave Ltd.)
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641768 2013-02-07] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29760 2016-07-04] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129848 2013-02-22] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [180200 2013-02-13] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-22] (Intel Corporation)
U2 KuaizipUpdateChecker; C:\Program Files\¿ìѹ\X86\kuaizipUpdateChecker.dll [219072 2016-08-02] ()
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2015-09-03] (IDT, Inc.) [Datei ist nicht signiert]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [260216 2016-04-01] (Synaptics Incorporated)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401856 2013-01-08] (AuthenTec, Inc.)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2013-03-19] () [Datei ist nicht signiert]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2016-08-03] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [144664 2016-07-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [154392 2016-07-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2016-07-18] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-07-18] (Avira Operations GmbH & Co. KG)
S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-02-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-02-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
U2 KuaiZipDrive; C:\WINDOWS\system32\drivers\KuaiZipDrive.sys [92872 2016-08-02] () [Datei ist nicht signiert]
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [24744 2013-10-07] (Audials AG)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-04-24] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [71288 2016-04-01] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-08-16] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2016-08-23] ()
S3 XSplit_Dummy; C:\Windows\system32\drivers\xspltspk.sys [26200 2015-05-26] (SplitmediaLabs Limited)
U3 DfSdkS; kein ImagePath
S3 pmem; \??\C:\Users\Daniel\AppData\Local\Temp\_MEI100642\drivers\winpmem64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-08-24 10:26 - 2016-08-24 10:26 - 00016148 _____ C:\WINDOWS\system32\DANIEL_Daniel_HistoryPrediction.bin
2016-08-23 19:10 - 2016-08-23 19:10 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2016-08-22 21:20 - 2016-08-22 21:20 - 00250710 _____ C:\Users\Daniel\Desktop\Praktikumsbewerbung_Daniel_Künzli_suedlich-t.pdf
2016-08-22 11:21 - 2016-08-22 11:21 - 00000000 ____D C:\Users\Daniel\Desktop\Bänninger
2016-08-21 18:46 - 2016-08-21 18:46 - 00002769 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLecta Live Screen Recorder.lnk
2016-08-21 18:46 - 2016-08-21 18:46 - 00002757 _____ C:\Users\Public\Desktop\eLecta Live Screen Recorder.lnk
2016-08-21 18:46 - 2016-08-21 18:46 - 00000000 ____D C:\Program Files (x86)\ELECTA COMMUNICATIONS LTD
2016-08-21 18:44 - 2016-08-21 20:13 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\obs-studio
2016-08-21 18:44 - 2016-08-21 18:44 - 00001282 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2016-08-21 18:44 - 2016-08-21 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2016-08-21 18:43 - 2016-08-21 18:43 - 00000000 ____D C:\Program Files (x86)\obs-studio
2016-08-21 16:42 - 2016-08-21 16:42 - 03065004 _____ C:\Users\Daniel\Downloads\Der Pool-Profi Der Sportler-Pool DMAXde.mp4
2016-08-20 12:45 - 2016-08-20 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft
2016-08-20 12:45 - 2016-08-20 12:45 - 00000000 ____D C:\ProgramData\Aiseesoft Studio
2016-08-20 12:43 - 2016-08-20 12:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aiseesoft
2016-08-20 12:43 - 2016-08-20 12:43 - 00000000 ____D C:\Users\Daniel\Documents\Aiseesoft Studio
2016-08-20 12:43 - 2016-08-20 12:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Aiseesoft Studio
2016-08-20 12:42 - 2016-08-20 12:42 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Aiseesoft Studio
2016-08-20 12:42 - 2016-08-20 12:42 - 00000000 ____D C:\Program Files (x86)\Aiseesoft Studio
2016-08-20 09:55 - 2016-08-20 12:08 - 796652080 _____ C:\Users\Daniel\Downloads\118_4279.MXF
2016-08-20 09:55 - 2016-08-20 12:06 - 761004592 _____ C:\Users\Daniel\Downloads\118_4280.MXF
2016-08-20 09:54 - 2016-08-20 12:52 - 2068079152 _____ C:\Users\Daniel\Downloads\118_4274.MXF
2016-08-20 09:54 - 2016-08-20 12:46 - 1105907760 _____ C:\Users\Daniel\Downloads\118_4266.MXF
2016-08-20 09:54 - 2016-08-20 12:45 - 946479664 _____ C:\Users\Daniel\Downloads\118_4267.MXF
2016-08-20 09:54 - 2016-08-20 12:34 - 676251696 _____ C:\Users\Daniel\Downloads\118_4268.MXF
2016-08-20 09:54 - 2016-08-20 12:32 - 700063280 _____ C:\Users\Daniel\Downloads\118_4270.MXF
2016-08-20 09:54 - 2016-08-20 12:25 - 553465392 _____ C:\Users\Daniel\Downloads\118_4271.MXF
2016-08-20 09:54 - 2016-08-20 12:22 - 577774128 _____ C:\Users\Daniel\Downloads\118_4272.MXF
2016-08-20 09:54 - 2016-08-20 12:17 - 577852464 _____ C:\Users\Daniel\Downloads\118_4273.MXF
2016-08-20 09:54 - 2016-08-20 12:15 - 963007024 _____ C:\Users\Daniel\Downloads\118_4278.MXF
2016-08-20 09:54 - 2016-08-20 11:48 - 351058480 _____ C:\Users\Daniel\Downloads\118_4277.MXF
2016-08-20 09:54 - 2016-08-20 11:44 - 725531184 _____ C:\Users\Daniel\Downloads\118_4264.MXF
2016-08-20 09:54 - 2016-08-20 11:41 - 250057264 _____ C:\Users\Daniel\Downloads\118_4276.MXF
2016-08-20 09:54 - 2016-08-20 11:40 - 309469744 _____ C:\Users\Daniel\Downloads\118_4275.MXF
2016-08-20 09:54 - 2016-08-20 11:23 - 639700016 _____ C:\Users\Daniel\Downloads\118_4263.MXF
2016-08-20 09:54 - 2016-08-20 09:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-08-20 09:53 - 2016-08-20 10:59 - 1116716592 _____ C:\Users\Daniel\Downloads\118_4261.MXF
2016-08-20 09:53 - 2016-08-20 10:55 - 872104496 _____ C:\Users\Daniel\Downloads\118_4262.MXF
2016-08-19 17:33 - 2016-08-19 17:33 - 00029658 _____ C:\Users\Daniel\AppData\Local\recently-used.xbel
2016-08-19 16:08 - 2016-08-19 16:08 - 00000000 ____D C:\Users\Daniel\Documents\Any Video Converter
2016-08-19 11:32 - 2016-08-19 11:35 - 1475621816 _____ C:\Users\Daniel\Desktop\Drohnenaufnahmen 2.zip
2016-08-19 11:08 - 2016-08-21 21:40 - 00000000 ____D C:\Users\Daniel\Desktop\Hollywood
2016-08-18 16:18 - 2016-08-23 19:09 - 00000000 ____D C:\Users\Daniel\Desktop\Reinigung
2016-08-18 16:17 - 2016-08-18 16:17 - 00000000 ____D C:\Program Files (x86)\ESET
2016-08-18 15:13 - 2016-08-18 15:13 - 00000259 _____ C:\Users\Daniel\Desktop\studentfilm.ch südlich-t Zürich sucht Compositing Praktikanten (m-w).url
2016-08-18 11:49 - 2016-08-18 11:49 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-08-18 11:36 - 2016-08-18 11:55 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Kuaizip
2016-08-18 10:41 - 2016-08-18 10:41 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\tmp
2016-08-17 21:04 - 2016-08-17 21:04 - 00242832 _____ C:\Users\Daniel\Downloads\Woche 1 Hollywood-Fit.mp4
2016-08-17 20:56 - 2016-08-23 18:55 - 00002547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-17 19:03 - 2016-08-17 19:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\ProgSense
2016-08-17 19:03 - 2016-08-17 19:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\GrabPro
2016-08-17 19:03 - 2016-08-17 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit
2016-08-17 19:03 - 2016-08-17 19:03 - 00000000 ____D C:\Program Files (x86)\Orbitdownloader
2016-08-17 19:02 - 2016-08-18 11:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Orbit
2016-08-17 18:58 - 2016-08-17 18:59 - 00000000 ____D C:\Users\Daniel\Documents\Freemake
2016-08-17 18:58 - 2016-08-17 18:59 - 00000000 ____D C:\ProgramData\Freemake
2016-08-17 18:58 - 2016-08-17 18:58 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2016-08-17 18:58 - 2016-08-17 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2016-08-17 18:58 - 2016-08-17 18:58 - 00000000 ____D C:\Program Files (x86)\Freemake
2016-08-17 15:14 - 2016-08-19 11:38 - 00000000 ____D C:\Users\Daniel\Desktop\Mirjam Drohnenaufnahmen
2016-08-16 21:55 - 2016-08-16 21:55 - 02160912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01009.dll
2016-08-16 21:55 - 2016-08-16 21:55 - 00049896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WirelessKeyboardFilter.sys
2016-08-16 21:19 - 2016-08-19 11:38 - 00000000 ____D C:\Users\Daniel\Desktop\NIcolePB
2016-08-16 17:32 - 2016-08-03 07:46 - 08016728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-16 17:32 - 2016-08-03 07:46 - 01538168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-16 17:32 - 2016-08-03 07:44 - 02429792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-16 17:32 - 2016-08-03 07:44 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-08-16 17:32 - 2016-08-03 07:38 - 06525424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-16 17:32 - 2016-08-03 06:57 - 24604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-16 17:32 - 2016-08-03 06:57 - 21862912 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-16 17:32 - 2016-08-03 06:46 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-16 17:32 - 2016-08-03 06:44 - 19337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-16 17:32 - 2016-08-03 06:36 - 07524352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-16 17:32 - 2016-08-03 06:35 - 18799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-16 17:32 - 2016-08-03 06:35 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-16 17:32 - 2016-08-03 06:35 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-16 17:32 - 2016-08-03 06:35 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-16 17:32 - 2016-08-03 06:28 - 03579392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-16 17:32 - 2016-08-03 06:26 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-16 17:31 - 2016-08-03 08:15 - 00468832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-16 17:31 - 2016-08-03 07:39 - 00660320 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-16 17:31 - 2016-08-03 06:45 - 12514304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-16 17:31 - 2016-08-03 06:39 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-16 17:31 - 2016-08-03 06:36 - 07502848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-16 17:31 - 2016-08-03 06:27 - 11270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-16 17:31 - 2016-08-03 06:26 - 06713856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-16 17:30 - 2016-08-03 08:15 - 02881624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-16 17:30 - 2016-08-03 07:46 - 02816016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-08-16 17:30 - 2016-08-03 07:46 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-16 17:30 - 2016-08-03 07:38 - 03625928 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-16 17:30 - 2016-08-03 07:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-16 17:30 - 2016-08-03 06:53 - 13027328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-16 17:30 - 2016-08-03 06:50 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-16 17:30 - 2016-08-03 06:49 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-16 17:30 - 2016-08-03 06:48 - 06788096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-16 17:30 - 2016-08-03 06:47 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-08-16 17:30 - 2016-08-03 06:46 - 01123840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-08-16 17:30 - 2016-08-03 06:45 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-16 17:30 - 2016-08-03 06:44 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-08-16 17:30 - 2016-08-03 06:42 - 02839040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-08-16 17:30 - 2016-08-03 06:42 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-16 17:30 - 2016-08-03 06:42 - 02253824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-08-16 17:30 - 2016-08-03 06:41 - 04398592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-16 17:30 - 2016-08-03 06:41 - 03119104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-16 17:30 - 2016-08-03 06:41 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-16 17:30 - 2016-08-03 06:41 - 01606656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-16 17:30 - 2016-08-03 06:40 - 05160960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-16 17:30 - 2016-08-03 06:40 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-16 17:30 - 2016-08-03 06:39 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-08-16 17:30 - 2016-08-03 06:38 - 03873280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-16 17:30 - 2016-08-03 06:38 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-08-16 17:30 - 2016-08-03 06:38 - 00819712 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-08-16 17:30 - 2016-08-03 06:37 - 04453888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-08-16 17:30 - 2016-08-03 06:36 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-08-16 17:30 - 2016-08-03 06:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-16 17:30 - 2016-08-03 06:33 - 02198016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-08-16 17:30 - 2016-08-03 06:33 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-16 17:30 - 2016-08-03 06:32 - 01492992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-16 17:30 - 2016-08-03 06:32 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-08-16 17:30 - 2016-08-03 06:30 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-08-16 17:30 - 2016-08-03 06:30 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2016-08-16 17:30 - 2016-08-03 06:28 - 03692032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-08-16 17:30 - 2016-08-03 06:22 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-08-16 17:30 - 2016-08-03 06:21 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-08-16 17:30 - 2016-08-03 06:20 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2016-08-16 17:29 - 2016-08-03 08:25 - 00953472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-16 17:29 - 2016-08-03 08:25 - 00365120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-16 17:29 - 2016-08-03 08:24 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-08-16 17:29 - 2016-08-03 08:24 - 01531368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-16 17:29 - 2016-08-03 08:24 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-08-16 17:29 - 2016-08-03 08:24 - 00439648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-16 17:29 - 2016-08-03 08:14 - 00565648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-08-16 17:29 - 2016-08-03 08:13 - 00065096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2016-08-16 17:29 - 2016-08-03 08:09 - 00185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-08-16 17:29 - 2016-08-03 07:46 - 01951864 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-16 17:29 - 2016-08-03 07:46 - 01563480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-08-16 17:29 - 2016-08-03 07:46 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-16 17:29 - 2016-08-03 07:46 - 00632680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-16 17:29 - 2016-08-03 07:46 - 00601336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-16 17:29 - 2016-08-03 07:46 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-16 17:29 - 2016-08-03 07:46 - 00432352 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-08-16 17:29 - 2016-08-03 07:46 - 00158048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-16 17:29 - 2016-08-03 07:44 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-08-16 17:29 - 2016-08-03 07:44 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-08-16 17:29 - 2016-08-03 07:38 - 00724168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-08-16 17:29 - 2016-08-03 07:38 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-08-16 17:29 - 2016-08-03 07:33 - 00224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-08-16 17:29 - 2016-08-03 07:09 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-16 17:29 - 2016-08-03 06:57 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-08-16 17:29 - 2016-08-03 06:55 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-08-16 17:29 - 2016-08-03 06:54 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-16 17:29 - 2016-08-03 06:52 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-08-16 17:29 - 2016-08-03 06:49 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2016-08-16 17:29 - 2016-08-03 06:47 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-08-16 17:29 - 2016-08-03 06:47 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-08-16 17:29 - 2016-08-03 06:46 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-08-16 17:29 - 2016-08-03 06:46 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-08-16 17:29 - 2016-08-03 06:45 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-16 17:29 - 2016-08-03 06:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassvcs.dll
2016-08-16 17:29 - 2016-08-03 06:44 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-16 17:29 - 2016-08-03 06:44 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-08-16 17:29 - 2016-08-03 06:44 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-08-16 17:29 - 2016-08-03 06:43 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-08-16 17:29 - 2016-08-03 06:43 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-08-16 17:29 - 2016-08-03 06:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-08-16 17:29 - 2016-08-03 06:42 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-16 17:29 - 2016-08-03 06:42 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-08-16 17:29 - 2016-08-03 06:41 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2016-08-16 17:29 - 2016-08-03 06:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-08-16 17:29 - 2016-08-03 06:40 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-16 17:29 - 2016-08-03 06:40 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-16 17:29 - 2016-08-03 06:39 - 05448704 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-16 17:29 - 2016-08-03 06:39 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-08-16 17:29 - 2016-08-03 06:39 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-16 17:29 - 2016-08-03 06:39 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-08-16 17:29 - 2016-08-03 06:39 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2016-08-16 17:29 - 2016-08-03 06:38 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-08-16 17:29 - 2016-08-03 06:38 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-08-16 17:29 - 2016-08-03 06:38 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-08-16 17:29 - 2016-08-03 06:38 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-16 17:29 - 2016-08-03 06:37 - 04168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-08-16 17:29 - 2016-08-03 06:37 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-08-16 17:29 - 2016-08-03 06:37 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2016-08-16 17:29 - 2016-08-03 06:36 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-08-16 17:29 - 2016-08-03 06:36 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-08-16 17:29 - 2016-08-03 06:36 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-08-16 17:29 - 2016-08-03 06:36 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2016-08-16 17:29 - 2016-08-03 06:36 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-08-16 17:29 - 2016-08-03 06:35 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-16 17:29 - 2016-08-03 06:35 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-08-16 17:29 - 2016-08-03 06:35 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-08-16 17:29 - 2016-08-03 06:35 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-08-16 17:29 - 2016-08-03 06:34 - 00740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-16 17:29 - 2016-08-03 06:34 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-16 17:29 - 2016-08-03 06:33 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-16 17:29 - 2016-08-03 06:33 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-16 17:29 - 2016-08-03 06:32 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-08-16 17:29 - 2016-08-03 06:32 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-08-16 17:29 - 2016-08-03 06:32 - 00679936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-16 17:29 - 2016-08-03 06:32 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-16 17:29 - 2016-08-03 06:32 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-16 17:29 - 2016-08-03 06:32 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-16 17:29 - 2016-08-03 06:31 - 05329408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-16 17:29 - 2016-08-03 06:31 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-08-16 17:29 - 2016-08-03 06:31 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-08-16 17:29 - 2016-08-03 06:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-08-16 17:29 - 2016-08-03 06:30 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-08-16 17:29 - 2016-08-03 06:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-16 17:29 - 2016-08-03 06:30 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-16 17:29 - 2016-08-03 06:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-08-16 17:29 - 2016-08-03 06:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-08-16 17:29 - 2016-08-03 06:27 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-08-16 17:29 - 2016-08-03 06:27 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-08-16 17:29 - 2016-08-03 06:26 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-16 17:29 - 2016-08-03 06:25 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-08-16 17:29 - 2016-08-03 06:25 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-08-16 17:29 - 2016-08-03 06:21 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-08-16 17:29 - 2016-08-03 06:21 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-08-16 17:28 - 2016-08-03 08:24 - 01767008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-08-16 17:28 - 2016-08-03 08:24 - 00046480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-16 17:28 - 2016-08-03 08:23 - 01895576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-08-16 17:28 - 2016-08-03 08:22 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-16 17:28 - 2016-08-03 08:15 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-16 17:28 - 2016-08-03 08:15 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2016-08-16 17:28 - 2016-08-03 07:46 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-08-16 17:28 - 2016-08-03 07:46 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-08-16 17:28 - 2016-08-03 07:46 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-16 17:28 - 2016-08-03 07:44 - 02495776 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-16 17:28 - 2016-08-03 07:44 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-16 17:28 - 2016-08-03 07:38 - 01134792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-16 17:28 - 2016-08-03 07:38 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-16 17:28 - 2016-08-03 07:38 - 00252760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-08-16 17:28 - 2016-08-03 07:37 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-08-16 17:28 - 2016-08-03 07:32 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-08-16 17:28 - 2016-08-03 06:57 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-16 17:28 - 2016-08-03 06:53 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-08-16 17:28 - 2016-08-03 06:51 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-08-16 17:28 - 2016-08-03 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-16 17:28 - 2016-08-03 06:47 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-08-16 17:28 - 2016-08-03 06:47 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2016-08-16 17:28 - 2016-08-03 06:46 - 01416704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-16 17:28 - 2016-08-03 06:46 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-08-16 17:28 - 2016-08-03 06:46 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-16 17:28 - 2016-08-03 06:44 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-08-16 17:28 - 2016-08-03 06:43 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-08-16 17:28 - 2016-08-03 06:41 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2016-08-16 17:28 - 2016-08-03 06:40 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-16 17:28 - 2016-08-03 06:40 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-08-16 17:28 - 2016-08-03 06:39 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-08-16 17:28 - 2016-08-03 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-16 17:28 - 2016-08-03 06:38 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-16 17:28 - 2016-08-03 06:35 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-08-16 17:28 - 2016-08-03 06:35 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-08-16 17:28 - 2016-08-03 06:35 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 01522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00763904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-08-16 17:28 - 2016-08-03 06:34 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-08-16 17:28 - 2016-08-03 06:33 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-08-16 17:28 - 2016-08-03 06:33 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-16 17:28 - 2016-08-03 06:33 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-08-16 17:28 - 2016-08-03 06:33 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-16 17:28 - 2016-08-03 06:33 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-08-16 17:28 - 2016-08-03 06:31 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-16 17:28 - 2016-08-03 06:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-08-16 17:28 - 2016-08-03 06:26 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-08-16 17:28 - 2016-08-03 06:26 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-08-16 17:28 - 2016-08-03 06:26 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-08-16 17:28 - 2016-08-03 06:25 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-08-16 17:28 - 2016-08-03 06:25 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2016-08-16 17:28 - 2016-08-03 06:25 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2016-08-16 17:28 - 2016-08-03 06:25 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-08-16 17:28 - 2016-08-03 06:25 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2016-08-15 21:15 - 2016-08-15 21:15 - 00000243 _____ C:\Users\Daniel\Desktop\Einige Viren-Maleware oder ähnliches lassen sich nicht entfernen (2).url
2016-08-13 14:34 - 2016-08-24 11:05 - 00000000 ____D C:\FRST
2016-08-13 14:15 - 2016-08-13 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-08-13 14:15 - 2016-08-13 14:15 - 00000000 ____D C:\Program Files\VS Revo Group
2016-08-13 11:43 - 2016-08-13 11:46 - 00000000 ____D C:\Users\Daniel\Desktop\Gopro
2016-08-12 13:42 - 2016-08-18 15:32 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-08-08 17:29 - 2016-08-08 17:36 - 00000000 ____D C:\Users\Daniel\Documents\Partituren
2016-08-08 17:29 - 2016-08-08 17:29 - 00002086 _____ C:\Users\Public\Desktop\Sibelius.lnk
2016-08-08 17:29 - 2016-08-08 17:29 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2016-08-08 17:26 - 2016-08-08 17:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FLEXnet
2016-08-08 17:24 - 2016-08-08 17:26 - 00000000 ___HD C:\AvidDownloads
2016-08-08 16:20 - 2016-08-08 16:24 - 295723997 _____ C:\Users\Daniel\Downloads\Finale2014WinDemo.zip
2016-08-08 16:09 - 2016-08-08 16:09 - 00000000 ____D C:\Users\Daniel\Documents\Finale Files
2016-08-08 12:03 - 2016-08-08 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Finale 2014.5
2016-08-08 12:02 - 2016-08-08 12:03 - 00000000 ____D C:\Program Files (x86)\Finale 2014.5
2016-08-08 11:51 - 2016-08-08 11:51 - 00003638 _____ C:\WINDOWS\System32\Tasks\{BF52A3CC-0915-4A29-AC73-DE4C5D2EFCC1}
2016-08-08 11:49 - 2016-08-08 11:49 - 01333471 _____ C:\Users\Daniel\Downloads\odbg110.zip
2016-08-03 22:15 - 2016-08-21 13:04 - 00000000 ____D C:\Users\Daniel\Desktop\Neuer Ordner
2016-08-02 18:45 - 2016-08-22 21:02 - 00000000 ____D C:\Users\Daniel\Desktop\Ordner
2016-08-02 18:23 - 2016-08-02 13:24 - 00001188 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20160802-182312.backup
2016-08-02 15:00 - 2016-08-17 15:07 - 00000000 ____D C:\ProgramData\ProductData
2016-08-02 15:00 - 2016-08-02 15:00 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\ProductData
2016-08-02 15:00 - 2016-08-02 15:00 - 00000000 ____D C:\ProgramData\IObit
2016-08-02 15:00 - 2016-08-02 15:00 - 00000000 ____D C:\Program Files (x86)\IObit
2016-08-02 14:54 - 2016-08-02 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compress
2016-08-02 14:39 - 2016-08-02 18:11 - 00001310 _____ C:\Users\Public\Desktop\Avira Antivirus.lnk
2016-08-02 14:38 - 2016-07-18 16:23 - 00154392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-08-02 14:38 - 2016-07-18 16:23 - 00144664 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-08-02 14:38 - 2016-07-18 16:23 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-08-02 14:38 - 2016-07-18 16:23 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-08-02 14:21 - 2016-08-02 14:35 - 657051648 _____ C:\Users\Daniel\Downloads\rescue09-system.iso
2016-08-02 13:49 - 2016-08-15 21:09 - 00000008 __RSH C:\Users\Daniel\ntuser.pol
2016-08-02 13:34 - 2016-08-05 13:17 - 00000000 ____D C:\Program Files (x86)\DPower
2016-08-02 13:33 - 2016-08-05 13:18 - 00000000 ____D C:\Program Files (x86)\host
2016-08-02 13:32 - 2016-08-02 13:32 - 00092872 _____ C:\WINDOWS\system32\Drivers\KuaiZipDrive.sys
2016-08-02 13:32 - 2016-08-02 13:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Softlink
2016-08-02 13:32 - 2016-08-02 13:32 - 00000000 ____D C:\Program Files\¿ìѹ
2016-08-02 13:29 - 2016-08-02 17:47 - 00000000 ____D C:\Program Files\Caster
2016-08-02 13:29 - 2016-08-02 13:29 - 07129600 _____ C:\Users\Daniel\AppData\Roaming\agent.dat
2016-08-02 13:29 - 2016-08-02 13:29 - 00018432 _____ C:\Users\Daniel\AppData\Roaming\Main.dat
2016-08-02 13:27 - 2016-08-02 13:27 - 00129024 _____ C:\Users\Daniel\AppData\Roaming\Installer.dat
2016-08-02 13:27 - 2016-08-02 13:27 - 00000000 ____D C:\Users\Daniel\AppData\Local\UCBrowser
2016-08-02 13:27 - 2016-07-04 08:06 - 00081792 _____ C:\WINDOWS\system32\Drivers\ucguard.sys
2016-08-02 13:26 - 2016-08-02 13:27 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-08-02 13:25 - 2016-08-02 14:15 - 00000000 ____D C:\Users\Daniel\AppData\Local\app
2016-08-02 13:25 - 2016-08-02 13:24 - 00001188 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-08-02 13:24 - 2016-08-02 13:24 - 00000000 ____D C:\Program Files (x86)\WeatherChickn
2016-08-02 13:22 - 2016-08-02 17:47 - 00000000 ____D C:\Program Files (x86)\Bicsecogugh
2016-08-02 13:22 - 2016-08-02 13:22 - 00000000 ____D C:\Users\Daniel\AppData\Local\anuqeiedclopagesterveied
2016-08-02 13:08 - 2016-08-15 21:09 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-08-02 13:08 - 2016-08-02 13:11 - 00000000 ____D C:\WINDOWS\system32\SSL
2016-08-02 13:07 - 2016-08-13 14:02 - 00001918 _____ C:\Users\Daniel\Desktop\Intеrnеt Ехрlоrеr.lnk
2016-08-02 13:07 - 2016-08-02 13:10 - 00002152 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk
2016-08-02 00:53 - 2016-08-02 00:53 - 00000000 ____D C:\Program Files\Common Files\AV
2016-08-02 00:36 - 2016-08-02 18:11 - 00001455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-08-02 00:36 - 2016-08-02 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-08-02 00:35 - 2016-08-02 16:09 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-02 00:35 - 2016-08-02 16:05 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-02 00:35 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-08-02 00:25 - 2016-08-18 12:36 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-02 00:25 - 2016-08-15 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-08-02 00:25 - 2016-08-15 21:49 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-08-02 00:25 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-02 00:25 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-07-29 11:33 - 2016-07-31 18:16 - 00000036 _____ C:\WINDOWS\progress.ini
2016-07-29 10:54 - 2016-07-31 19:08 - 00000000 ___HD C:\$GetCurrent
2016-07-27 13:32 - 2016-07-27 13:32 - 00000000 ____D C:\WINDOWS\UpdateAssistant
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-08-24 10:50 - 2015-12-06 12:45 - 00001228 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-08-24 10:45 - 2016-04-30 22:29 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-24 09:15 - 2014-01-11 17:24 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\AuthenTec
2016-08-24 09:13 - 2015-04-10 19:42 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2016-08-24 09:11 - 2014-03-07 18:49 - 00000000 ___RD C:\Users\Daniel\Dropbox
2016-08-24 09:10 - 2016-04-30 22:29 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-24 09:09 - 2015-12-06 12:45 - 00001224 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-08-24 09:09 - 2015-09-10 14:51 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-24 09:09 - 2015-03-28 11:50 - 00000000 __SHD C:\Users\Daniel\IntelGraphicsProfiles
2016-08-23 19:10 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-23 19:10 - 2013-12-03 02:56 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2016-08-23 19:09 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-23 19:08 - 2015-09-25 18:16 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Temp
2016-08-23 18:56 - 2014-02-21 19:01 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Adblock Plus for IE
2016-08-23 18:22 - 2015-09-10 14:54 - 01997626 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-23 18:22 - 2015-07-10 18:34 - 00850366 _____ C:\WINDOWS\system32\perfh007.dat
2016-08-23 18:22 - 2015-07-10 18:34 - 00187104 _____ C:\WINDOWS\system32\perfc007.dat
2016-08-23 18:22 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-08-23 18:08 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-23 18:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-22 11:15 - 2015-03-24 20:18 - 00000000 ____D C:\Users\Daniel\AppData\Local\CrashDumps
2016-08-21 14:46 - 2015-03-31 22:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DVDVideoSoft
2016-08-21 12:02 - 2016-02-13 19:42 - 00000000 ____D C:\WINDOWS\Panther
2016-08-21 11:59 - 2016-07-17 01:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-20 12:55 - 2015-05-07 18:23 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\vlc
2016-08-20 10:35 - 2015-08-30 12:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2016-08-20 09:55 - 2015-12-06 12:45 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-08-19 18:01 - 2015-03-24 17:41 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2016-08-19 17:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2016-08-19 17:34 - 2014-01-12 12:42 - 00000000 ____D C:\Users\Daniel\.gimp-2.8
2016-08-19 17:33 - 2015-03-30 21:37 - 00000000 ____D C:\Users\Daniel\AppData\Local\gtk-2.0
2016-08-19 16:08 - 2015-08-30 21:50 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Anvsoft
2016-08-19 15:35 - 2015-07-02 18:57 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-08-19 14:33 - 2016-06-01 19:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Host Service
2016-08-18 12:51 - 2015-11-03 14:33 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-18 12:17 - 2016-06-05 12:31 - 00000000 ____D C:\AdwCleaner
2016-08-18 10:21 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-18 10:21 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-08-18 10:21 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-18 10:21 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-18 10:21 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-18 10:21 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-18 10:18 - 2015-09-10 14:55 - 00000000 ____D C:\Users\Daniel
2016-08-17 15:51 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-17 15:41 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-17 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-17 15:27 - 2015-03-24 17:57 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-08-16 07:49 - 2015-09-10 14:55 - 00000000 ____D C:\Users\Administrator
2016-08-15 22:39 - 2013-09-27 23:28 - 00000000 ____D C:\WINDOWS\it
2016-08-15 16:18 - 2015-10-13 19:37 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\dvdcss
2016-08-12 17:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2016-08-12 13:44 - 2016-03-18 18:55 - 00000000 ____D C:\Users\Daniel\AppData\Local\ElevatedDiagnostics
2016-08-12 13:43 - 2015-11-03 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-10 11:21 - 2015-03-24 17:44 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-08-10 10:08 - 2015-03-24 19:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 10:02 - 2015-03-24 19:27 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-08 22:38 - 2015-04-01 18:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Audacity
2016-08-08 20:08 - 2015-07-10 14:20 - 05388464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-08 17:29 - 2015-05-06 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avid
2016-08-08 17:27 - 2015-05-06 21:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Avid
2016-08-08 17:27 - 2015-05-06 21:45 - 00000000 ____D C:\ProgramData\Avid
2016-08-08 17:27 - 2015-05-06 21:45 - 00000000 ____D C:\Program Files\Avid
2016-08-08 17:27 - 2015-02-26 19:07 - 00000000 ____D C:\Users\Public\Documents\Sibelius-Beispielpartituren
2016-08-08 17:24 - 2015-05-06 21:45 - 00000000 ____D C:\Program Files (x86)\Avid
2016-08-08 17:24 - 2015-03-31 22:16 - 00000000 ____D C:\Users\Daniel\AppData\Local\Downloaded Installations
2016-08-08 16:19 - 2015-04-28 12:12 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MakeMusic
2016-08-08 16:09 - 2015-03-24 17:41 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-08-08 12:02 - 2015-04-28 12:10 - 00000000 ____D C:\ProgramData\MakeMusic
2016-08-08 11:44 - 2015-04-28 12:10 - 00000000 ____D C:\Program Files (x86)\Finale 2014
2016-08-06 19:48 - 2015-11-24 20:53 - 00000000 ____D C:\Users\Daniel\Documents\Adobe
2016-08-05 16:26 - 2013-09-28 07:41 - 00000000 ____D C:\WINDOWS\en-GB
2016-08-03 21:51 - 2016-06-22 16:52 - 00000350 _____ C:\WINDOWS\Tasks\HPCeeScheduleForDaniel.job
2016-08-03 08:45 - 2015-09-10 15:14 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-02 18:11 - 2016-07-23 16:55 - 00001610 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2016-08-02 18:11 - 2016-06-11 14:31 - 00002231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.lnk
2016-08-02 18:11 - 2015-12-22 19:34 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign CC 2015.lnk
2016-08-02 18:11 - 2015-12-22 16:05 - 00001675 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk
2016-08-02 18:11 - 2015-12-21 18:09 - 00001772 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2016-08-02 18:11 - 2015-11-21 18:58 - 00001157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC 2015.lnk
2016-08-02 18:11 - 2015-09-10 15:06 - 00001507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-02 18:11 - 2015-07-23 16:33 - 00001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom.lnk
2016-08-02 18:11 - 2015-05-24 16:46 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2016-08-02 18:11 - 2015-05-17 13:30 - 00002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-02 18:11 - 2015-05-01 14:35 - 00001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2014.lnk
2016-08-02 18:11 - 2015-04-20 12:57 - 00002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-08-02 18:11 - 2015-04-12 10:17 - 00001316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-08-02 18:11 - 2015-04-11 13:28 - 00001281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk
2016-08-02 18:11 - 2015-04-11 12:07 - 00001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2014.lnk
2016-08-02 18:11 - 2015-04-01 18:06 - 00001026 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-08-02 18:11 - 2015-03-30 21:26 - 00000949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2016-08-02 18:11 - 2015-03-26 17:51 - 00002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-08-02 18:11 - 2015-03-26 17:51 - 00002087 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-08-02 18:11 - 2013-09-27 23:31 - 00001103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Connected Music.lnk
2016-08-02 18:11 - 2013-09-27 23:28 - 00001385 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-08-02 18:10 - 2016-02-12 19:25 - 00001342 _____ C:\Users\Daniel\Desktop\Auslogics DiskDefrag.lnk
2016-08-02 17:56 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-02 17:47 - 2015-03-24 17:44 - 00000000 ____D C:\Users\Daniel\AppData\Local\Apps\2.0
2016-08-02 16:19 - 2013-12-03 02:44 - 00000000 ____D C:\Users\UpdatusUser
2016-08-02 15:04 - 2015-07-18 14:56 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\IObit
2016-08-02 14:40 - 2015-04-01 18:16 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Avira
2016-08-02 14:39 - 2015-04-01 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-08-02 14:38 - 2015-04-01 18:10 - 00000000 ____D C:\ProgramData\Avira
2016-08-02 14:38 - 2015-04-01 18:10 - 00000000 ____D C:\Program Files (x86)\Avira
2016-08-02 13:33 - 2013-12-03 02:49 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-02 12:51 - 2015-09-10 14:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-02 12:51 - 2015-09-10 14:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-08-02 12:51 - 2015-09-10 14:50 - 00000000 ____D C:\Program Files\Intel
2016-08-02 12:51 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-08-02 12:51 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod
2016-08-02 12:51 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\IME
2016-08-02 12:51 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-02 12:51 - 2014-01-11 17:13 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-31 20:41 - 2014-03-11 18:25 - 00000000 ____D C:\Temp
2016-07-31 19:08 - 2015-03-27 22:10 - 00001908 _____ C:\WINDOWS\diagwrn.xml
2016-07-31 19:08 - 2015-03-27 22:10 - 00001908 _____ C:\WINDOWS\diagerr.xml
2016-07-31 19:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\registration
2016-07-29 12:15 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-07-29 11:40 - 2016-04-30 22:29 - 00004190 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-29 11:40 - 2016-04-30 22:29 - 00003958 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-27 21:25 - 2015-03-25 19:36 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-05-06 21:55 - 2015-05-06 21:55 - 0000604 ____H () C:\Program Files (x86)\_Z2
2015-05-16 17:29 - 2016-06-13 11:19 - 0000033 _____ () C:\Users\Daniel\AppData\Roaming\AdobeWLCMCache.dat
2016-08-02 13:29 - 2016-08-02 13:29 - 7129600 _____ () C:\Users\Daniel\AppData\Roaming\agent.dat
2016-08-08 17:24 - 2016-08-08 17:25 - 1236874 _____ () C:\Users\Daniel\AppData\Roaming\AvidApplicationManager_Install.log
2016-08-02 13:27 - 2016-08-02 13:27 - 0129024 _____ () C:\Users\Daniel\AppData\Roaming\Installer.dat
2016-08-02 13:29 - 2016-08-02 13:29 - 0018432 _____ () C:\Users\Daniel\AppData\Roaming\Main.dat
2016-02-15 20:20 - 2016-02-15 20:25 - 0137871 _____ () C:\Users\Daniel\AppData\Roaming\net.telestream.wirecast.xml
2016-02-15 20:20 - 2016-02-15 20:20 - 0067454 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_AKAMAI_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0004755 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_BAMBUSER_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0004935 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_CHURCHSTREAMING_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0003931 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_DAILYMOTION_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0003213 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_HIGH_SCHOOL_CUBE_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0005919 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_LIGHTCAST_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0004356 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_MAKETV_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0003439 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_MERIDIX_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0003825 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_MERIDIX_AFFILIATE_ID_brandingimage_main.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0005621 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_NETBRIEFINGS_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0016357 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_ONSTREAM_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0010088 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STREAMINGCHURCH_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0004482 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STREAMINGCHURCH_AFFILIATE_ID_brandingimage_main.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0007122 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STREAMING_MEDIA_HOSTING_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0008261 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STREAMSHARK_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0010619 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STREAMVU_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0005241 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STREAM_SPOT_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0016966 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_STRETCH_INTERNET_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0008986 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_SUNDAY_STREAMS_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0022670 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_TILTEDGLOBE_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0003302 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_TULIX_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0008949 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_VERIZON_AFFILIATE_ID_brandingimage_destination.png
2016-02-15 20:20 - 2016-02-15 20:20 - 0008949 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_VERIZON_AFFILIATE_ID_brandingimage_main.png
2016-02-15 20:21 - 2016-02-15 20:21 - 0008683 _____ () C:\Users\Daniel\AppData\Roaming\net_telestream_wirecast_partner_NO_ZIXI_AFFILIATE_ID_brandingimage_destination.png
2016-08-19 17:33 - 2016-08-19 17:33 - 0029658 _____ () C:\Users\Daniel\AppData\Local\recently-used.xbel
Einige Dateien in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\avgnt.exe
C:\Users\Daniel\AppData\Local\Temp\ext647037998279433491.dll
C:\Users\Daniel\AppData\Local\Temp\ext7486600657022693824.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-08-20 10:01
==================== Ende von FRST.txt ============================
|
|
24.08.2016, 11:36
| #17 |
| /// Malwareteam   | Einige Viren/Maleware oder ähnliches lassen sich nicht entfernen Hi, macht das Sytem noch Probleme? Wenn nicht dann bitte wie folgt weitermachen.
__________________Die ersten beiden Punkte haben wir bei dir nicht gebraucht... fang bei Delfix an Die Reihenfolge ist hier entscheidend.
Bitte poste das Logfile noch, ansonsten bist du wenn du nichts mehr hast soweit durch
__________________ |
|
24.08.2016, 11:49
| #18 |
| | Einige Viren/Maleware oder ähnliches lassen sich nicht entfernen Das System scheint sauber zu sein. Keine Meldungen mehr bezüglich der erwähnten Dateien und auch sonst klappt alles. Soll ich das Problem mit der Windows-Suche und dem Ausschalten in der Windowsecke fragen oder weisst du auch gerade Rat?
__________________Hier das Logfile Code:
ATTFilter # DelFix v1.013 - Datei am 24/08/2016 um 12:46:23 erstellt
# Aktualisiert am 17/04/2016 von Xplode
# Benutzer : Daniel - DANIEL
# Betriebssystem : Windows 10 Home (64 bits)
~ Entferne die Bereinigungsprogramme ...
Gelöscht : C:\FRST
Gelöscht : C:\AdwCleaner
########## - EOF - ##########
 |
|
24.08.2016, 11:57
| #19 | |
| /// Malwareteam | Einige Viren/Maleware oder ähnliches lassen sich nicht entfernenZitat:
Frag dazu mal im Windows Forum nach. Ich hab da auf die schnelle keine Lösung. |
|
| Themen zu Einige Viren/Maleware oder ähnliches lassen sich nicht entfernen |
| appdata, avira, c:\windows, cache, code, config, datei, defender, entfernen, files, install.exe, kuaizip, mac, maleware, malware, meldet, microsoft, programm, quarantäne, roaming, temp, test, tr/crypt.xpack.gen, tr/dropper.gen, trojan, uninstall.exe, virus, windows |
Gruß Aneri 
Linear-Darstellung
