|
Log-Analyse und Auswertung: Win8.1: Antivir findet Trojaner - was nun?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
09.09.2016, 13:51 | #1 |
| Win8.1: Antivir findet Trojaner - was nun? Antivir hat drei Trojaner gefunden und in Quarantäne gemacht. Was muss ich noch tun? Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016 durchgeführt von Familie Schütz (Administrator) auf SCHÜTZ (09-09-2016 14:25:49) Gestartet von C:\Users\Familie Schütz\Desktop Geladene Profile: Familie Schütz & Luca (Verfügbare Profile: Familie Schütz & Luca) Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Lenovo) C:\Program Files\Lenovo\OneKey Optimizer\bin\FBService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe (Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe (LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe (Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe (Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Lenovo) C:\Windows\System32\LenovoUpdate.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files\Lenovo\LenovoUtility\utility.exe (Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe (CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe () C:\Program Files\Lenovo PhoneCompanion\adb.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizer.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Lenovo) C:\ProgramData\Lenovo App Services\Engine\LenovoAppServices.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Microsoft Corporation) C:\Windows\System32\LogonUI.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\cammute.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe () C:\Program Files\Gramblr\gramblr.exe () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe (AMD) C:\Windows\System32\atieclxx.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files\Lenovo\LenovoUtility\utility.exe (Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizer.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323312 2015-03-26] (Intel Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-01-22] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-02-25] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-02-25] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-02-25] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811048 2015-01-14] (Synaptics Incorporated) HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-02-23] (Lenovo Corporation) HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-02-23] (Lenovo Corporation) HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-02-23] (Lenovo Corporation) HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791368 2015-06-10] () HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [802800 2015-06-10] (Lenovo) HKLM\...\Run: [OneKeyOptimizer] => C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe [605992 2015-03-30] (Lenovo(beijing) Limited) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-02-02] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [67864 2016-08-04] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [830064 2016-09-08] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2016-07-11] () HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated) HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{D8BB460F-51DF-4642-A991-CDAB5C4B6EEA}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com SearchScopes: HKU\S-1-5-21-1976660754-2451958475-3698774454-1001 -> DefaultScope {4DA7D74C-77BE-4EDE-AF11-2DB0B86449BD} URL = SearchScopes: HKU\S-1-5-21-1976660754-2451958475-3698774454-1001 -> {4DA7D74C-77BE-4EDE-AF11-2DB0B86449BD} URL = SearchScopes: HKU\S-1-5-21-1976660754-2451958475-3698774454-1004 -> DefaultScope {4DA7D74C-77BE-4EDE-AF11-2DB0B86449BD} URL = SearchScopes: HKU\S-1-5-21-1976660754-2451958475-3698774454-1004 -> {4DA7D74C-77BE-4EDE-AF11-2DB0B86449BD} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-08-25] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-12] (Oracle Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-08-25] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-12] (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-12] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-12] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default FF Homepage: hxxp://www.badische-zeitung.de/ FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-13] () FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-12] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-12] (Oracle Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-10] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-10] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-12] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-12] (Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-08-25] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems) FF Extension: (Avira Browser Safety) - C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default\Extensions\abs@avira.com [2016-09-09] FF Extension: (Adblock Plus) - C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29] Chrome: ======= CHR Profile: C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-02] CHR Extension: (Google Docs) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-02] CHR Extension: (Google Drive) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-02] CHR Extension: (YouTube) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-02] CHR Extension: (Avira Browserschutz) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-08-26] CHR Extension: (Google Docs Offline) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-02] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-02] CHR Extension: (Google Mail) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-02] CHR Extension: (Chrome Media Router) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-26] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159320 2016-08-22] (Adobe Systems, Incorporated) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [989696 2016-09-08] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [470600 2016-09-08] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [470600 2016-09-08] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1454720 2016-09-08] (Avira Operations GmbH & Co. KG) R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [560584 2015-02-23] (Lenovo Corporation) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [320672 2016-08-04] (Avira Operations GmbH & Co. KG) R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [644080 2014-10-22] () R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2981056 2016-08-11] (Microsoft Corporation) R2 FastbootService; C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe [191000 2015-01-27] (Lenovo) [Datei ist nicht signiert] R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [9036880 2016-01-26] () [Datei ist nicht signiert] R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19184 2015-03-26] (Intel Corporation) R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [124520 2014-12-14] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-02-04] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-10-10] (Intel Corporation) S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-22] (Lenovo) R2 Lenovo OKO Service; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe [2742568 2015-03-31] (Lenovo(beijing) Limited) R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2005320 2014-10-13] (Lenovo Group Limited) R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.) R3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [625608 2015-02-23] (Lenovo Corporation) R2 LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe [258544 2014-06-19] (Lenovo(beijing) Limited) R3 LenovoUpdate; C:\Windows\System32\LenovoUpdate.exe [26608 2016-09-08] (Lenovo) R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [218952 2014-08-25] (Lenovo(beijing) Limited) S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272440 2015-01-19] (Lenovo) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-03-19] () R2 OKOControlSvc; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe [359208 2015-03-30] (Lenovo(beijing) Limited) R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [321520 2015-06-10] (Lenovo) S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [373232 2015-06-10] (Lenovo) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] () R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190632 2015-01-14] (Synaptics Incorporated) R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [68880 2015-06-10] () S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-11-21] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2015-03-19] (Intel® Corporation) S2 FileZilla Server; "C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [144664 2016-07-26] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [154392 2016-07-26] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-05-25] (Avira Operations GmbH & Co. KG) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1448248 2014-11-26] (Motorola Solutions, Inc.) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R0 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70168 2015-01-27] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert] R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [230128 2014-12-04] (Intel Corporation) R1 ikecert; C:\Windows\system32\drivers\ikecert.sys [45736 2015-12-06] (Promosoft Software Limited) R3 KMDFVirtualKbd; C:\Windows\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-04] () R3 KMDFVirtualMouse; C:\Windows\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-04] () R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.) R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3497240 2015-03-23] (Intel Corporation) S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation) R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [2973400 2014-11-06] (Realtek Semiconductor Corp.) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2015-01-14] (Synaptics Incorporated) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-09 14:25 - 2016-09-09 14:26 - 00030104 _____ C:\Users\Familie Schütz\Desktop\FRST.txt 2016-09-09 14:24 - 2016-09-09 14:24 - 00001199 _____ C:\Users\Familie Schütz\Downloads\FRST64 - Verknüpfung.lnk 2016-09-09 14:18 - 2016-09-09 14:21 - 00042693 _____ C:\Users\Familie Schütz\Downloads\Addition.txt 2016-09-09 14:15 - 2016-09-09 14:21 - 00112480 _____ C:\Users\Familie Schütz\Downloads\FRST.txt 2016-09-09 14:13 - 2016-09-09 14:25 - 00000000 ____D C:\FRST 2016-09-09 14:12 - 2016-09-09 14:12 - 02397696 _____ (Farbar) C:\Users\Familie Schütz\Desktop\FRST64.exe 2016-09-08 00:34 - 2016-09-08 00:34 - 04223011 _____ C:\Users\Luca\Downloads\absoLUT.zip 2016-09-08 00:20 - 2016-09-08 00:20 - 00362178 _____ C:\Users\Luca\Downloads\FREE_Lut_V.1.zip 2016-09-07 16:42 - 2016-09-07 16:43 - 01500976 _____ C:\WINDOWS\Minidump\090716-25265-01.dmp 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\VNC 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\Mobil 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\html 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\Doc 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\DBEngine 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\db 2016-09-03 15:41 - 2008-04-26 19:55 - 00000793 _____ C:\Program Files (x86)\Felder.ini 2016-09-03 15:41 - 2008-04-26 19:51 - 05263360 _____ (TaylorCom) C:\Program Files (x86)\Qkasse.exe 2016-09-03 15:41 - 2008-04-26 19:51 - 03671040 _____ (TaylorCom) C:\Program Files (x86)\LAG2002.exe 2016-09-03 15:41 - 2008-04-26 09:16 - 01682944 _____ () C:\Program Files (x86)\start.exe 2016-09-03 15:41 - 2008-04-24 15:53 - 02233344 _____ C:\Program Files (x86)\AList32.exe 2016-09-03 15:41 - 2008-04-23 21:32 - 04123136 _____ C:\Program Files (x86)\AUFTRAG.EXE 2016-09-03 15:41 - 2008-04-23 14:03 - 03098112 _____ () C:\Program Files (x86)\Kunden.exe 2016-09-03 15:41 - 2008-04-22 21:26 - 01878528 _____ C:\Program Files (x86)\AllOrder.exe 2016-09-03 15:41 - 2008-04-14 18:27 - 02263040 _____ () C:\Program Files (x86)\RECH32.exe 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.XG2 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.XG1 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.XG0 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.DB 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.YG2 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.YG1 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.YG0 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.PX 2016-09-03 15:41 - 2008-04-13 21:57 - 02864128 _____ C:\Program Files (x86)\Order32.exe 2016-09-03 15:41 - 2008-04-02 08:19 - 01332224 _____ () C:\Program Files (x86)\NEWUPCS.exe 2016-09-03 15:41 - 2008-04-01 10:33 - 01374720 _____ C:\Program Files (x86)\DatenZIP.exe 2016-09-03 15:41 - 2008-03-27 13:10 - 01718272 _____ () C:\Program Files (x86)\Lagerort.exe 2016-09-03 15:41 - 2008-03-12 09:16 - 01080832 _____ (TaylorCom) C:\Program Files (x86)\Info.exe 2016-09-03 15:41 - 2008-03-05 23:08 - 00313344 _____ C:\Program Files (x86)\LAGER.DB 2016-09-03 15:41 - 2008-03-05 23:08 - 00038912 _____ C:\Program Files (x86)\LAGER.XG4 2016-09-03 15:41 - 2008-03-05 23:08 - 00026624 _____ C:\Program Files (x86)\LAGER.XG3 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG6 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG5 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG2 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG1 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG0 2016-09-03 15:41 - 2008-03-05 23:08 - 00008192 _____ C:\Program Files (x86)\LAGER.PX 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG6 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG5 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG4 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG3 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG2 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG1 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG0 2016-09-03 15:41 - 2008-03-03 12:00 - 02550784 _____ C:\Program Files (x86)\Import32.exe 2016-09-03 15:41 - 2008-02-27 14:27 - 01306624 _____ (TaylorCom) C:\Program Files (x86)\SerienNr.exe 2016-09-03 15:41 - 2008-02-26 14:14 - 01652224 _____ () C:\Program Files (x86)\Rep32.exe 2016-09-03 15:41 - 2008-02-19 21:17 - 00090825 _____ C:\Program Files (x86)\preisliste.pdf 2016-09-03 15:41 - 2008-01-29 14:01 - 00003620 _____ C:\Program Files (x86)\QKASSE.INI 2016-09-03 15:41 - 2008-01-29 13:49 - 00004096 _____ C:\Program Files (x86)\OffenePosten.PX 2016-09-03 15:41 - 2008-01-29 13:49 - 00004096 _____ C:\Program Files (x86)\OffenePosten.DB 2016-09-03 15:41 - 2008-01-18 07:45 - 00839168 _____ () C:\Program Files (x86)\eMail32.exe 2016-09-03 15:41 - 2008-01-08 11:13 - 01392640 _____ () C:\Program Files (x86)\Inventur.exe 2016-09-03 15:41 - 2007-12-29 10:26 - 01440768 _____ () C:\Program Files (x86)\Mobil32.exe 2016-09-03 15:41 - 2007-12-08 14:19 - 00497152 _____ (www.winlager.de) C:\Program Files (x86)\LiveUpda.exe 2016-09-03 15:41 - 2007-12-08 14:18 - 00736256 _____ C:\Program Files (x86)\Feedback.exe 2016-09-03 15:41 - 2007-11-07 11:25 - 01901056 _____ C:\Program Files (x86)\KOrder32.exe 2016-09-03 15:41 - 2007-10-28 16:50 - 01417216 _____ () C:\Program Files (x86)\Bilder.exe 2016-09-03 15:41 - 2007-10-27 12:54 - 01324032 _____ () C:\Program Files (x86)\Mobil_K.exe 2016-09-03 15:41 - 2007-10-22 20:17 - 01239552 _____ C:\Program Files (x86)\Preisgrp.exe 2016-09-03 15:41 - 2007-10-02 12:47 - 00010240 _____ C:\Program Files (x86)\Lieferrt.DB 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG3 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG2 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.YG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.DB 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG3 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG2 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.PX 2016-09-03 15:41 - 2007-09-27 20:49 - 01945088 _____ C:\Program Files (x86)\Lief32.exe 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.YG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.DB 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.YG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.DB 2016-09-03 15:41 - 2007-09-22 08:22 - 00896000 _____ C:\Program Files (x86)\1REPARAT.exe 2016-09-03 15:41 - 2007-09-01 09:07 - 00000223 _____ C:\Program Files (x86)\demo.dat 2016-09-03 15:41 - 2007-08-25 16:11 - 00246784 _____ (DelphiZip) C:\Program Files (x86)\DelZip179.dll 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.XG2 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.XG1 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.XG0 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\LiefADr.PX 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\LiefADr.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.YG2 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.YG1 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.YG0 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.PX 2016-09-03 15:41 - 2007-08-14 20:29 - 01319936 _____ (Scalabium, Mike Shkolnik) C:\Program Files (x86)\Export32.exe 2016-09-03 15:41 - 2007-08-13 09:35 - 00989184 _____ () C:\Program Files (x86)\Admin.exe 2016-09-03 15:41 - 2007-08-09 20:09 - 00034816 _____ C:\Program Files (x86)\KUNDEN.DB 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\STATBEST.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\Kunden.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\Kunden.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\Kunden.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00010240 _____ C:\Program Files (x86)\STATBEST.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00008192 _____ C:\Program Files (x86)\Memo.db 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG5 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG4 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG3 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\Auftrag.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\Auftrag.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\Auftrag.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG3 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.px 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Kunden.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Kunden.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Kunden.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\KUNDEN.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Auftrag.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Auftrag.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Auftrag.YG0 2016-09-03 15:41 - 2007-08-02 21:01 - 00900608 _____ C:\Program Files (x86)\PDAExp.exe 2016-09-03 15:41 - 2007-06-20 17:33 - 04539904 _____ (combit GmbH) C:\Program Files (x86)\Cull12.dll 2016-09-03 15:41 - 2007-06-20 16:54 - 04375552 _____ (combit GmbH) C:\Program Files (x86)\cmll12.dll 2016-09-03 15:41 - 2007-06-14 10:56 - 02006745 _____ (combit GmbH) C:\Program Files (x86)\Cmll12xl.dll 2016-09-03 15:41 - 2007-06-13 16:24 - 00008192 _____ C:\Program Files (x86)\AfterBuy.DB 2016-09-03 15:41 - 2007-06-13 16:24 - 00004096 _____ C:\Program Files (x86)\AfterBuy.PX 2016-09-03 15:41 - 2007-06-13 10:13 - 02251776 _____ (combit GmbH) C:\Program Files (x86)\Cuct12.dll 2016-09-03 15:41 - 2007-06-13 10:13 - 02216448 _____ (combit GmbH) C:\Program Files (x86)\Cmct12.dll 2016-09-03 15:41 - 2007-06-11 10:53 - 01923584 _____ (combit GmbH) C:\Program Files (x86)\culs12.dll 2016-09-03 15:41 - 2007-06-11 10:53 - 01858048 _____ (combit GmbH) C:\Program Files (x86)\cmls12.dll 2016-09-03 15:41 - 2007-06-11 10:52 - 02473554 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ob.llx 2016-09-03 15:41 - 2007-06-08 09:22 - 01497600 _____ (combit GmbH) C:\Program Files (x86)\Cubr12.dll 2016-09-03 15:41 - 2007-06-08 09:22 - 01456128 _____ (combit GmbH) C:\Program Files (x86)\Cmbr12.dll 2016-09-03 15:41 - 2007-06-05 13:21 - 01649664 _____ C:\Program Files (x86)\Auswahl.exe 2016-09-03 15:41 - 2007-05-11 12:30 - 00351744 _____ (combit GmbH) C:\Program Files (x86)\Cmll12pw.llx 2016-09-03 15:41 - 2007-05-10 10:54 - 00875520 _____ (combit GmbH) C:\Program Files (x86)\cmll12ht.llx 2016-09-03 15:41 - 2007-05-08 11:01 - 00774196 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ex.llx 2016-09-03 15:41 - 2007-04-26 13:33 - 00941056 _____ (combit GmbH) C:\Program Files (x86)\Cmll12bc.llx 2016-09-03 15:41 - 2007-04-24 12:26 - 00435712 _____ (combit GmbH) C:\Program Files (x86)\Cuut12.dll 2016-09-03 15:41 - 2007-04-24 12:26 - 00408576 _____ (combit GmbH) C:\Program Files (x86)\Cmut12.dll 2016-09-03 15:41 - 2007-04-12 20:53 - 01619456 _____ (TaylorCom) C:\Program Files (x86)\Termine2007.exe 2016-09-03 15:41 - 2007-04-05 23:15 - 01808437 _____ C:\Program Files (x86)\cmLL1200.chm 2016-09-03 15:41 - 2007-04-05 23:15 - 00815104 _____ (combit GmbH) C:\Program Files (x86)\cudw12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00788480 _____ (combit GmbH) C:\Program Files (x86)\cmdw12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00546609 _____ (combit GmbH) C:\Program Files (x86)\cmll12eu.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00527872 _____ (combit GmbH) C:\Program Files (x86)\cull1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00525312 _____ (combit GmbH) C:\Program Files (x86)\cmll1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00493044 _____ (combit GmbH) C:\Program Files (x86)\cmll12bm.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00411648 _____ C:\Program Files (x86)\Cmmx0100.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00410624 _____ (combit GmbH) C:\Program Files (x86)\cupr12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00390656 _____ (combit GmbH) C:\Program Files (x86)\cmpr12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00330752 _____ (combit GmbH) C:\Program Files (x86)\cmll12oc.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00216476 _____ (combit GmbH) C:\Program Files (x86)\cmll12si.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00075264 _____ (combit GmbH) C:\Program Files (x86)\culs1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00075264 _____ (combit GmbH) C:\Program Files (x86)\cmls1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00036864 _____ (combit GmbH) C:\Program Files (x86)\cmll12sx.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00008277 _____ C:\Program Files (x86)\cmll12si.chm 2016-09-03 15:41 - 2007-03-29 18:39 - 00006144 _____ C:\Program Files (x86)\Auftrag.DB 2016-09-03 15:41 - 2007-03-29 18:39 - 00004096 _____ C:\Program Files (x86)\Auftrag.PX 2016-09-03 15:41 - 2007-03-29 18:38 - 00004096 _____ C:\Program Files (x86)\KassenStand.PX 2016-09-03 15:41 - 2007-03-29 18:38 - 00004096 _____ C:\Program Files (x86)\KassenStand.DB 2016-09-03 15:41 - 2007-03-14 13:37 - 00800768 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.dll 2016-09-03 15:41 - 2007-03-08 21:13 - 00973312 _____ (TaylorCom) C:\Program Files (x86)\Kostelle.exe 2016-09-03 15:41 - 2007-03-05 15:13 - 00004096 _____ C:\Program Files (x86)\PCList.PX 2016-09-03 15:41 - 2007-03-05 15:13 - 00004096 _____ C:\Program Files (x86)\PCList.db 2016-09-03 15:41 - 2007-02-09 21:45 - 01496576 _____ C:\Program Files (x86)\PrintBon.exe 2016-09-03 15:41 - 2007-01-31 08:39 - 00980480 _____ C:\Program Files (x86)\Service.exe 2016-09-03 15:41 - 2007-01-24 17:39 - 00054992 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.cpl 2016-09-03 15:41 - 2007-01-14 23:15 - 01424896 _____ C:\Program Files (x86)\IstWerte.exe 2016-09-03 15:41 - 2007-01-09 11:22 - 00006144 _____ C:\Program Files (x86)\AfterBuy.XG1 2016-09-03 15:41 - 2007-01-09 11:22 - 00006144 _____ C:\Program Files (x86)\AfterBuy.XG0 2016-09-03 15:41 - 2007-01-09 11:22 - 00004096 _____ C:\Program Files (x86)\AfterBuy.YG1 2016-09-03 15:41 - 2007-01-09 11:22 - 00004096 _____ C:\Program Files (x86)\AfterBuy.YG0 2016-09-03 15:41 - 2007-01-04 13:15 - 00946688 _____ C:\Program Files (x86)\Dlgfind.exe 2016-09-03 15:41 - 2006-12-08 09:03 - 00141312 _____ C:\Program Files (x86)\Statbest.DB 2016-09-03 15:41 - 2006-12-08 09:03 - 00004096 _____ C:\Program Files (x86)\Statbest.PX 2016-09-03 15:41 - 2006-10-04 10:47 - 00077440 _____ C:\Program Files (x86)\aero_busy_xl.ani 2016-09-03 15:41 - 2006-06-10 10:20 - 00000076 _____ C:\Program Files (x86)\Auftrag.ini 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.YG0 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.XG0 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.PX 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.DB 2016-09-03 15:41 - 2006-02-02 16:39 - 00783872 _____ (TaylorCom) C:\Program Files (x86)\Etikett.exe 2016-09-03 15:41 - 2006-01-20 13:29 - 01540096 _____ C:\Program Files (x86)\Drucka32.exe 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.YG0 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.XG0 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.PX 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.DB 2016-09-03 15:41 - 2005-11-30 20:49 - 00002048 _____ C:\Program Files (x86)\LiefZusatz.PX 2016-09-03 15:41 - 2005-11-30 20:49 - 00002048 _____ C:\Program Files (x86)\LiefZusatz.db 2016-09-03 15:41 - 2005-11-14 19:54 - 00599552 _____ C:\Program Files (x86)\SMS.exe 2016-09-03 15:41 - 2005-08-31 20:52 - 00020480 _____ ( ) C:\Program Files (x86)\Net00001.dll 2016-09-03 15:41 - 2005-08-15 18:03 - 00002048 _____ C:\Program Files (x86)\Etikett.PX 2016-09-03 15:41 - 2005-08-15 18:03 - 00002048 _____ C:\Program Files (x86)\Etikett.db 2016-09-03 15:41 - 2005-06-25 07:23 - 01263104 _____ C:\Program Files (x86)\Kommlist.exe 2016-09-03 15:41 - 2005-03-13 17:48 - 00002048 _____ C:\Program Files (x86)\PREISGRP.PX 2016-09-03 15:41 - 2005-03-13 17:48 - 00002048 _____ C:\Program Files (x86)\PREISGRP.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 00006144 _____ C:\Program Files (x86)\Notiz.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00006144 _____ C:\Program Files (x86)\Notiz.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\RepDetal.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\RepDetal.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Notiz.YG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Notiz.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.YG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.DB 2016-09-03 15:41 - 2005-01-10 19:31 - 00001728 _____ C:\Program Files (x86)\beispiel.LWL 2016-09-03 15:41 - 2004-10-31 16:35 - 00992256 _____ () C:\Program Files (x86)\ITC.exe 2016-09-03 15:41 - 2004-08-20 22:39 - 00000083 _____ C:\Program Files (x86)\RegKey.info 2016-09-03 15:41 - 2004-06-20 21:00 - 00000020 _____ C:\Program Files (x86)\Display.ini 2016-09-03 15:41 - 2002-11-13 21:38 - 00000048 _____ C:\Program Files (x86)\232_read.ini 2016-09-03 15:41 - 2002-10-13 21:29 - 00487424 _____ C:\Program Files (x86)\deinstal.exe 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.YG1 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.YG0 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.XG1 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.XG0 2016-09-03 15:41 - 2002-06-17 22:01 - 00002048 _____ C:\Program Files (x86)\KOMMLIST.PX 2016-09-03 15:41 - 2002-06-17 22:01 - 00002048 _____ C:\Program Files (x86)\KOMMLIST.DB 2016-09-03 15:41 - 2002-05-21 21:11 - 00049152 _____ C:\Program Files (x86)\232_read.exe 2016-09-03 15:41 - 2002-02-14 10:49 - 00082944 _____ C:\Program Files (x86)\RegKey.reg 2016-09-03 15:41 - 2002-02-14 10:49 - 00082944 _____ C:\Program Files (x86)\qrpdflib.dll 2016-09-03 15:40 - 2016-09-03 15:42 - 00000882 _____ C:\Users\Luca\Desktop\TaylorCom Startcenter.lnk 2016-09-03 15:40 - 2016-09-03 15:41 - 00000000 ___HD C:\Program Files (x86)\SETUP 2016-09-03 15:40 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\Datev 2016-09-03 15:40 - 2016-09-03 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAGER 3000 TaylorCom 2016-09-03 15:40 - 2008-04-22 21:12 - 01571840 _____ C:\Program Files (x86)\WEO32.exe 2016-09-03 15:40 - 2008-04-17 17:39 - 05539328 _____ () C:\Program Files (x86)\Umsatz32.exe 2016-09-03 15:40 - 2008-04-04 07:00 - 00243712 _____ C:\Program Files (x86)\StatRech.DB 2016-09-03 15:40 - 2008-04-04 07:00 - 00043008 _____ C:\Program Files (x86)\StatRech.XG2 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG6 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG4 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG3 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG1 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG0 2016-09-03 15:40 - 2008-04-04 07:00 - 00006144 _____ C:\Program Files (x86)\StatRech.XG5 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG6 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG5 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG4 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG3 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG2 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG1 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG0 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.PX 2016-09-03 15:40 - 2008-04-03 11:58 - 01395712 _____ C:\Program Files (x86)\WG.exe 2016-09-03 15:40 - 2008-03-29 10:05 - 00004096 _____ C:\Program Files (x86)\Wgr.PX 2016-09-03 15:40 - 2008-03-29 10:05 - 00004096 _____ C:\Program Files (x86)\Wgr.DB 2016-09-03 15:40 - 2008-02-26 14:22 - 01872384 _____ (TaylorCom) C:\Program Files (x86)\System32.exe 2016-09-03 15:40 - 2007-11-16 08:56 - 01314816 _____ C:\Program Files (x86)\stcklist.exe 2016-09-03 15:40 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\STCKLIST.DB 2016-09-03 15:40 - 2007-08-25 11:07 - 00020480 _____ C:\Program Files (x86)\System.DB 2016-09-03 15:40 - 2007-08-25 11:07 - 00004096 _____ C:\Program Files (x86)\SYSTEM.PX 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.YG1 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.YG0 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.XG1 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.XG0 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG5 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG4 2016-09-03 15:40 - 2007-07-06 02:00 - 00613581 _____ C:\Program Files (x86)\stepbystep.pdf 2016-09-03 15:40 - 2007-03-23 23:29 - 00923648 _____ C:\Program Files (x86)\ULOrt32.exe 2016-09-03 15:40 - 2006-03-07 15:06 - 00004096 _____ C:\Program Files (x86)\STCKLIST.PX 2016-09-03 15:40 - 2005-10-12 20:42 - 00096256 _____ C:\Program Files (x86)\StBestand.DB 2016-09-03 15:40 - 2005-10-12 20:42 - 00004096 _____ C:\Program Files (x86)\StBestand.PX 2016-09-03 15:40 - 2005-09-25 17:38 - 00002048 _____ C:\Program Files (x86)\Termine.PX 2016-09-03 15:40 - 2005-09-25 17:38 - 00002048 _____ C:\Program Files (x86)\Termine.db 2016-09-03 15:40 - 2005-09-01 07:32 - 00102400 _____ ( ) C:\Program Files (x86)\ZaHilfe.exe 2016-09-03 15:40 - 2005-02-20 15:06 - 00138752 _____ () C:\Program Files (x86)\ZipDll.dll 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.YG0 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.XG0 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.PX 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.DB 2016-09-03 15:40 - 2004-12-30 11:20 - 00120320 _____ () C:\Program Files (x86)\UnzDll.dll 2016-09-03 15:40 - 2002-12-26 12:12 - 00000006 _____ C:\Program Files (x86)\tan 2016-09-03 15:40 - 2000-12-09 04:00 - 00244984 _____ C:\Program Files (x86)\TUTIL32.DLL 2016-09-03 15:38 - 2016-09-03 15:38 - 66217159 _____ (TaylorCom) C:\Users\Luca\Downloads\demoweb.exe 2016-09-03 15:32 - 2016-09-09 14:23 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Bilder 2016-09-03 15:32 - 2016-09-03 15:32 - 00099095 _____ C:\Users\Familie Schütz\Downloads\Uninstal.exe 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Sicher 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Import 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Export 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Berichte 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmallCash 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\ProgramData\dFPUG 2016-09-03 15:31 - 2016-09-03 15:31 - 08388054 _____ () C:\Users\Luca\Downloads\smallcash_setup.exe 2016-09-03 14:01 - 2016-09-03 15:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-09-02 14:38 - 2016-09-02 14:38 - 00000000 ____D C:\Users\Luca\AppData\Roaming\WebApp 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\Documents\Lenovo 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\Documents\CyberLink 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\AppData\Roaming\Lenovo 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\AppData\Roaming\CyberLink 2016-09-02 13:25 - 2016-09-08 01:01 - 00000000 ____D C:\Users\Luca\Documents\Camtasia Studio 2016-09-02 12:57 - 2016-09-02 12:57 - 00000000 ____D C:\Users\Luca\Documents\Medium 2016-09-02 12:57 - 2016-09-02 12:57 - 00000000 ____D C:\Users\Luca\Documents\Benutzerdefinierte Produktionsprofile 8.0 2016-08-29 19:49 - 2016-08-29 19:49 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\gegl-0.2 2016-08-29 19:49 - 2016-08-29 19:49 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\fontconfig 2016-08-29 19:49 - 2016-08-29 19:49 - 00000000 ____D C:\Users\Familie Schütz\.gimp-2.8 2016-08-29 19:34 - 2016-08-29 19:42 - 00000921 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2016-08-29 19:32 - 2016-08-29 19:34 - 00000000 ____D C:\Program Files\GIMP 2 2016-08-29 19:31 - 2016-08-29 19:31 - 77404656 _____ (The GIMP Team ) C:\Users\Familie Schütz\Downloads\gimp-2.8.18-setup.exe 2016-08-28 12:07 - 2016-08-28 12:07 - 00003222 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task 2016-08-26 15:21 - 2016-08-26 15:21 - 00001165 _____ C:\Users\Public\Desktop\Avira Launcher.lnk 2016-08-25 21:00 - 2016-08-25 21:00 - 00000000 ____D C:\WINDOWS\LastGood.Tmp 2016-08-20 12:44 - 2016-08-20 12:45 - 00099968 _____ C:\Users\Luca\Downloads\just_believe.zip 2016-08-20 12:44 - 2016-08-20 12:44 - 00521111 _____ C:\Users\Luca\Downloads\outrun_future.zip 2016-08-20 12:44 - 2016-08-20 12:44 - 00035309 _____ C:\Users\Luca\Downloads\gentleman_on_the_rainbow.zip 2016-08-17 19:21 - 2016-08-17 19:21 - 00000000 ____D C:\Users\Familie Schütz\Tracing 2016-08-16 23:40 - 2016-08-16 23:40 - 01748804 _____ C:\Users\Luca\Downloads\OptiFine_1.10_HD_U_C1.jar 2016-08-16 23:36 - 2016-08-16 23:36 - 01747901 _____ C:\Users\Luca\Downloads\OptiFine_1.10.2_HD_U_C1.jar 2016-08-10 15:21 - 2016-08-10 15:22 - 00579672 _____ C:\WINDOWS\Minidump\081016-29968-01.dmp ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-09 14:26 - 2016-01-04 20:18 - 00000000 ____D C:\ProgramData\Gramblr 2016-09-09 14:24 - 2016-01-07 16:04 - 00446464 ___SH C:\Users\Familie Schütz\Downloads\Thumbs.db 2016-09-09 14:15 - 2015-06-10 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-09-09 14:10 - 2015-12-24 13:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-09-09 14:08 - 2016-01-24 23:02 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-09-09 14:06 - 2015-11-15 13:05 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\CrashDumps 2016-09-09 14:01 - 2016-01-24 23:02 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-09-09 14:01 - 2015-10-15 17:04 - 00000000 ____D C:\Users\Luca\AppData\Local\Adobe 2016-09-09 14:01 - 2015-10-14 21:26 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1976660754-2451958475-3698774454-1001 2016-09-09 14:00 - 2015-06-10 03:46 - 00000000 ____D C:\ProgramData\Lenovo 2016-09-09 13:57 - 2016-01-20 19:48 - 00000000 ____D C:\Users\Familie Schütz\AppData\Roaming\Skype 2016-09-09 13:55 - 2015-10-14 21:18 - 00000000 __SHD C:\Users\Familie Schütz\IntelGraphicsProfiles 2016-09-09 04:15 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-09-08 17:43 - 2015-10-15 17:28 - 00000420 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1976660754-2451958475-3698774454-1001.job 2016-09-08 14:36 - 2015-10-15 17:27 - 00000420 _____ C:\WINDOWS\Tasks\update-sys.job 2016-09-08 14:24 - 2015-10-15 12:56 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1976660754-2451958475-3698774454-1004 2016-09-08 14:19 - 2015-10-14 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-09-08 12:22 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf 2016-09-08 12:10 - 2015-10-15 12:50 - 00000000 __SHD C:\Users\Luca\IntelGraphicsProfiles 2016-09-08 12:08 - 2015-06-10 03:39 - 00153336 _____ C:\WINDOWS\system32\wpbbin.exe 2016-09-08 12:08 - 2015-06-10 03:39 - 00111088 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoCheck.exe 2016-09-08 12:08 - 2015-06-10 03:39 - 00026608 _____ (Lenovo) C:\WINDOWS\system32\LenovoUpdate.exe 2016-09-08 12:08 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-09-08 00:34 - 2015-01-25 10:29 - 00010244 _____ C:\Users\Luca\Documents\.DS_Store 2016-09-08 00:34 - 2015-01-23 01:22 - 00343821 _____ C:\Users\Luca\Documents\Town 3.cube 2016-09-08 00:34 - 2015-01-23 01:12 - 00343821 _____ C:\Users\Luca\Documents\Town.cube 2016-09-08 00:34 - 2015-01-23 01:02 - 00343821 _____ C:\Users\Luca\Documents\Town 2.cube 2016-09-08 00:34 - 2015-01-22 07:54 - 00720938 _____ C:\Users\Luca\Documents\Flat.cube 2016-09-08 00:34 - 2015-01-21 07:21 - 00503207 _____ C:\Users\Luca\Documents\Anti Green (WB).cube 2016-09-08 00:34 - 2015-01-21 07:16 - 00503207 _____ C:\Users\Luca\Documents\Neutral S.cube 2016-09-08 00:34 - 2015-01-21 06:35 - 00503207 _____ C:\Users\Luca\Documents\Day.cube 2016-09-08 00:34 - 2015-01-21 06:31 - 00526353 _____ C:\Users\Luca\Documents\Cinema C.cube 2016-09-08 00:34 - 2015-01-21 06:16 - 00503257 _____ C:\Users\Luca\Documents\Cinema B (LOG).cube 2016-09-08 00:34 - 2015-01-21 06:14 - 00503257 _____ C:\Users\Luca\Documents\Cinema B.cube 2016-09-08 00:34 - 2015-01-21 06:02 - 00503207 _____ C:\Users\Luca\Documents\RedTree (B&W).cube 2016-09-08 00:34 - 2015-01-21 06:01 - 00503207 _____ C:\Users\Luca\Documents\BlueTree 3 (B&W).cube 2016-09-08 00:34 - 2015-01-21 05:52 - 00503207 _____ C:\Users\Luca\Documents\BlueTree 2.cube 2016-09-08 00:34 - 2015-01-21 04:37 - 00591165 _____ C:\Users\Luca\Documents\BlueTree.cube 2016-09-08 00:34 - 2015-01-21 04:03 - 00503223 _____ C:\Users\Luca\Documents\Red Sky (LOG).cube 2016-09-08 00:34 - 2015-01-21 03:32 - 00503207 _____ C:\Users\Luca\Documents\Orange Sky (LOG).cube 2016-09-08 00:34 - 2015-01-21 02:44 - 00526419 _____ C:\Users\Luca\Documents\Cinema A.cube 2016-09-08 00:34 - 2015-01-21 02:12 - 00526619 _____ C:\Users\Luca\Documents\Sunset C.cube 2016-09-08 00:34 - 2015-01-21 02:04 - 00526619 _____ C:\Users\Luca\Documents\Sunset M.cube 2016-09-08 00:34 - 2015-01-21 02:00 - 00480209 _____ C:\Users\Luca\Documents\80`s.cube 2016-09-08 00:34 - 2015-01-21 01:56 - 00503373 _____ C:\Users\Luca\Documents\Cold.cube 2016-09-08 00:34 - 2015-01-21 01:45 - 00526553 _____ C:\Users\Luca\Documents\Choco Tone.cube 2016-09-08 00:34 - 2015-01-21 01:41 - 00526553 _____ C:\Users\Luca\Documents\Green Tone.cube 2016-09-08 00:20 - 2016-05-16 22:22 - 00951951 _____ C:\Users\Luca\Documents\FreeLut.cube 2016-09-07 23:41 - 2015-10-15 13:03 - 00000000 ____D C:\Users\Luca\AppData\Roaming\.minecraft 2016-09-07 19:15 - 2015-10-14 21:18 - 00000000 ____D C:\Users\Familie Schütz 2016-09-07 17:22 - 2015-10-14 21:19 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\Packages 2016-09-07 16:42 - 2016-01-16 00:44 - 758278609 _____ C:\WINDOWS\MEMORY.DMP 2016-09-07 16:42 - 2016-01-16 00:44 - 00000000 ____D C:\WINDOWS\Minidump 2016-09-05 14:44 - 2015-10-29 21:22 - 00000000 ____D C:\Users\Familie Schütz\Documents\Nicola 2016-09-04 21:59 - 2015-10-15 17:33 - 00000000 ___RD C:\Users\Luca\Desktop\Möp 2016-09-03 16:05 - 2015-06-10 04:35 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo 2016-09-03 15:48 - 2013-08-22 16:44 - 05185072 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-09-03 15:46 - 2015-11-15 15:07 - 00000000 ____D C:\Users\Luca\AppData\Local\CrashDumps 2016-09-03 15:46 - 2015-10-15 12:50 - 00000000 ____D C:\Users\Luca\AppData\Local\VirtualStore 2016-09-03 15:39 - 2015-10-15 12:50 - 00000000 ____D C:\Users\Luca 2016-09-03 15:33 - 2016-08-03 17:37 - 00012800 _____ C:\Users\Familie Schütz\Downloads\artikel_si.CDX 2016-09-03 15:33 - 2016-08-03 17:37 - 00000398 _____ C:\Users\Familie Schütz\Downloads\proto.csv 2016-09-03 15:33 - 2016-07-31 15:18 - 00001489 _____ C:\Users\Familie Schütz\Downloads\proto.dbf 2016-09-03 15:33 - 2016-01-11 17:08 - 00014057 _____ C:\Users\Familie Schütz\Downloads\artikel_si.dbf 2016-09-03 15:33 - 2015-10-17 10:42 - 00001489 _____ C:\Users\Familie Schütz\Downloads\proto_si.dbf 2016-09-03 15:33 - 2015-07-21 17:52 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tische.CDX 2016-09-03 15:33 - 2015-07-21 17:52 - 00000510 _____ C:\Users\Familie Schütz\Downloads\tische.dbf 2016-09-03 15:33 - 2015-07-09 11:19 - 00008803 _____ C:\Users\Familie Schütz\Downloads\grund.dbf 2016-09-03 15:33 - 2015-07-09 11:19 - 00001280 _____ C:\Users\Familie Schütz\Downloads\grund.FPT 2016-09-03 15:33 - 2015-06-19 13:42 - 00004430 _____ C:\Users\Familie Schütz\Downloads\gruppe_si.dbf 2016-09-03 15:33 - 2015-01-11 17:34 - 00014057 _____ C:\Users\Familie Schütz\Downloads\artikel.dbf 2016-09-03 15:33 - 2015-01-11 17:34 - 00012800 _____ C:\Users\Familie Schütz\Downloads\artikel.CDX 2016-09-03 15:33 - 2013-09-20 20:44 - 00004608 _____ C:\Users\Familie Schütz\Downloads\vorgang.CDX 2016-09-03 15:33 - 2013-09-20 20:44 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tischres.CDX 2016-09-03 15:33 - 2013-09-20 20:44 - 00000552 _____ C:\Users\Familie Schütz\Downloads\tischres.dbf 2016-09-03 15:33 - 2013-09-18 09:44 - 00012288 _____ C:\Users\Familie Schütz\Downloads\adressen.CDX 2016-09-03 15:33 - 2012-08-27 14:57 - 00005248 _____ C:\Users\Familie Schütz\Downloads\FOXUSER.FPT 2016-09-03 15:33 - 2012-08-27 14:57 - 00004430 _____ C:\Users\Familie Schütz\Downloads\gruppe.dbf 2016-09-03 15:33 - 2012-08-27 14:57 - 00002977 _____ C:\Users\Familie Schütz\Downloads\bonall.dbf 2016-09-03 15:33 - 2012-08-27 14:57 - 00002009 _____ C:\Users\Familie Schütz\Downloads\FOXUSER.DBF 2016-09-03 15:32 - 2016-08-03 17:37 - 00012288 _____ C:\Users\Familie Schütz\Downloads\adressen_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00004608 _____ C:\Users\Familie Schütz\Downloads\vorgang_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tischres_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tische_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00000328 _____ C:\Users\Familie Schütz\Downloads\fehler_si.DBF 2016-09-03 15:32 - 2015-07-21 17:52 - 00000511 _____ C:\Users\Familie Schütz\Downloads\tische_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00748377 _____ C:\Users\Familie Schütz\Downloads\vermietung_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00008804 _____ C:\Users\Familie Schütz\Downloads\grund_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00002977 _____ C:\Users\Familie Schütz\Downloads\bonall_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001851 _____ C:\Users\Familie Schütz\Downloads\adressen_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001633 _____ C:\Users\Familie Schütz\Downloads\vorgang_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001352 _____ C:\Users\Familie Schütz\Downloads\bonmem_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001152 _____ C:\Users\Familie Schütz\Downloads\grund_si.FPT 2016-09-03 15:32 - 2015-06-19 13:42 - 00000552 _____ C:\Users\Familie Schütz\Downloads\tischres_si.dbf 2016-09-03 15:32 - 2015-02-19 09:25 - 00001352 _____ C:\Users\Familie Schütz\Downloads\bon_si.dbf 2016-09-03 15:19 - 2015-10-14 21:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-09-03 12:26 - 2015-06-10 03:56 - 00000000 ____D C:\ProgramData\Package Cache 2016-09-02 21:47 - 2015-11-14 23:08 - 02274816 ___SH C:\Users\Luca\Downloads\Thumbs.db 2016-08-28 12:06 - 2016-04-25 21:05 - 00002367 _____ C:\Users\Luca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk 2016-08-28 12:06 - 2015-10-19 17:55 - 00003174 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1976660754-2451958475-3698774454-1004 2016-08-25 20:55 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-08-20 23:53 - 2016-01-19 17:25 - 00000000 ____D C:\Users\Luca\AppData\Roaming\Skype 2016-08-17 19:20 - 2016-01-19 17:25 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-08-17 19:20 - 2016-01-19 17:24 - 00000000 ____D C:\ProgramData\Skype 2016-08-17 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2016-08-17 00:16 - 2015-06-10 13:35 - 00766620 _____ C:\WINDOWS\system32\perfh007.dat 2016-08-17 00:16 - 2015-06-10 13:35 - 00159902 _____ C:\WINDOWS\system32\perfc007.dat 2016-08-17 00:16 - 2014-11-21 06:44 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-08-17 00:05 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-08-13 12:24 - 2015-06-10 04:36 - 00012800 _____ C:\WINDOWS\system32\VfService.trf 2016-08-13 12:20 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData 2016-08-13 12:20 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2016-08-12 23:08 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-08-12 23:06 - 2015-10-17 14:43 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-08-12 22:58 - 2015-10-17 14:43 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-12-11 21:40 - 2009-12-21 11:35 - 0382643 ____N () C:\Program Files\Bedienungsanleitung_SecureUSBflashdrives_de.pdf 2015-12-12 00:29 - 2015-12-12 00:29 - 9221857 _____ () C:\Program Files\usbenter_4.1.12.15.zip 2016-09-03 15:41 - 2007-09-22 08:22 - 0896000 _____ () C:\Program Files (x86)\1REPARAT.exe 2016-09-03 15:41 - 2002-05-21 21:11 - 0049152 _____ () C:\Program Files (x86)\232_read.exe 2016-09-03 15:41 - 2002-11-13 21:38 - 0000048 _____ () C:\Program Files (x86)\232_read.ini 2016-09-03 15:41 - 2007-08-13 09:35 - 0989184 _____ () C:\Program Files (x86)\Admin.exe 2016-09-03 15:41 - 2006-10-04 10:47 - 0077440 _____ () C:\Program Files (x86)\aero_busy_xl.ani 2016-09-03 15:41 - 2007-06-13 16:24 - 0008192 _____ () C:\Program Files (x86)\AfterBuy.DB 2016-09-03 15:41 - 2007-06-13 16:24 - 0004096 _____ () C:\Program Files (x86)\AfterBuy.PX 2016-09-03 15:41 - 2007-01-09 11:22 - 0006144 _____ () C:\Program Files (x86)\AfterBuy.XG0 2016-09-03 15:41 - 2007-01-09 11:22 - 0006144 _____ () C:\Program Files (x86)\AfterBuy.XG1 2016-09-03 15:41 - 2007-01-09 11:22 - 0004096 _____ () C:\Program Files (x86)\AfterBuy.YG0 2016-09-03 15:41 - 2007-01-09 11:22 - 0004096 _____ () C:\Program Files (x86)\AfterBuy.YG1 2016-09-03 15:41 - 2008-04-24 15:53 - 2233344 _____ () C:\Program Files (x86)\AList32.exe 2016-09-03 15:41 - 2008-04-22 21:26 - 1878528 _____ () C:\Program Files (x86)\AllOrder.exe 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.PX 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.XG0 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.XG1 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.XG2 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.YG0 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.YG1 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.YG2 2016-09-03 15:41 - 2007-03-29 18:39 - 0006144 _____ () C:\Program Files (x86)\Auftrag.DB 2016-09-03 15:41 - 2008-04-23 21:32 - 4123136 _____ () C:\Program Files (x86)\AUFTRAG.EXE 2016-09-03 15:41 - 2006-06-10 10:20 - 0000076 _____ () C:\Program Files (x86)\Auftrag.ini 2016-09-03 15:41 - 2007-03-29 18:39 - 0004096 _____ () C:\Program Files (x86)\Auftrag.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\Auftrag.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\Auftrag.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\Auftrag.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Auftrag.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Auftrag.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Auftrag.YG2 2016-09-03 15:41 - 2007-06-05 13:21 - 1649664 _____ () C:\Program Files (x86)\Auswahl.exe 2016-09-03 15:41 - 2005-01-10 19:31 - 0001728 _____ () C:\Program Files (x86)\beispiel.LWL 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.DB 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.PX 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.XG0 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.XG1 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.XG2 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.YG0 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.YG1 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.YG2 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.DB 2016-09-03 15:41 - 2007-10-28 16:50 - 1417216 _____ () C:\Program Files (x86)\Bilder.exe 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.YG0 2016-09-03 15:41 - 2007-06-08 09:22 - 1456128 _____ (combit GmbH) C:\Program Files (x86)\Cmbr12.dll 2016-09-03 15:41 - 2007-06-13 10:13 - 2216448 _____ (combit GmbH) C:\Program Files (x86)\Cmct12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0788480 _____ (combit GmbH) C:\Program Files (x86)\cmdw12.dll 2016-09-03 15:41 - 2007-06-20 16:54 - 4375552 _____ (combit GmbH) C:\Program Files (x86)\cmll12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 1808437 _____ () C:\Program Files (x86)\cmLL1200.chm 2016-09-03 15:41 - 2007-04-05 23:15 - 0124850 _____ () C:\Program Files (x86)\cmll1200.inf 2016-09-03 15:41 - 2007-04-05 23:15 - 0525312 _____ (combit GmbH) C:\Program Files (x86)\cmll1200.lng 2016-09-03 15:41 - 2007-04-26 13:33 - 0941056 _____ (combit GmbH) C:\Program Files (x86)\Cmll12bc.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0493044 _____ (combit GmbH) C:\Program Files (x86)\cmll12bm.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0546609 _____ (combit GmbH) C:\Program Files (x86)\cmll12eu.llx 2016-09-03 15:41 - 2007-05-08 11:01 - 0774196 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ex.llx 2016-09-03 15:41 - 2007-05-10 10:54 - 0875520 _____ (combit GmbH) C:\Program Files (x86)\cmll12ht.llx 2016-09-03 15:41 - 2007-06-11 10:52 - 2473554 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ob.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0330752 _____ (combit GmbH) C:\Program Files (x86)\cmll12oc.llx 2016-09-03 15:41 - 2007-05-11 12:30 - 0351744 _____ (combit GmbH) C:\Program Files (x86)\Cmll12pw.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0008277 _____ () C:\Program Files (x86)\cmll12si.chm 2016-09-03 15:41 - 2007-04-05 23:15 - 0216476 _____ (combit GmbH) C:\Program Files (x86)\cmll12si.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0036864 _____ (combit GmbH) C:\Program Files (x86)\cmll12sx.dll 2016-09-03 15:41 - 2007-06-14 10:56 - 2006745 _____ (combit GmbH) C:\Program Files (x86)\Cmll12xl.dll 2016-09-03 15:41 - 2007-06-11 10:53 - 1858048 _____ (combit GmbH) C:\Program Files (x86)\cmls12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0075264 _____ (combit GmbH) C:\Program Files (x86)\cmls1200.lng 2016-09-03 15:41 - 2007-01-24 17:39 - 0054992 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.cpl 2016-09-03 15:41 - 2007-03-14 13:37 - 0800768 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0411648 _____ () C:\Program Files (x86)\Cmmx0100.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 0390656 _____ (combit GmbH) C:\Program Files (x86)\cmpr12.dll 2016-09-03 15:41 - 2007-04-24 12:26 - 0408576 _____ (combit GmbH) C:\Program Files (x86)\Cmut12.dll 2016-09-03 15:41 - 2007-06-08 09:22 - 1497600 _____ (combit GmbH) C:\Program Files (x86)\Cubr12.dll 2016-09-03 15:41 - 2007-06-13 10:13 - 2251776 _____ (combit GmbH) C:\Program Files (x86)\Cuct12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0815104 _____ (combit GmbH) C:\Program Files (x86)\cudw12.dll 2016-09-03 15:41 - 2007-06-20 17:33 - 4539904 _____ (combit GmbH) C:\Program Files (x86)\Cull12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0527872 _____ (combit GmbH) C:\Program Files (x86)\cull1200.lng 2016-09-03 15:41 - 2007-06-11 10:53 - 1923584 _____ (combit GmbH) C:\Program Files (x86)\culs12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0075264 _____ (combit GmbH) C:\Program Files (x86)\culs1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 0410624 _____ (combit GmbH) C:\Program Files (x86)\cupr12.dll 2016-09-03 15:41 - 2007-04-24 12:26 - 0435712 _____ (combit GmbH) C:\Program Files (x86)\Cuut12.dll 2016-09-03 15:41 - 2008-04-01 10:33 - 1374720 _____ () C:\Program Files (x86)\DatenZIP.exe 2016-09-03 15:41 - 2002-10-13 21:29 - 0487424 _____ () C:\Program Files (x86)\deinstal.exe 2016-09-03 15:41 - 2007-08-25 16:11 - 0246784 _____ (DelphiZip) C:\Program Files (x86)\DelZip179.dll 2016-09-03 15:41 - 2007-09-01 09:07 - 0000223 _____ () C:\Program Files (x86)\demo.dat 2016-09-03 15:41 - 2004-06-20 21:00 - 0000020 _____ () C:\Program Files (x86)\Display.ini 2016-09-03 15:41 - 2007-01-04 13:15 - 0946688 _____ () C:\Program Files (x86)\Dlgfind.exe 2016-09-03 15:41 - 2006-01-20 13:29 - 1540096 _____ () C:\Program Files (x86)\Drucka32.exe 2016-09-03 15:41 - 2008-01-18 07:45 - 0839168 _____ () C:\Program Files (x86)\eMail32.exe 2016-09-03 15:41 - 2005-08-15 18:03 - 0002048 _____ () C:\Program Files (x86)\Etikett.db 2016-09-03 15:41 - 2006-02-02 16:39 - 0783872 _____ (TaylorCom) C:\Program Files (x86)\Etikett.exe 2016-09-03 15:41 - 2005-08-15 18:03 - 0002048 _____ () C:\Program Files (x86)\Etikett.PX 2016-09-03 15:41 - 2007-08-14 20:29 - 1319936 _____ (Scalabium, Mike Shkolnik) C:\Program Files (x86)\Export32.exe 2016-09-03 15:41 - 2007-12-08 14:18 - 0736256 _____ () C:\Program Files (x86)\Feedback.exe 2016-09-03 15:41 - 2008-04-26 19:55 - 0000793 _____ () C:\Program Files (x86)\Felder.ini 2016-09-03 15:41 - 2008-03-03 12:00 - 2550784 _____ () C:\Program Files (x86)\Import32.exe 2016-09-03 15:41 - 2008-03-12 09:16 - 1080832 _____ (TaylorCom) C:\Program Files (x86)\Info.exe 2016-09-03 15:41 - 2008-01-08 11:13 - 1392640 _____ () C:\Program Files (x86)\Inventur.exe 2016-09-03 15:41 - 2007-01-14 23:15 - 1424896 _____ () C:\Program Files (x86)\IstWerte.exe 2016-09-03 15:41 - 2004-10-31 16:35 - 0992256 _____ () C:\Program Files (x86)\ITC.exe 2016-09-03 15:41 - 2007-03-29 18:38 - 0004096 _____ () C:\Program Files (x86)\KassenStand.DB 2016-09-03 15:41 - 2007-03-29 18:38 - 0004096 _____ () C:\Program Files (x86)\KassenStand.PX 2016-09-03 15:41 - 2002-06-17 22:01 - 0002048 _____ () C:\Program Files (x86)\KOMMLIST.DB 2016-09-03 15:41 - 2005-06-25 07:23 - 1263104 _____ () C:\Program Files (x86)\Kommlist.exe 2016-09-03 15:41 - 2002-06-17 22:01 - 0002048 _____ () C:\Program Files (x86)\KOMMLIST.PX 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.XG0 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.XG1 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.YG0 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.YG1 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.DB 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.PX 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.XG0 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.YG0 2016-09-03 15:41 - 2007-11-07 11:25 - 1901056 _____ () C:\Program Files (x86)\KOrder32.exe 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.DB 2016-09-03 15:41 - 2007-03-08 21:13 - 0973312 _____ (TaylorCom) C:\Program Files (x86)\Kostelle.exe 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.PX 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.XG0 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.YG0 2016-09-03 15:41 - 2000-12-03 20:04 - 0034304 _____ () C:\Program Files (x86)\KUNDE.DOC 2016-09-03 15:41 - 2007-08-09 20:09 - 0034816 _____ () C:\Program Files (x86)\KUNDEN.DB 2016-09-03 15:41 - 2000-12-11 15:23 - 0034816 _____ () C:\Program Files (x86)\KUNDEN.DOC 2016-09-03 15:41 - 2008-04-23 14:03 - 3098112 _____ () C:\Program Files (x86)\Kunden.exe 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\KUNDEN.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\Kunden.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\Kunden.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\Kunden.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Kunden.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Kunden.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Kunden.YG2 2016-09-03 15:41 - 2008-04-26 19:51 - 3671040 _____ (TaylorCom) C:\Program Files (x86)\LAG2002.exe 2016-09-03 15:41 - 2008-03-05 23:08 - 0313344 _____ () C:\Program Files (x86)\LAGER.DB 2016-09-03 15:41 - 2008-03-05 23:08 - 0008192 _____ () C:\Program Files (x86)\LAGER.PX 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG0 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG1 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG2 2016-09-03 15:41 - 2008-03-05 23:08 - 0026624 _____ () C:\Program Files (x86)\LAGER.XG3 2016-09-03 15:41 - 2008-03-05 23:08 - 0038912 _____ () C:\Program Files (x86)\LAGER.XG4 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG5 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG6 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG0 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG1 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG2 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG3 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG4 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG5 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG6 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.DB 2016-09-03 15:41 - 2008-03-27 13:10 - 1718272 _____ () C:\Program Files (x86)\Lagerort.exe 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.YG1 2016-09-03 15:41 - 2000-12-11 11:28 - 0034304 _____ () C:\Program Files (x86)\LIEF.DOC 2016-09-03 15:41 - 2007-09-27 20:49 - 1945088 _____ () C:\Program Files (x86)\Lief32.exe 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\LiefADr.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\LiefADr.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 0010240 _____ () C:\Program Files (x86)\Lieferrt.DB 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG2 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG3 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG1 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG2 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG3 2016-09-03 15:41 - 2005-11-30 20:49 - 0002048 _____ () C:\Program Files (x86)\LiefZusatz.db 2016-09-03 15:41 - 2005-11-30 20:49 - 0002048 _____ () C:\Program Files (x86)\LiefZusatz.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.DB 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.YG1 2016-09-03 15:41 - 2007-12-08 14:19 - 0497152 _____ (www.winlager.de) C:\Program Files (x86)\LiveUpda.exe 2016-09-03 15:41 - 2007-08-09 20:09 - 0008192 _____ () C:\Program Files (x86)\Memo.db 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.px 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.YG2 2016-09-03 15:41 - 2007-12-29 10:26 - 1440768 _____ () C:\Program Files (x86)\Mobil32.exe 2016-09-03 15:41 - 2007-10-27 12:54 - 1324032 _____ () C:\Program Files (x86)\Mobil_K.exe 2016-09-03 15:41 - 2005-08-31 20:52 - 0020480 _____ ( ) C:\Program Files (x86)\Net00001.dll 2016-09-03 15:41 - 2008-04-02 08:19 - 1332224 _____ () C:\Program Files (x86)\NEWUPCS.exe 2016-09-03 15:41 - 2005-02-09 20:29 - 0006144 _____ () C:\Program Files (x86)\Notiz.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Notiz.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 0006144 _____ () C:\Program Files (x86)\Notiz.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Notiz.YG0 2016-09-03 15:41 - 2008-01-29 13:49 - 0004096 _____ () C:\Program Files (x86)\OffenePosten.DB 2016-09-03 15:41 - 2008-01-29 13:49 - 0004096 _____ () C:\Program Files (x86)\OffenePosten.PX 2016-09-03 15:41 - 2008-04-13 21:57 - 2864128 _____ () C:\Program Files (x86)\Order32.exe 2016-09-03 15:41 - 2007-03-05 15:13 - 0004096 _____ () C:\Program Files (x86)\PCList.db 2016-09-03 15:41 - 2007-03-05 15:13 - 0004096 _____ () C:\Program Files (x86)\PCList.PX 2016-09-03 15:41 - 2007-08-02 21:01 - 0900608 _____ () C:\Program Files (x86)\PDAExp.exe 2016-09-03 15:41 - 2005-03-13 17:48 - 0002048 _____ () C:\Program Files (x86)\PREISGRP.DB 2016-09-03 15:41 - 2007-10-22 20:17 - 1239552 _____ () C:\Program Files (x86)\Preisgrp.exe 2016-09-03 15:41 - 2005-03-13 17:48 - 0002048 _____ () C:\Program Files (x86)\PREISGRP.PX 2016-09-03 15:41 - 2008-02-19 21:17 - 0090825 _____ () C:\Program Files (x86)\preisliste.pdf 2016-09-03 15:41 - 2007-02-09 21:45 - 1496576 _____ () C:\Program Files (x86)\PrintBon.exe 2016-09-03 15:41 - 2008-04-26 19:51 - 5263360 _____ (TaylorCom) C:\Program Files (x86)\Qkasse.exe 2016-09-03 15:41 - 2008-01-29 14:01 - 0003620 _____ () C:\Program Files (x86)\QKASSE.INI 2016-09-03 15:41 - 2002-02-14 10:49 - 0082944 _____ () C:\Program Files (x86)\qrpdflib.dll 2016-09-03 15:41 - 2008-04-14 18:27 - 2263040 _____ () C:\Program Files (x86)\RECH32.exe 2016-09-03 15:41 - 2004-08-20 22:39 - 0000083 _____ () C:\Program Files (x86)\RegKey.info 2016-09-03 15:41 - 2002-02-14 10:49 - 0082944 _____ () C:\Program Files (x86)\RegKey.reg 2016-09-03 15:41 - 2008-02-26 14:14 - 1652224 _____ () C:\Program Files (x86)\Rep32.exe 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\RepDetal.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\RepDetal.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.YG2 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.DB 2016-09-03 15:41 - 2008-02-27 14:27 - 1306624 _____ (TaylorCom) C:\Program Files (x86)\SerienNr.exe 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.YG1 2016-09-03 15:41 - 2007-01-31 08:39 - 0980480 _____ () C:\Program Files (x86)\Service.exe 2016-09-03 15:41 - 2005-11-14 19:54 - 0599552 _____ () C:\Program Files (x86)\SMS.exe 2016-09-03 15:41 - 2008-04-26 09:16 - 1682944 _____ () C:\Program Files (x86)\start.exe 2016-09-03 15:41 - 2006-12-08 09:03 - 0141312 _____ () C:\Program Files (x86)\Statbest.DB 2016-09-03 15:41 - 2006-12-08 09:03 - 0004096 _____ () C:\Program Files (x86)\Statbest.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\STATBEST.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0010240 _____ () C:\Program Files (x86)\STATBEST.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG3 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG4 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG5 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG3 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG4 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG5 2016-09-03 15:40 - 2008-04-04 07:00 - 0243712 _____ () C:\Program Files (x86)\StatRech.DB 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.PX 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG0 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG1 2016-09-03 15:40 - 2008-04-04 07:00 - 0043008 _____ () C:\Program Files (x86)\StatRech.XG2 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG3 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG4 2016-09-03 15:40 - 2008-04-04 07:00 - 0006144 _____ () C:\Program Files (x86)\StatRech.XG5 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG6 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG0 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG1 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG2 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG3 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG4 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG5 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG6 2016-09-03 15:40 - 2005-10-12 20:42 - 0096256 _____ () C:\Program Files (x86)\StBestand.DB 2016-09-03 15:40 - 2005-10-12 20:42 - 0004096 _____ () C:\Program Files (x86)\StBestand.PX 2016-09-03 15:40 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\STCKLIST.DB 2016-09-03 15:40 - 2007-11-16 08:56 - 1314816 _____ () C:\Program Files (x86)\stcklist.exe 2016-09-03 15:40 - 2006-03-07 15:06 - 0004096 _____ () C:\Program Files (x86)\STCKLIST.PX 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.XG0 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.XG1 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.YG0 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.YG1 2016-09-03 15:40 - 2007-07-06 02:00 - 0613581 _____ () C:\Program Files (x86)\stepbystep.pdf 2016-09-03 15:40 - 2007-08-25 11:07 - 0020480 _____ () C:\Program Files (x86)\System.DB 2016-09-03 15:40 - 2007-08-25 11:07 - 0004096 _____ () C:\Program Files (x86)\SYSTEM.PX 2016-09-03 15:40 - 2008-02-26 14:22 - 1872384 _____ (TaylorCom) C:\Program Files (x86)\System32.exe 2016-09-03 15:40 - 2002-12-26 12:12 - 0000006 _____ () C:\Program Files (x86)\tan 2016-09-03 15:41 - 2007-12-09 14:21 - 0011856 _____ () C:\Program Files (x86)\taylorcom6.jpg 2016-09-03 15:40 - 2005-09-25 17:38 - 0002048 _____ () C:\Program Files (x86)\Termine.db 2016-09-03 15:40 - 2005-09-25 17:38 - 0002048 _____ () C:\Program Files (x86)\Termine.PX 2016-09-03 15:41 - 2007-04-12 20:53 - 1619456 _____ (TaylorCom) C:\Program Files (x86)\Termine2007.exe 2016-09-03 15:40 - 2000-12-09 04:00 - 0244984 _____ () C:\Program Files (x86)\TUTIL32.DLL 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.DB 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.PX 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.XG0 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.YG0 2016-09-03 15:40 - 2007-03-23 23:29 - 0923648 _____ () C:\Program Files (x86)\ULOrt32.exe 2016-09-03 15:40 - 2008-04-17 17:39 - 5539328 _____ () C:\Program Files (x86)\Umsatz32.exe 2016-09-03 15:40 - 2004-12-30 11:20 - 0120320 _____ () C:\Program Files (x86)\UnzDll.dll 2016-09-03 15:40 - 2008-04-22 21:12 - 1571840 _____ () C:\Program Files (x86)\WEO32.exe 2016-09-03 15:40 - 2008-04-03 11:58 - 1395712 _____ () C:\Program Files (x86)\WG.exe 2016-09-03 15:40 - 2008-03-29 10:05 - 0004096 _____ () C:\Program Files (x86)\Wgr.DB 2016-09-03 15:40 - 2008-03-29 10:05 - 0004096 _____ () C:\Program Files (x86)\Wgr.PX 2016-09-03 15:40 - 2005-09-01 07:32 - 0102400 _____ ( ) C:\Program Files (x86)\ZaHilfe.exe 2016-09-03 15:40 - 2005-02-20 15:06 - 0138752 _____ () C:\Program Files (x86)\ZipDll.dll 2015-10-15 17:27 - 2015-10-15 17:27 - 0000003 _____ () C:\Users\Familie Schütz\AppData\Local\updater.log 2015-10-15 17:28 - 2016-08-06 17:45 - 0000424 _____ () C:\Users\Familie Schütz\AppData\Local\UserProducts.xml 2015-10-21 18:13 - 2015-10-21 18:13 - 0000057 _____ () C:\ProgramData\Ament.ini 2015-06-10 04:03 - 2015-06-10 04:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-02-19 15:07 - 2016-02-19 15:07 - 0000016 _____ () C:\ProgramData\mntemp 2016-02-19 15:07 - 2016-02-19 15:07 - 0004881 _____ () C:\ProgramData\rxsmznjf.zcp 2015-12-06 20:55 - 2015-12-06 20:57 - 0002702 _____ () C:\ProgramData\{CF93D06A-43BB-4aa4-A4FB-99880124E1AB}.log 2015-12-06 20:57 - 2015-12-06 20:57 - 0001240 _____ () C:\ProgramData\{CF93D06A-43BB-4aa4-A4FB-99880124E1AC}.log Einige Dateien in TEMP: ==================== C:\Users\Familie Schütz\AppData\Local\Temp\avgnt.exe C:\Users\Luca\AppData\Local\Temp\avgnt.exe C:\Users\Luca\AppData\Local\Temp\COMAP.EXE C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-102047070684350419.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1021881899779484485.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1194839775302232026.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1224375518983917759.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1237489147569781333.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1307433817920319581.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1456435416031738893.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1464962070855903375.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1528553351840808739.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1571130032418379314.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1632876740646237568.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1695829961931317244.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1882760050758381558.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1907469925100803517.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2087887608307734468.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2108677866551399122.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2114623020418463076.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2120522379633388997.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-223172868179840990.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2421287095259216208.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2436118439381431734.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2459736261541492186.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-255599553491956244.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2821363238713007500.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2859328016598020176.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2974542198954142184.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2987575025481865385.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3100460345089814711.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3130189905255603175.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3213438227998160228.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3353130129378264198.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3914618017386171196.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3917184219499964349.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4179747194328986809.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4425429522757829601.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4460200915679666436.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4520063700390926208.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4875590239972915801.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4923337720850207982.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5016729431153679609.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5075451959652649879.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-511424715168692176.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5121462731662133481.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5220097767482780973.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5236295242808673195.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5662222964873507119.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5679955704194244753.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5787592863547240981.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5797732592276521532.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5805661804948033654.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5856515132126807927.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5859123043035014602.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5893347290188778165.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5954428564874338353.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-598272773333188866.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6359089739298817183.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6360251957606637130.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6507858170975037715.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6616386241688709177.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6775778621678581319.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6792410408762878556.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6797761778214371580.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6897087221144990756.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7078459544603952461.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7203307528366933922.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7271936160273324107.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7294070849721839121.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-737780776036636949.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7418448487893126912.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7462364185428468549.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-748066607832008916.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7809177982995337970.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7922564895001451556.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8075903985073177170.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-827794143497998031.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8314083586517610471.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8379653462155866068.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8468649408409892509.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8696954352210092706.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8724357053138375530.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8860078047425473659.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-9031216940269788875.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-9161077897874199970.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-939554906850328812.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-957949023841733584.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-BungeeCord-4622417259289570418.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-BungeeCord-721977166654502710.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-BungeeCord-8127545728231287598.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-b3020jnks.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2088781779981914868.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2576755252107033352.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2613782420221683601.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2658253220037464709.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2848975334696030289.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3101935224798676073.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-318922407554183004.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3337685243657530132.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3402095750885288298.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3424685235226310988.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3792522935184894631.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-4612394268522924073.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-4839105660862162032.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-6859979679269378671.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-6930083474114083688.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7548605125554448821.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7686319554663862876.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7786331900825824608.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7928466940541968416.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-8111728990841794655.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-8753909120653273612.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-8892688959095004199.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-9076627318491808874.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-950510556330372640.dll C:\Users\Luca\AppData\Local\Temp\SkypeSetup.exe C:\Users\Luca\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-09-04 19:42 ==================== Ende von FRST.txt ============================ |
09.09.2016, 13:53 | #2 |
| Win8.1: Antivir findet Trojaner - was nun? Zweiter Teil:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-08-2016 durchgeführt von Familie Schütz (09-09-2016 14:26:54) Gestartet von C:\Users\Familie Schütz\Desktop Windows 8.1 (Update) (X64) (2015-10-14 19:17:54) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1976660754-2451958475-3698774454-500 - Administrator - Disabled) Familie Schütz (S-1-5-21-1976660754-2451958475-3698774454-1001 - Administrator - Enabled) => C:\Users\Familie Schütz Gast (S-1-5-21-1976660754-2451958475-3698774454-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1976660754-2451958475-3698774454-1003 - Limited - Enabled) Luca (S-1-5-21-1976660754-2451958475-3698774454-1004 - Limited - Enabled) => C:\Users\Luca ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.2 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.2 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{ED58E095-DBF7-FD50-6290-137EC1723430}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.20.59 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{6052a753-acc6-4c02-b5a8-70962ff8e0a4}) (Version: 1.2.69.16114 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.2.69.16114 - Avira Operations GmbH & Co. KG) Hidden Benutzerhandbücher (x32 Version: 3.0.0.3 - Lenovo) Hidden Camtasia Studio 8 (HKLM-x32\...\{F6EC4C4E-C87B-4F50-851B-1C86E0C94F00}) (Version: 8.6.0.2055 - TechSmith Corporation) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.32.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc) FileZilla Client 3.16.1 (HKLM-x32\...\FileZilla Client) (Version: 3.16.1 - Tim Kosse) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Gramblr (HKLM\...\Gramblr) (Version: 2.4.6 - Gramblr Team) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HP Deskjet 1000 J110 series - Grundlegende Software für das Gerät (HKLM\...\{CED47C99-8892-4956-BCA7-CC3123531371}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.30.1072 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4099 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.3.1001 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1449.356) (HKLM\...\{302600C1-6BDF-4FD1-1411-148929CC1385}) (Version: 17.1.1411.0506 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Intel® PROSet/Wireless Software (HKLM-x32\...\{6535d76a-59fb-4935-b2c5-cd61917c4a4b}) (Version: 17.16.0 - Intel Corporation) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Lenovo App Services (HKLM\...\Lenovo App Services) (Version: 0.200.8.201 - Lenovo) Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11068 - Realtek Semiconductor Corp.) Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.) Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 2.0.0.19b - Lenovo) Lenovo PhoneCompanion (x32 Version: 2.0.0.19b - Lenovo) Hidden Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.5.2624.01 - CyberLink Corp.) Lenovo Photo Master (x32 Version: 1.5.2624.01 - CyberLink Corp.) Hidden Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6806.52 - CyberLink Corp.) Lenovo PowerDVD10 (x32 Version: 10.0.6806.52 - CyberLink Corp.) Hidden Lenovo Solution Center (HKLM\...\{15730627-A3E2-4EBA-A431-CAD867DADFFD}) (Version: 2.8.002.00 - Lenovo Group Limited) Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.1.14.6181 - Lenovo) LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 2.0.0.6 - Ihr Firmenname) LenovoUtility (x32 Version: 2.0.0.6 - Ihr Firmenname) Hidden Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7167.2040 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Movavi Video Editor 11 (HKLM-x32\...\Movavi Video Editor 11) (Version: 11.2.0 - Movavi) Mozilla Firefox 48.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 de)) (Version: 48.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla) NBTExplorer (HKLM-x32\...\{06107EDA-5B85-4CEC-AB1E-8350DEC15231}) (Version: 2.7.4.0 - Justin Aquadro) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team) OEM Application Profile (HKLM-x32\...\{1D464EFF-EC8B-F225-2F74-F74143200DDF}) (Version: 1.00.0000 - Ihr Firmenname) Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7167.2040 - Microsoft Corporation) Hidden OneKey Optimizer (HKLM-x32\...\InstallShield_{D5D573DC-D989-4769-9B56-D6A7EA503D7F}) (Version: 1.2.24.07 - Lenovo) OneKey Optimizer (x32 Version: 1.2.24.07 - Lenovo) Hidden OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39063 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7469 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games) Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.) Small Cash Kassensystem (HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\...\Small Cash Kassensystem) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.143 - Synaptics Incorporated) TaylorCom Software 3000 (HKLM-x32\...\TaylorCom Software 3000) (Version: 3000 - TaylorCom) TeamSpeak 3 Client (HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation) USB Flash Security Ver.4.1.12 (HKLM-x32\...\KASHU_UsbEnterVer.4.1.12) (Version: Ver.4.1.12 - KASHU SYSTEM DESIGN INC.) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Windows-Treiberpaket - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo) Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo) WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-1976660754-2451958475-3698774454-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) CustomCLSID: HKU\S-1-5-21-1976660754-2451958475-3698774454-1004_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Luca\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileCoAuthLib64.dll () CustomCLSID: HKU\S-1-5-21-1976660754-2451958475-3698774454-1004_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Luca\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {0FE3E764-D348-4E57-A633-7F04A3751829} - System32\Tasks\{BBB31CA8-DF60-4C38-9EF8-99581B6E569C} => pcalua.exe -a E:\eFilmLt.exe -d E:\ Task: {1083C3EC-988E-4490-813B-9CB1DBCA377E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-08-11] (Microsoft Corporation) Task: {35B39342-678B-4479-A383-5D4C61737488} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13] (Adobe Systems Incorporated) Task: {401EEFD4-6A62-4B34-AEDB-B91F669C1546} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-01-19] (Lenovo) Task: {4C87FE0B-8E6C-4BE3-BBA6-89C06ABAF3DE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-08-11] (Microsoft Corporation) Task: {4E5AEED8-0F4E-4A3A-9F82-05A690108326} - System32\Tasks\update-S-1-5-21-1976660754-2451958475-3698774454-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {56FF05E2-34BA-4F68-90F4-DFCB4BD46B83} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-09-02] (Lenovo) Task: {629BAB24-B707-4639-AFBD-0978F1BB8BA4} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo) Task: {66EE4A22-EB6F-4195-9589-2BD355121153} - System32\Tasks\Lenovo App Services => C:\ProgramData\Lenovo App Services\Engine\LenovoAppServices.exe [2016-04-27] (Lenovo) Task: {6C745F9E-B57C-4DA0-87D0-F8E5300A9F4C} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Luca\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-28] (Microsoft Corporation) Task: {741CE3F1-0130-4BE5-9770-1AC80A23FB80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-24] (Google Inc.) Task: {8A4153F6-F8DE-4C16-977C-500D942C4804} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-24] (Google Inc.) Task: {8B2EB5D9-6A81-44EE-AD01-C47CFC6587A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {95487E3A-FF7E-46BA-BCC9-881288221BFE} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1976660754-2451958475-3698774454-1004 => C:\Users\Familie Schütz\AppData\Local\Microsoft\OneDrive\OneDrive.exe Task: {A827E0F6-5B87-458E-8FC2-8AF9859B5DCC} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-01-19] () Task: {BF2B07FD-44DC-4691-8CA3-C5C338AD98E2} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-01-19] (Lenovo) Task: {C4DD34B6-C854-4A4B-9799-84D855E7257E} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe Task: {C71BED56-DBD5-45A1-9232-EC7FC0C83D4D} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {CB8CB121-6F16-4D26-9ABB-3260AFE1CADC} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] () Task: {CEE07A94-2CE1-43D3-8042-3FAE293D402B} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {D2D6EB32-5EBC-4797-B391-84B1BF5D3099} - System32\Tasks\AdobeAAMUpdater-1.0-Schütz-Luca => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated) Task: {DB73D877-CAD2-4151-8D76-A97EFA601D4E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-08-12] (Microsoft Corporation) Task: {F1175755-5A3B-472F-B278-07EC92481937} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-01-19] () Task: {F6D452FD-B8D4-450B-96AA-00DE156B729A} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.) Task: {F82FECDE-2D04-4131-9A06-1B2836A0B090} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-08-25] (Microsoft Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-1976660754-2451958475-3698774454-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-06-10 04:46 - 2015-01-27 15:34 - 00016920 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\FbServicePS.dll 2016-03-16 12:17 - 2016-03-16 12:17 - 00052912 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll 2015-06-10 04:40 - 2012-04-24 12:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2015-06-10 04:36 - 2015-06-10 04:36 - 00068880 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe 2015-06-10 04:36 - 2015-06-10 04:36 - 00672016 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfDataStorageInterface.dll 2015-06-10 04:46 - 2015-03-30 15:04 - 00037672 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\Metric.dll 2015-06-10 04:46 - 2015-03-30 15:04 - 00166696 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\Lenovo.MetricCollectionMFCx64.dll 2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2015-06-09 21:24 - 2015-02-04 20:35 - 00391784 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-06-10 04:35 - 2015-06-10 04:35 - 00791368 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe 2015-06-10 04:35 - 2015-06-10 04:35 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll 2015-06-10 04:46 - 2015-03-30 15:05 - 00050472 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\res_GR_German_DEU.dll 2015-06-10 04:44 - 2015-06-10 04:43 - 00815104 _____ () C:\Program Files\Lenovo PhoneCompanion\adb.exe 2015-06-10 04:35 - 2014-10-22 10:15 - 00644080 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe 2016-04-01 23:17 - 2016-04-01 23:17 - 31679664 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2015-06-10 04:35 - 2014-10-22 10:15 - 00410096 _____ () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe 2015-06-10 04:46 - 2015-01-27 15:34 - 00159256 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\FbApi.dll 2015-06-10 04:46 - 2015-03-30 15:05 - 00036136 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\zd.dll 2015-06-10 04:46 - 2015-06-10 04:46 - 00019232 _____ () C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\Lenovo.MetricCollectionSDK\v4.0_1.1.9.0__d43be3ee47b19ecb\Lenovo.MetricCollectionSDK.dll 2015-06-10 04:36 - 2015-06-10 04:36 - 00108304 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfCredProv.dll 2016-01-04 20:18 - 2016-01-26 19:35 - 09036880 _____ () C:\Program Files\Gramblr\gramblr.exe 2015-06-10 04:02 - 2015-02-09 05:18 - 00124440 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe 2016-02-21 23:38 - 2016-02-21 23:38 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2015-06-10 04:40 - 2014-07-04 06:35 - 00627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll 2014-07-04 12:35 - 2014-07-04 12:35 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll 2016-04-07 11:44 - 2016-04-07 11:44 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2014-10-10 09:37 - 2014-10-10 09:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-03-29 17:19 - 2016-03-29 17:19 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-03-29 17:19 - 2016-03-29 17:19 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-03-29 17:19 - 2016-03-29 17:19 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2016-03-29 17:19 - 2016-03-29 17:19 - 00126464 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-04-07 11:35 - 2016-04-07 11:35 - 00090304 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll 2016-03-29 17:19 - 2016-03-29 17:19 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node 2015-06-10 04:19 - 2015-01-22 19:18 - 02201088 _____ () C:\Program Files\Lenovo\Communications Utility\cxcore210.dll 2015-06-10 04:19 - 2015-01-22 19:18 - 02085888 _____ () C:\Program Files\Lenovo\Communications Utility\cv210.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 15:25 - 2016-03-17 17:38 - 00000904 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg HKU\S-1-5-21-1976660754-2451958475-3698774454-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Luca\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{8E434D43-E64D-48C0-B819-2E45215392C8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{2AC04613-91A0-4407-A804-8D0B27B5DFA9}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{3DF639D7-E644-4988-857C-CBB94875B9D8}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{3A8A42A7-761B-455D-832C-952BDB08E9A6}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{E6D6C3CF-C348-4EB4-A951-6C4599EFE264}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{2F768628-1E35-4D1B-BCB9-E1F587C77695}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE FirewallRules: [{BF9758A5-9638-4FA2-8920-1E93FAEFA9CD}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{F8AC99EE-1CA4-46A8-B047-FCD36245C0E9}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{260BB7CE-80A7-4533-9863-D1774715BDF3}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe FirewallRules: [{DDC73664-1DC7-4070-BC3F-BB665C79F9A1}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe FirewallRules: [{EF7678B9-2C84-49BB-B959-272168A38751}] => (Allow) LPort=55100 FirewallRules: [{6C0C3A92-EE50-4739-B6B9-212C704539C6}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe FirewallRules: [{0CEE289A-5570-472C-8281-ADE8F8E56101}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{20A0F28B-D1BE-45E8-B887-B333EBED90A3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{4D470D4F-B340-4FF3-855F-005EFAF18DF1}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{6459F152-45B5-4B54-8DB3-349034C4800F}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{8AEED6EF-4996-4FEB-8A6D-6EA053003A9A}] => (Allow) C:\Users\Familie Schütz\AppData\Local\Microsoft\OneDrive\OneDrive.exe FirewallRules: [{7AEA3161-60EB-4EAE-9BA3-088992E29240}] => (Allow) C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\USBSetup.exe FirewallRules: [{361953C0-6BD6-4F51-BDF6-5BB98D94D270}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{76449607-781E-4E1B-AAA6-A1DFCD10A2FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{2CCF8C1F-7916-461B-A4F6-385AE0468F23}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [UDP Query User{3D7443D0-22A5-4D06-A7B7-261D85C8F65B}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [TCP Query User{A952F748-7120-4990-ACB8-F0562185FFBD}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{2BD60EAB-3CDF-4BFC-A9F1-934DD27681F9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{BE6499DD-DF49-4DD9-9A4D-91B13E9C5F09}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [UDP Query User{77BCEB30-FC09-4D5A-8030-DBF5AAF2162F}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [TCP Query User{0FD3678D-68EF-4EED-90B6-6762C90C8F03}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [UDP Query User{75525065-3865-4463-96F8-BC30FC22FE54}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [{482906CB-92B1-49E9-AE54-F81BE75EFED2}] => (Allow) LPort=8317 FirewallRules: [TCP Query User{AA795EC5-9617-4FD9-A21D-700FD8F97FF6}C:\program files (x86)\java\jre1.8.0_71\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\java.exe FirewallRules: [UDP Query User{A6B3BD41-AA53-443B-9466-72DBB472C295}C:\program files (x86)\java\jre1.8.0_71\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\java.exe FirewallRules: [TCP Query User{BD7A30CA-AF25-4CA2-B85B-49E7718DFA9C}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{71B12639-D79A-49EB-865E-E4256791DDD4}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{0BA9B4D6-09C2-4E68-ACD2-CAB1BBBBED2C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{5867F8AD-EECF-4093-BB8E-D726C223440A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{FB997B5F-3FE6-45C9-AF8C-FA9306F3BA33}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{580E744F-F470-4080-B893-C6FD29B38F96}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [TCP Query User{1CCDFFA6-568F-4106-A466-02C0B80A87B8}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\java.exe FirewallRules: [UDP Query User{146F3A1A-5002-4778-AEFE-507B3DB673C9}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\java.exe FirewallRules: [TCP Query User{84B11C74-E465-4B58-8745-D60DC3A42678}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{F6D788B5-2784-4C1B-9767-C37840BACC62}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [TCP Query User{7CA4A3E4-7F24-426F-A3D5-2D43D82E41D1}C:\program files\java\jdk1.7.0_79\bin\java.exe] => (Block) C:\program files\java\jdk1.7.0_79\bin\java.exe FirewallRules: [UDP Query User{B73D4BB9-C51E-4D64-9756-EBC3D944EA22}C:\program files\java\jdk1.7.0_79\bin\java.exe] => (Block) C:\program files\java\jdk1.7.0_79\bin\java.exe FirewallRules: [{8E5E3CEB-5C1D-4242-9782-B4E5A0148E24}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [TCP Query User{0E8E853D-F2FF-46D5-83CB-DCBF9AE5F83C}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [UDP Query User{CEF4FF36-D0E2-4A40-9D61-F3EE048422C5}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [{0BF51F3B-1310-4998-B1DF-C1416710A164}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9C1CB7E8-5FD5-4A0C-8FA1-D9F48D0354AD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{483CD994-DCF9-4D7D-B671-A3DCC162CCC1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{D983FEF2-DE28-4AFA-A430-94531CF7E2A0}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{DB979F76-E6D1-44D2-A4CA-FB619C94C422}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wiederherstellungspunkte ========================= 04-09-2016 19:36:56 Geplanter Prüfpunkt ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (09/09/2016 02:06:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: OnekeyOptimizerUpdata.exe, Version: 1.2.24.5, Zeitstempel: 0x551a0769 Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff Ausnahmecode: 0xc0000409 Fehleroffset: 0x0000000000074a30 ID des fehlerhaften Prozesses: 0x1aec Startzeit der fehlerhaften Anwendung: 0x01d20a912dafa2de Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe Pfad des fehlerhaften Moduls: C:\Program Files\Lenovo\OneKey Optimizer\bin\MSVCR120.dll Berichtskennung: c63d56ce-7685-11e6-833e-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/09/2016 02:05:54 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm firefox.exe, Version 48.0.2.6079 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: c58 Startzeit: 01d20a912cb2a5c6 Endzeit: 78 Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Berichts-ID: bc036ae9-7685-11e6-833e-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/09/2016 04:16:14 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: gramblr.exe, Version: 0.0.0.0, Zeitstempel: 0x56a6476f Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4ebb Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000054a71 ID des fehlerhaften Prozesses: 0x19d0 Startzeit der fehlerhaften Anwendung: 0x01d209fceed99960 Pfad der fehlerhaften Anwendung: C:\Program Files\Gramblr\gramblr.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: 61b70836-7633-11e6-833e-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/08/2016 03:37:15 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/08/2016 03:37:15 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/08/2016 12:25:10 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/08/2016 12:25:10 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/08/2016 12:14:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: gramblr.exe, Version: 0.0.0.0, Zeitstempel: 0x56a6476f Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4ebb Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000054a71 ID des fehlerhaften Prozesses: 0xff0 Startzeit der fehlerhaften Anwendung: 0x01d209b91df5d9f4 Pfad der fehlerhaften Anwendung: C:\Program Files\Gramblr\gramblr.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: fb5c3a84-75ac-11e6-833e-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/08/2016 12:12:43 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/07/2016 05:04:18 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Systemfehler: ============= Error: (09/09/2016 12:25:53 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (09/09/2016 12:17:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 5 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/09/2016 04:18:40 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (09/09/2016 04:16:16 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 4 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/08/2016 08:17:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (09/08/2016 08:15:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 3 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/08/2016 06:07:00 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (09/08/2016 01:06:49 PM) (Source: DCOM) (EventID: 10010) (User: Schütz) Description: Der Server "{1B1F472E-3221-4826-97DB-2C2324D389AE}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (09/08/2016 01:06:19 PM) (Source: DCOM) (EventID: 10010) (User: Schütz) Description: Der Server "{BF6C1E47-86EC-4194-9CE5-13C15DCB2001}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (09/08/2016 12:59:11 PM) (Source: DCOM) (EventID: 10010) (User: Schütz) Description: Der Server "{BF6C1E47-86EC-4194-9CE5-13C15DCB2001}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Prozentuale Nutzung des RAM: 73% Installierter physikalischer RAM: 4009.84 MB Verfügbarer physikalischer RAM: 1067.37 MB Summe virtueller Speicher: 8105.84 MB Verfügbarer virtueller Speicher: 4312.67 MB ==================== Laufwerke ================================ Drive c: (Windows8_OS) (Fixed) (Total:425.79 GB) (Free:200.89 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.24 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 1946CBF9) Partition: GPT. ==================== Ende von Addition.txt ============================ Code:
ATTFilter Free Antivirus Erstellungsdatum der Reportdatei: Samstag, 3. September 2016 22:33 Das Programm läuft als uneingeschränkte Vollversion. Online-Dienste stehen zur Verfügung. Lizenznehmer : Free Seriennummer : 0000149996-AVHOE-0000001 Plattform : Windows 8.1 Windowsversion : (plain) [6.3.9600] Boot Modus : Normal gebootet Benutzername : Familie Schütz Computername : SCHÜTZ Versionsinformationen: build.dat : 15.0.19.164 92923 Bytes 18.08.2016 15:52:00 AVSCAN.EXE : 15.0.19.163 1271904 Bytes 26.08.2016 08:50:55 AVSCANRC.DLL : 15.0.19.153 66256 Bytes 26.08.2016 08:50:55 LUKE.DLL : 15.0.19.153 68864 Bytes 26.08.2016 08:51:09 AVSCPLR.DLL : 15.0.19.163 132760 Bytes 26.08.2016 08:50:56 REPAIR.DLL : 15.0.19.163 678624 Bytes 26.08.2016 08:50:54 repair.rdf : 1.0.19.70 1749971 Bytes 01.09.2016 10:14:10 AVREG.DLL : 15.0.19.163 354168 Bytes 26.08.2016 08:50:53 avlode.dll : 15.0.19.163 735304 Bytes 26.08.2016 08:50:52 avlode.rdf : 14.0.5.44 101841 Bytes 18.07.2016 11:19:29 XBV00004.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00005.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00006.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00007.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00008.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00009.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00010.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00011.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00012.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:41 XBV00013.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00014.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00015.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00016.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00017.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00018.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00019.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00020.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00021.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00022.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00023.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00024.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00025.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00026.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00027.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00028.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00029.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00030.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00031.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00032.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00033.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00034.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00035.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00036.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00037.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00038.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00039.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:42 XBV00040.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:43 XBV00041.VDF : 8.12.107.34 2048 Bytes 27.07.2016 13:00:43 XBV00155.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:55 XBV00156.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:55 XBV00157.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:55 XBV00158.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00159.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00160.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00161.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00162.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00163.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00164.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00165.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00166.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00167.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00168.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00169.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00170.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00171.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00172.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00173.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00174.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00175.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00176.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00177.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00178.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00179.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00180.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00181.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00182.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00183.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:56 XBV00184.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00185.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00186.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00187.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00188.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00189.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00190.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00191.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00192.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00193.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00194.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00195.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:57 XBV00196.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00197.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00198.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00199.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00200.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00201.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00202.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00203.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00204.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00205.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00206.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00207.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00208.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00209.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00210.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00211.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00212.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00213.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00214.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00215.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00216.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00217.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00218.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00219.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00220.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00221.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00222.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00223.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00224.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00225.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:58 XBV00226.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00227.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00228.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00229.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00230.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00231.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00232.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00233.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00234.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00235.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00236.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00237.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00238.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00239.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00240.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00241.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00242.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00243.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00244.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00245.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00246.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00247.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:40:59 XBV00248.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00249.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00250.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00251.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00252.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00253.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00254.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00255.VDF : 8.12.113.174 2048 Bytes 22.08.2016 18:41:00 XBV00000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 13:51:43 XBV00001.VDF : 7.11.237.0 48041984 Bytes 02.06.2015 17:19:11 XBV00002.VDF : 7.12.106.228 44941312 Bytes 27.07.2016 13:00:41 XBV00003.VDF : 8.12.113.174 5299200 Bytes 22.08.2016 18:40:47 XBV00042.VDF : 8.12.113.176 11264 Bytes 22.08.2016 18:40:47 XBV00043.VDF : 8.12.113.180 45568 Bytes 22.08.2016 18:40:47 XBV00044.VDF : 8.12.113.184 2048 Bytes 22.08.2016 18:40:47 XBV00045.VDF : 8.12.113.186 23552 Bytes 22.08.2016 18:40:47 XBV00046.VDF : 8.12.113.188 13312 Bytes 22.08.2016 18:40:47 XBV00047.VDF : 8.12.113.190 8704 Bytes 22.08.2016 18:40:47 XBV00048.VDF : 8.12.113.194 40448 Bytes 23.08.2016 18:40:47 XBV00049.VDF : 8.12.113.196 7680 Bytes 23.08.2016 18:40:47 XBV00050.VDF : 8.12.113.198 8704 Bytes 23.08.2016 18:40:47 XBV00051.VDF : 8.12.113.200 14848 Bytes 23.08.2016 18:40:47 XBV00052.VDF : 8.12.113.202 10752 Bytes 23.08.2016 18:40:48 XBV00053.VDF : 8.12.113.204 10752 Bytes 23.08.2016 18:40:48 XBV00054.VDF : 8.12.113.212 65024 Bytes 23.08.2016 18:40:48 XBV00055.VDF : 8.12.113.220 21504 Bytes 23.08.2016 18:40:48 XBV00056.VDF : 8.12.113.226 9216 Bytes 23.08.2016 18:40:48 XBV00057.VDF : 8.12.113.232 16896 Bytes 23.08.2016 18:40:48 XBV00058.VDF : 8.12.113.240 47104 Bytes 24.08.2016 18:40:48 XBV00059.VDF : 8.12.113.242 4608 Bytes 24.08.2016 18:40:48 XBV00060.VDF : 8.12.113.244 14848 Bytes 24.08.2016 18:40:48 XBV00061.VDF : 8.12.113.246 7168 Bytes 24.08.2016 18:40:48 XBV00062.VDF : 8.12.113.248 14848 Bytes 24.08.2016 18:40:48 XBV00063.VDF : 8.12.113.250 2048 Bytes 24.08.2016 18:40:48 XBV00064.VDF : 8.12.113.252 2048 Bytes 24.08.2016 18:40:48 XBV00065.VDF : 8.12.114.10 2048 Bytes 24.08.2016 18:40:49 XBV00066.VDF : 8.12.114.20 69632 Bytes 24.08.2016 18:40:49 XBV00067.VDF : 8.12.114.30 10752 Bytes 24.08.2016 18:40:49 XBV00068.VDF : 8.12.114.40 8704 Bytes 24.08.2016 18:40:49 XBV00069.VDF : 8.12.114.50 7680 Bytes 24.08.2016 18:40:49 XBV00070.VDF : 8.12.114.52 5632 Bytes 24.08.2016 18:40:50 XBV00071.VDF : 8.12.114.54 9728 Bytes 24.08.2016 18:40:50 XBV00072.VDF : 8.12.114.58 36864 Bytes 25.08.2016 18:40:50 XBV00073.VDF : 8.12.114.60 9728 Bytes 25.08.2016 18:40:50 XBV00074.VDF : 8.12.114.62 2560 Bytes 25.08.2016 18:40:50 XBV00075.VDF : 8.12.114.64 12800 Bytes 25.08.2016 18:40:50 XBV00076.VDF : 8.12.114.66 24576 Bytes 25.08.2016 18:40:50 XBV00077.VDF : 8.12.114.70 51200 Bytes 25.08.2016 18:40:50 XBV00078.VDF : 8.12.114.72 29184 Bytes 25.08.2016 18:40:50 XBV00079.VDF : 8.12.114.74 13824 Bytes 25.08.2016 18:40:50 XBV00080.VDF : 8.12.114.76 13312 Bytes 25.08.2016 18:40:51 XBV00081.VDF : 8.12.114.78 9216 Bytes 25.08.2016 08:51:12 XBV00082.VDF : 8.12.114.80 7168 Bytes 25.08.2016 08:51:12 XBV00083.VDF : 8.12.114.82 10752 Bytes 25.08.2016 08:51:12 XBV00084.VDF : 8.12.114.94 100864 Bytes 26.08.2016 08:51:12 XBV00085.VDF : 8.12.114.96 32768 Bytes 26.08.2016 08:51:12 XBV00086.VDF : 8.12.114.98 32768 Bytes 26.08.2016 08:51:13 XBV00087.VDF : 8.12.114.108 22528 Bytes 26.08.2016 08:51:13 XBV00088.VDF : 8.12.114.128 20480 Bytes 26.08.2016 11:19:57 XBV00089.VDF : 8.12.114.140 107520 Bytes 26.08.2016 12:31:13 XBV00090.VDF : 8.12.114.150 22016 Bytes 26.08.2016 12:31:13 XBV00091.VDF : 8.12.114.152 8192 Bytes 26.08.2016 12:31:13 XBV00092.VDF : 8.12.114.154 8704 Bytes 26.08.2016 12:31:13 XBV00093.VDF : 8.12.114.156 7168 Bytes 26.08.2016 12:31:13 XBV00094.VDF : 8.12.114.158 8704 Bytes 26.08.2016 12:31:13 XBV00095.VDF : 8.12.114.164 68608 Bytes 27.08.2016 12:31:13 XBV00096.VDF : 8.12.114.176 32256 Bytes 27.08.2016 10:34:37 XBV00097.VDF : 8.12.114.184 2048 Bytes 27.08.2016 10:34:37 XBV00098.VDF : 8.12.114.192 16896 Bytes 27.08.2016 10:34:37 XBV00099.VDF : 8.12.114.200 22016 Bytes 27.08.2016 10:34:37 XBV00100.VDF : 8.12.114.208 30720 Bytes 28.08.2016 10:34:37 XBV00101.VDF : 8.12.114.220 7168 Bytes 28.08.2016 10:34:37 XBV00102.VDF : 8.12.114.222 38400 Bytes 28.08.2016 18:49:34 XBV00103.VDF : 8.12.114.224 55296 Bytes 28.08.2016 18:49:34 XBV00104.VDF : 8.12.114.226 35328 Bytes 28.08.2016 18:49:34 XBV00105.VDF : 8.12.114.234 119808 Bytes 29.08.2016 18:49:34 XBV00106.VDF : 8.12.114.246 2048 Bytes 29.08.2016 18:49:34 XBV00107.VDF : 8.12.115.2 14848 Bytes 29.08.2016 18:49:34 XBV00108.VDF : 8.12.115.12 13824 Bytes 29.08.2016 18:49:34 XBV00109.VDF : 8.12.115.20 14848 Bytes 29.08.2016 18:49:34 XBV00110.VDF : 8.12.115.24 69632 Bytes 29.08.2016 18:49:34 XBV00111.VDF : 8.12.115.26 3072 Bytes 29.08.2016 18:49:34 XBV00112.VDF : 8.12.115.28 6656 Bytes 29.08.2016 18:49:34 XBV00113.VDF : 8.12.115.30 9728 Bytes 29.08.2016 12:31:21 XBV00114.VDF : 8.12.115.32 7168 Bytes 29.08.2016 12:31:21 XBV00115.VDF : 8.12.115.34 12800 Bytes 29.08.2016 12:31:21 XBV00116.VDF : 8.12.115.38 37376 Bytes 30.08.2016 12:31:21 XBV00117.VDF : 8.12.115.40 4608 Bytes 30.08.2016 12:31:21 XBV00118.VDF : 8.12.115.42 37888 Bytes 30.08.2016 12:31:21 XBV00119.VDF : 8.12.115.44 2048 Bytes 30.08.2016 12:31:21 XBV00120.VDF : 8.12.115.54 21504 Bytes 30.08.2016 12:31:22 XBV00121.VDF : 8.12.115.66 61952 Bytes 30.08.2016 18:07:01 XBV00122.VDF : 8.12.115.72 20480 Bytes 30.08.2016 20:08:35 XBV00123.VDF : 8.12.115.78 13312 Bytes 30.08.2016 20:08:35 XBV00124.VDF : 8.12.115.80 11264 Bytes 30.08.2016 10:14:08 XBV00125.VDF : 8.12.115.84 59392 Bytes 31.08.2016 10:14:09 XBV00126.VDF : 8.12.115.86 46080 Bytes 31.08.2016 10:14:09 XBV00127.VDF : 8.12.115.88 9728 Bytes 31.08.2016 10:14:09 XBV00128.VDF : 8.12.115.94 10752 Bytes 31.08.2016 10:14:09 XBV00129.VDF : 8.12.115.106 14848 Bytes 31.08.2016 10:14:09 XBV00130.VDF : 8.12.115.136 2048 Bytes 31.08.2016 10:14:09 XBV00131.VDF : 8.12.115.146 57344 Bytes 31.08.2016 10:14:09 XBV00132.VDF : 8.12.115.156 9728 Bytes 31.08.2016 10:14:09 XBV00133.VDF : 8.12.115.166 12288 Bytes 31.08.2016 10:14:09 XBV00134.VDF : 8.12.115.176 10752 Bytes 31.08.2016 10:14:09 XBV00135.VDF : 8.12.115.186 7168 Bytes 31.08.2016 10:14:09 XBV00136.VDF : 8.12.115.190 35840 Bytes 01.09.2016 10:14:09 XBV00137.VDF : 8.12.115.192 13312 Bytes 01.09.2016 10:14:09 XBV00138.VDF : 8.12.115.194 44032 Bytes 01.09.2016 10:14:09 XBV00139.VDF : 8.12.115.200 14336 Bytes 01.09.2016 10:42:43 XBV00140.VDF : 8.12.115.204 52224 Bytes 01.09.2016 10:42:43 XBV00141.VDF : 8.12.115.206 14848 Bytes 01.09.2016 10:42:43 XBV00142.VDF : 8.12.115.208 8704 Bytes 01.09.2016 10:42:43 XBV00143.VDF : 8.12.115.210 7168 Bytes 01.09.2016 10:42:43 XBV00144.VDF : 8.12.115.212 8704 Bytes 01.09.2016 10:42:43 XBV00145.VDF : 8.12.115.224 35328 Bytes 02.09.2016 10:42:43 XBV00146.VDF : 8.12.115.232 24064 Bytes 02.09.2016 10:42:43 XBV00147.VDF : 8.12.115.240 20992 Bytes 02.09.2016 10:42:43 XBV00148.VDF : 8.12.115.248 16384 Bytes 02.09.2016 12:42:38 XBV00149.VDF : 8.12.115.252 48128 Bytes 02.09.2016 19:32:09 XBV00150.VDF : 8.12.115.254 27648 Bytes 02.09.2016 19:32:09 XBV00151.VDF : 8.12.116.0 15360 Bytes 02.09.2016 21:32:13 XBV00152.VDF : 8.12.116.2 29184 Bytes 02.09.2016 10:35:15 XBV00153.VDF : 8.12.116.8 83968 Bytes 03.09.2016 10:35:15 XBV00154.VDF : 8.12.116.10 12288 Bytes 03.09.2016 12:50:38 LOCAL001.VDF : 8.12.116.10 171066368 Bytes 03.09.2016 12:51:38 Engineversion : 8.3.40.152 AEBB.DLL : 8.1.3.0 59296 Bytes 19.11.2015 17:38:03 AECORE.DLL : 8.3.12.4 247720 Bytes 21.03.2016 13:29:01 AECRYPTO.DLL : 8.2.0.2 128936 Bytes 12.05.2016 09:16:51 AEDROID.DLL : 8.4.3.374 2722672 Bytes 17.08.2016 14:15:22 AEEMU.DLL : 8.1.3.8 404328 Bytes 18.03.2016 10:54:16 AEEXP.DLL : 8.4.2.202 309160 Bytes 05.08.2016 18:16:25 AEGEN.DLL : 8.1.8.158 571304 Bytes 01.09.2016 10:14:07 AEHELP.DLL : 8.3.2.10 284584 Bytes 15.02.2016 12:24:52 AEHEUR.DLL : 8.1.4.2478 10472304 Bytes 01.09.2016 10:14:08 AELIBINF.DLL : 8.2.1.4 68464 Bytes 12.05.2016 09:16:52 AEMOBILE.DLL : 8.1.15.0 338800 Bytes 17.08.2016 14:15:22 AEOFFICE.DLL : 8.3.5.30 498544 Bytes 25.08.2016 18:40:45 AEPACK.DLL : 8.4.2.22 805744 Bytes 25.08.2016 18:40:45 AERDL.DLL : 8.2.1.46 812960 Bytes 19.08.2016 11:25:57 AESBX.DLL : 8.2.22.4 1633128 Bytes 20.06.2016 14:30:16 AESCN.DLL : 8.3.4.6 141216 Bytes 04.05.2016 14:29:23 AESCRIPT.DLL : 8.3.0.236 665512 Bytes 01.09.2016 10:14:08 AEVDF.DLL : 8.3.3.4 142184 Bytes 21.03.2016 13:29:01 AVWINLL.DLL : 15.0.19.153 29200 Bytes 26.08.2016 08:50:48 AVPREF.DLL : 15.0.19.153 55456 Bytes 26.08.2016 08:50:53 AVREP.DLL : 15.0.19.153 223400 Bytes 26.08.2016 08:50:53 AVARKT.DLL : 15.0.19.153 230544 Bytes 26.08.2016 08:50:49 SQLITE3.DLL : 15.0.19.153 461264 Bytes 26.08.2016 08:51:11 AVSMTP.DLL : 15.0.19.153 81712 Bytes 26.08.2016 08:50:56 NETNT.DLL : 15.0.19.153 18392 Bytes 26.08.2016 08:51:09 CommonImageRc.dll: 15.0.19.153 4307808 Bytes 26.08.2016 08:50:48 CommonTextRc.dll: 15.0.19.153 71912 Bytes 26.08.2016 08:50:49 Konfiguration für den aktuellen Suchlauf: Job Name..............................: Vollständige Prüfung Konfigurationsdatei...................: C:\Program Files (x86)\Avira\Antivirus\sysscan.avp Protokollierung.......................: standard Primäre Aktion........................: Interaktiv Sekundäre Aktion......................: Ignorieren Durchsuche Masterbootsektoren.........: ein Durchsuche Bootsektoren...............: ein Bootsektoren..........................: C:, D:, Durchsuche aktive Programme...........: ein Laufende Programme erweitert..........: ein Durchsuche Registrierung..............: ein Suche nach Rootkits...................: ein Integritätsprüfung von Systemdateien..: aus Prüfe alle Dateien....................: Alle Dateien Durchsuche Archive....................: ein Rekursionstiefe einschränken..........: 20 Archiv Smart Extensions...............: ein Makrovirenheuristik...................: ein Dateiheuristik........................: erweitert Auszulassende Dateien.................: Beginn des Suchlaufs: Samstag, 3. September 2016 22:33 Der Suchlauf über die Bootsektoren wird begonnen: Bootsektor 'HDD0(C:, D:)' [INFO] Es wurde kein Virus gefunden! Der Suchlauf nach versteckten Objekten wird begonnen. Der Bootsektor wurde aufgrund des inkompatiblen Formats nicht gescannt. Der Suchlauf über gestartete Prozesse wird begonnen: Durchsuche Prozess 'svchost.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'dwm.exe' - '41' Modul(e) wurden durchsucht Durchsuche Prozess 'atiesrxx.exe' - '23' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '96' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '168' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '71' Modul(e) wurden durchsucht Durchsuche Prozess 'igfxCUIService.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '127' Modul(e) wurden durchsucht Durchsuche Prozess 'atieclxx.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '69' Modul(e) wurden durchsucht Durchsuche Prozess 'WLANExt.exe' - '76' Modul(e) wurden durchsucht Durchsuche Prozess 'conhost.exe' - '14' Modul(e) wurden durchsucht Durchsuche Prozess 'spoolsv.exe' - '83' Modul(e) wurden durchsucht Durchsuche Prozess 'sched.exe' - '77' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '84' Modul(e) wurden durchsucht Durchsuche Prozess 'armsvc.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'AdobeUpdateService.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'AGSService.exe' - '37' Modul(e) wurden durchsucht Durchsuche Prozess 'avguard.exe' - '108' Modul(e) wurden durchsucht Durchsuche Prozess 'AVControlCenter32.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'avfaudiosw.exe' - '42' Modul(e) wurden durchsucht Durchsuche Prozess 'OfficeClickToRun.exe' - '112' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'dashost.exe' - '56' Modul(e) wurden durchsucht Durchsuche Prozess 'EvtEng.exe' - '58' Modul(e) wurden durchsucht Durchsuche Prozess 'FbService.exe' - '23' Modul(e) wurden durchsucht Durchsuche Prozess 'ibtsiva.exe' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'OKOUpdataService.exe' - '30' Modul(e) wurden durchsucht Durchsuche Prozess 'SettingsService.exe' - '46' Modul(e) wurden durchsucht Durchsuche Prozess 'LenovoSetSvr.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'LenovoWiFiHotspotSvr.exe' - '53' Modul(e) wurden durchsucht Durchsuche Prozess 'OKOControlSvc.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'PhoneCompanionPusher.exe' - '14' Modul(e) wurden durchsucht Durchsuche Prozess 'RegSrvc.exe' - '36' Modul(e) wurden durchsucht Durchsuche Prozess 'RichVideo64.exe' - '24' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'SynTPEnhService.exe' - '13' Modul(e) wurden durchsucht Durchsuche Prozess 'VfConnectorService.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'ZeroConfigService.exe' - '74' Modul(e) wurden durchsucht Durchsuche Prozess 'Avira.ServiceHost.exe' - '127' Modul(e) wurden durchsucht Durchsuche Prozess 'avshadow.exe' - '43' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'LenovoUpdate.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '55' Modul(e) wurden durchsucht Durchsuche Prozess 'WUDFHost.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'WUDFHost.exe' - '46' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '51' Modul(e) wurden durchsucht Durchsuche Prozess 'WUDFHost.exe' - '22' Modul(e) wurden durchsucht Durchsuche Prozess 'unsecapp.exe' - '24' Modul(e) wurden durchsucht Durchsuche Prozess 'wmiprvse.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'wmiprvse.exe' - '51' Modul(e) wurden durchsucht Durchsuche Prozess 'DllHost.exe' - '23' Modul(e) wurden durchsucht Durchsuche Prozess 'PresentationFontCache.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'Explorer.EXE' - '233' Modul(e) wurden durchsucht Durchsuche Prozess 'taskhostex.exe' - '41' Modul(e) wurden durchsucht Durchsuche Prozess 'SynTPEnh.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'GoogleCrashHandler.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'GoogleCrashHandler64.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'SYNTPHELPER.EXE' - '18' Modul(e) wurden durchsucht Durchsuche Prozess 'igfxEM.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'igfxHK.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'igfxTray.exe' - '46' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchIndexer.exe' - '59' Modul(e) wurden durchsucht Durchsuche Prozess 'PDVD10Serv.EXE' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'RAVCpl64.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'RAVBg64.exe' - '48' Modul(e) wurden durchsucht Durchsuche Prozess 'RAVBg64.exe' - '48' Modul(e) wurden durchsucht Durchsuche Prozess 'RAVBg64.exe' - '48' Modul(e) wurden durchsucht Durchsuche Prozess 'utility.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'Phone Companion.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'OneKeyOptimizerTray.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'Skype.exe' - '170' Modul(e) wurden durchsucht Durchsuche Prozess 'CLMLSvc_P2G8.exe' - '41' Modul(e) wurden durchsucht Durchsuche Prozess 'adb.exe' - '35' Modul(e) wurden durchsucht Durchsuche Prozess 'avgnt.exe' - '91' Modul(e) wurden durchsucht Durchsuche Prozess 'Creative Cloud.exe' - '103' Modul(e) wurden durchsucht Durchsuche Prozess 'Lightshot.exe' - '49' Modul(e) wurden durchsucht Durchsuche Prozess 'Avira.Systray.exe' - '131' Modul(e) wurden durchsucht Durchsuche Prozess 'AdobeIPCBroker.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'LSCNotify.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorIcon.exe' - '67' Modul(e) wurden durchsucht Durchsuche Prozess 'Adobe Desktop Service.exe' - '109' Modul(e) wurden durchsucht Durchsuche Prozess 'Adobe CEF Helper.exe' - '58' Modul(e) wurden durchsucht Durchsuche Prozess 'CoreSync.exe' - '77' Modul(e) wurden durchsucht Durchsuche Prozess 'CCXProcess.exe' - '8' Modul(e) wurden durchsucht Durchsuche Prozess 'node.exe' - '85' Modul(e) wurden durchsucht Durchsuche Prozess 'conhost.exe' - '15' Modul(e) wurden durchsucht Durchsuche Prozess 'tpknrres.exe' - '55' Modul(e) wurden durchsucht Durchsuche Prozess 'devmonsrv.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'obexsrv.exe' - '42' Modul(e) wurden durchsucht Durchsuche Prozess 'Adobe CEF Helper.exe' - '58' Modul(e) wurden durchsucht Durchsuche Prozess 'CCSDK.exe' - '66' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorDataMgrSvc.exe' - '86' Modul(e) wurden durchsucht Durchsuche Prozess 'jhi_service.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'LMS.exe' - '60' Modul(e) wurden durchsucht Durchsuche Prozess 'AutoUpdate.exe' - '80' Modul(e) wurden durchsucht Durchsuche Prozess 'WinGather.exe' - '44' Modul(e) wurden durchsucht Durchsuche Prozess 'wmpnetwk.exe' - '77' Modul(e) wurden durchsucht Durchsuche Prozess 'OneKeyOptimizer.exe' - '116' Modul(e) wurden durchsucht Durchsuche Prozess 'SystemAgentService.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'LegacyFeatures.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'conhost.exe' - '18' Modul(e) wurden durchsucht Durchsuche Prozess 'PluginCommunication.exe' - '62' Modul(e) wurden durchsucht Durchsuche Prozess 'rundll32.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'vcamsvc.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'cammute.exe' - '42' Modul(e) wurden durchsucht Durchsuche Prozess 'vcamsvchlpr.exe' - '34' Modul(e) wurden durchsucht Durchsuche Prozess 'tpknrsvc.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'LenovoAppServices.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'OfficeC2RClient.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'firefox.exe' - '130' Modul(e) wurden durchsucht Durchsuche Prozess 'rundll32.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '84' Modul(e) wurden durchsucht Durchsuche Prozess 'gramblr.exe' - '34' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '115' Modul(e) wurden durchsucht Durchsuche Prozess 'wsqmcons.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'vssvc.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '9' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchProtocolHost.exe' - '30' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchFilterHost.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'wininit.exe' - '15' Modul(e) wurden durchsucht Durchsuche Prozess 'winlogon.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'lsass.exe' - '62' Modul(e) wurden durchsucht Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen: Die Datei wurde im Zwischenspeicher in 'C:\Program Files (x86)\GhostMouse\GhostMouse.exe' gefunden; der Scan Cloud-Sicherheit wurde übersprungen. SHA256 = 1F616124A774445339469D17165559A925C786092FE4D61FDE86F5D897B5557E Die Registry wurde durchsucht ( '1695' Dateien ). Der Suchlauf über die ausgewählten Dateien wird begonnen: Beginne mit der Suche in 'C:\' <Windows8_OS> [0] Archivtyp: RSRC --> C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$R47K3KF.exe [1] Archivtyp: Runtime Packed --> C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$R8Q55F2.exe [2] Archivtyp: RSRC --> C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$R8Q55F2.exe [3] Archivtyp: Runtime Packed --> C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RD01XV2.exe [4] Archivtyp: RSRC --> C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RD01XV2.exe [5] Archivtyp: Runtime Packed --> C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RG0DYDP.rar [6] Archivtyp: RAR --> Realflow C4D Plugin Mac-Win\Realflow C4D Plugin Mac-Win\Realflow C4D Plugin v2.0.2 WIN.zip [7] Archivtyp: ZIP --> realflow_c4d_v2.0.2_setup.exe [8] Archivtyp: NSIS --> ProgramFilesDir/realflow.cdl [FUND] Ist das Trojanische Pferd TR/Rogue.kdv.689057 [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RG0DYDP.rar [FUND] Ist das Trojanische Pferd TR/Rogue.kdv.689057 Cloud SDK Initialisierung und Lizenz überprüfen erfolgreich. Die Datei 'C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RUOA54Z.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 87ABD9D020CF2E620B58CD949B11BA507C340D06DFCF4F3C8E5CB2CBB28A288C Die Datei 'C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RY8VT6Y.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = F219A5667B990E991A11477EC596A273E815CD9959B70D80C121C9A39BE8F5A8 Die Datei 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins\pi_brokers\64BitMAPIBroker.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 52B6C49EC60FB6C3A9CC6458234D45E9DE0C7D0C4986309CFB8F9E17F2150937 Die Datei 'C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\AASIapp.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 5DE96B7C648A6CDA571061701B0EF3A5322010FEE322E087DBCCB28B3BCED8C6 Die Datei wurde im Zwischenspeicher in 'C:\Program Files (x86)\GhostMouse\GhostMouse.exe' gefunden; der Scan Cloud-Sicherheit wurde übersprungen. SHA256 = 1F616124A774445339469D17165559A925C786092FE4D61FDE86F5D897B5557E Die Datei 'C:\Program Files (x86)\Lenovo\Lenovo Photo Master\reaper_u.dll' wurde durch Cloud-Sicherheit geprüft. SHA256 = 94F9F97DF9E16722AACCF3C55F002683F4743638D28DE952042A2F37D7308064 Die Datei 'C:\Program Files (x86)\Microsoft Office\root\Office16\PerfBoost.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 94817E82FC1352BB5513AE9A0F3C3CA9921C801ECA7561CA64CBCD35F54AAA05 C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\AppvIsvStream64.dll [WARNUNG] Die Datei konnte nicht geöffnet werden! C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\AppvIsvSubsystems64.dll [WARNUNG] Die Datei konnte nicht geöffnet werden! C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\C2R64.dll [WARNUNG] Die Datei konnte nicht geöffnet werden! C:\Users\Familie Schütz\AppData\Local\Temp\dup2patcher.dll [FUND] Ist das Trojanische Pferd TR/Rogue.783872.11 Die Datei 'C:\Users\Familie Schütz\AppData\Local\Temp\DMR\Downloads\152e221a8bef8d2d13c58f995563a1a1\774db37d4235ba867c186fada235f6c1\GhostMouse323-Setup.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 0F70B89165C1ED45E99555EEDBC39C9175D3ECFB14C7421FFA09364537F6B20E Die Datei 'C:\Users\Familie Schütz\Downloads\FileZilla3161\FileZilla_3.16.1_win32-setup.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = D89C4435D1F740933F7319F99C4D7421B75BE7EC652D6C1879E710D792A8D1F4 Die Datei 'C:\Users\Familie Schütz\Downloads\FileZilla3161\FileZilla_3.16.1_win64-setup.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 97DDE4E8928433859C5F0C7B2107C7C5434179BF1BD114442D9CE4F6752056B7 Die Datei 'C:\Users\Luca\AppData\Local\Temp\Temp1_FileZilla3161.zip\FileZilla_3.16.1_win64-setup.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 97DDE4E8928433859C5F0C7B2107C7C5434179BF1BD114442D9CE4F6752056B7 C:\Users\Luca\Desktop\Möp\Fantasy.schematic [WARNUNG] Mögliche Archivbombe: die maximale Komprimierungsrate wurde überschritten. Die Datei 'C:\Users\Luca\Desktop\Möp\möp\C4D\plugins\NitroBlast\res\voroc\wh.dat' wurde durch Cloud-Sicherheit geprüft. SHA256 = BFAA408495CCEDF09B5CCFD89CE2ACE9DB3FB3B053F4C44AA0EBD9988499EE5D Die Datei 'C:\Users\Luca\Desktop\Möp\möp\C4D R14\CINEMA 4D R14\plugins\NitroBlast\res\voroc\wh.dat' wurde durch Cloud-Sicherheit geprüft. SHA256 = BFAA408495CCEDF09B5CCFD89CE2ACE9DB3FB3B053F4C44AA0EBD9988499EE5D C:\Users\Luca\Documents\Sonstiges\SERVER\020516 BACKUP 5\plugins\WorldEdit\schematics\Fantasy.schematic [WARNUNG] Mögliche Archivbombe: die maximale Komprimierungsrate wurde überschritten. Die Datei 'C:\Users\Luca\Pictures\Designs\C4D-Rigs\CINEMA 4D R16 - by Prilann\Keygen\mc4dr16_kg.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = D9E227DC952BEC9C444FB13562965305246159C47062C6AB513FF675D266CD2A Die Datei 'C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA71301B744CAF070E41400\15.7.20033\_4bitmapibroker.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = F14190DF90852C53D420BBC42C301730710BD11F4E7E5EFAF0FF88CDC473C6A7 Beginne mit der Suche in 'D:\' <LENOVO> Beginne mit der Desinfektion: C:\Users\Familie Schütz\AppData\Local\Temp\dup2patcher.dll [FUND] Ist das Trojanische Pferd TR/Rogue.783872.11 [HINWEIS] Die Datei konnte nicht ins Quarantäneverzeichnis verschoben werden! [HINWEIS] Die Datei existiert nicht! C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RG0DYDP.rar [FUND] Ist das Trojanische Pferd TR/Rogue.kdv.689057 [HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '219aab85.qua' verschoben! Ende des Suchlaufs: Sonntag, 4. September 2016 22:04 Benötigte Zeit: 20:58:13 Stunde(n) Der Suchlauf wurde vollständig durchgeführt. 88472 Verzeichnisse wurden überprüft 2419201 Dateien wurden geprüft 3 Viren bzw. unerwünschte Programme wurden gefunden 0 Dateien wurden als verdächtig eingestuft 0 Dateien wurden gelöscht 0 Viren bzw. unerwünschte Programme wurden repariert 1 Dateien wurden in die Quarantäne verschoben 0 Dateien wurden umbenannt 3 Dateien konnten nicht durchsucht werden 2419195 Dateien ohne Befall 26587 Archive wurden durchsucht 6 Warnungen 2 Hinweise 1937 Objekte wurden beim Rootkitscan durchsucht 0 Versteckte Objekte wurden gefunden |
10.09.2016, 17:49 | #3 |
| Win8.1: Antivir findet Trojaner - was nun? Weiß keiner Rat?
__________________ |
13.09.2016, 15:08 | #4 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win8.1: Antivir findet Trojaner - was nun?Zitat:
Lesestoff: Illegale Software: Cracks, Keygens und Co Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ Logfiles bitte immer in CODE-Tags posten |
13.09.2016, 15:41 | #5 |
| Win8.1: Antivir findet Trojaner - was nun?Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-09-2016 durchgeführt von Familie Schütz (Administrator) auf SCHÜTZ (13-09-2016 16:34:58) Gestartet von C:\Users\Familie Schütz\Desktop Geladene Profile: Familie Schütz (Verfügbare Profile: Familie Schütz & Luca) Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Lenovo) C:\Program Files\Lenovo\OneKey Optimizer\bin\FBService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe (Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe (LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe (Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe (Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Lenovo) C:\Windows\System32\LenovoUpdate.exe () C:\Program Files\Gramblr\gramblr.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files\Lenovo PhoneCompanion\adb.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Lenovo) C:\ProgramData\Lenovo App Services\Engine\LenovoAppServices.exe (AMD) C:\Windows\System32\atieclxx.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files\Lenovo\LenovoUtility\utility.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizer.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323312 2015-03-26] (Intel Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-01-22] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-02-25] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-02-25] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-02-25] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811048 2015-01-14] (Synaptics Incorporated) HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-02-23] (Lenovo Corporation) HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-02-23] (Lenovo Corporation) HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-02-23] (Lenovo Corporation) HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791368 2015-06-10] () HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [802800 2015-06-10] (Lenovo) HKLM\...\Run: [OneKeyOptimizer] => C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe [605992 2015-03-30] (Lenovo(beijing) Limited) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-02-02] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [67864 2016-08-04] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [830064 2016-09-08] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2016-07-11] () HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated) HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{D8BB460F-51DF-4642-A991-CDAB5C4B6EEA}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com SearchScopes: HKU\S-1-5-21-1976660754-2451958475-3698774454-1001 -> DefaultScope {4DA7D74C-77BE-4EDE-AF11-2DB0B86449BD} URL = SearchScopes: HKU\S-1-5-21-1976660754-2451958475-3698774454-1001 -> {4DA7D74C-77BE-4EDE-AF11-2DB0B86449BD} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-08-25] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-12] (Oracle Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-08-25] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-12] (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-12] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-12] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-08-25] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default FF Homepage: hxxp://www.badische-zeitung.de/ FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] () FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-12] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-12] (Oracle Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-10] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-10] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-12] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-12] (Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-08-25] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems) FF Extension: (Avira Browser Safety) - C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default\Extensions\abs@avira.com.xpi [2016-09-09] FF Extension: (Firefox Hotfix) - C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09] FF Extension: (Adblock Plus) - C:\Users\Familie Schütz\AppData\Roaming\Mozilla\Firefox\Profiles\2nz66JBt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29] Chrome: ======= CHR Profile: C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-02] CHR Extension: (Google Docs) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-02] CHR Extension: (Google Drive) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-02] CHR Extension: (YouTube) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-02] CHR Extension: (Avira Browserschutz) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-08-26] CHR Extension: (Google Docs Offline) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-02] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-02] CHR Extension: (Google Mail) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-02] CHR Extension: (Chrome Media Router) - C:\Users\Familie Schütz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-26] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159320 2016-08-22] (Adobe Systems, Incorporated) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [989696 2016-09-08] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [470600 2016-09-08] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [470600 2016-09-08] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1454720 2016-09-08] (Avira Operations GmbH & Co. KG) R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [560584 2015-02-23] (Lenovo Corporation) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [320672 2016-08-04] (Avira Operations GmbH & Co. KG) R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [644080 2014-10-22] () R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2981056 2016-08-11] (Microsoft Corporation) R2 FastbootService; C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe [191000 2015-01-27] (Lenovo) [Datei ist nicht signiert] R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [9036880 2016-01-26] () [Datei ist nicht signiert] R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19184 2015-03-26] (Intel Corporation) R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [124520 2014-12-14] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-02-04] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-10-10] (Intel Corporation) S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-22] (Lenovo) R2 Lenovo OKO Service; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe [2742568 2015-03-31] (Lenovo(beijing) Limited) R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2005320 2014-10-13] (Lenovo Group Limited) R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.) S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [625608 2015-02-23] (Lenovo Corporation) R2 LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe [258544 2014-06-19] (Lenovo(beijing) Limited) R3 LenovoUpdate; C:\Windows\System32\LenovoUpdate.exe [26608 2016-09-13] (Lenovo) R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [218952 2014-08-25] (Lenovo(beijing) Limited) S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272440 2015-01-19] (Lenovo) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-03-19] () R2 OKOControlSvc; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe [359208 2015-03-30] (Lenovo(beijing) Limited) R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [321520 2015-06-10] (Lenovo) S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [373232 2015-06-10] (Lenovo) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] () R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190632 2015-01-14] (Synaptics Incorporated) R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [68880 2015-06-10] () S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-11-21] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2015-03-19] (Intel® Corporation) S2 FileZilla Server; "C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [144664 2016-07-26] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [154392 2016-07-26] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-05-25] (Avira Operations GmbH & Co. KG) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1448248 2014-11-26] (Motorola Solutions, Inc.) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R0 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70168 2015-01-27] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert] R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [230128 2014-12-04] (Intel Corporation) R1 ikecert; C:\Windows\system32\drivers\ikecert.sys [45736 2015-12-06] (Promosoft Software Limited) R3 KMDFVirtualKbd; C:\Windows\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-04] () R3 KMDFVirtualMouse; C:\Windows\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-04] () R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.) R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3497240 2015-03-23] (Intel Corporation) S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation) R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [2973400 2014-11-06] (Realtek Semiconductor Corp.) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2015-01-14] (Synaptics Incorporated) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-13 16:34 - 2016-09-13 16:36 - 00026349 _____ C:\Users\Familie Schütz\Desktop\FRST.txt 2016-09-13 16:34 - 2016-09-13 16:34 - 00000000 ____D C:\Users\Familie Schütz\Desktop\FRST-OlderVersion 2016-09-10 01:21 - 2016-09-10 01:21 - 00015747 _____ C:\Users\Luca\Documents\gardenendeohnebalken.camproj 2016-09-10 00:44 - 2016-09-10 00:44 - 00000000 ____D C:\Users\Familie Schütz\AppData\Roaming\TechSmith 2016-09-09 14:24 - 2016-09-09 14:24 - 00001199 _____ C:\Users\Familie Schütz\Downloads\FRST64 - Verknüpfung.lnk 2016-09-09 14:18 - 2016-09-09 14:21 - 00042693 _____ C:\Users\Familie Schütz\Downloads\Addition.txt 2016-09-09 14:15 - 2016-09-09 14:21 - 00112480 _____ C:\Users\Familie Schütz\Downloads\FRST.txt 2016-09-09 14:13 - 2016-09-13 16:34 - 00000000 ____D C:\FRST 2016-09-09 14:12 - 2016-09-13 16:34 - 02398720 _____ (Farbar) C:\Users\Familie Schütz\Desktop\FRST64.exe 2016-09-08 00:34 - 2016-09-08 00:34 - 04223011 _____ C:\Users\Luca\Downloads\absoLUT.zip 2016-09-08 00:20 - 2016-09-08 00:20 - 00362178 _____ C:\Users\Luca\Downloads\FREE_Lut_V.1.zip 2016-09-07 16:42 - 2016-09-07 16:43 - 01500976 _____ C:\WINDOWS\Minidump\090716-25265-01.dmp 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\VNC 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\Mobil 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\html 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\Doc 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\DBEngine 2016-09-03 15:41 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\db 2016-09-03 15:41 - 2008-04-26 19:55 - 00000793 _____ C:\Program Files (x86)\Felder.ini 2016-09-03 15:41 - 2008-04-26 19:51 - 05263360 _____ (TaylorCom) C:\Program Files (x86)\Qkasse.exe 2016-09-03 15:41 - 2008-04-26 19:51 - 03671040 _____ (TaylorCom) C:\Program Files (x86)\LAG2002.exe 2016-09-03 15:41 - 2008-04-26 09:16 - 01682944 _____ () C:\Program Files (x86)\start.exe 2016-09-03 15:41 - 2008-04-24 15:53 - 02233344 _____ C:\Program Files (x86)\AList32.exe 2016-09-03 15:41 - 2008-04-23 21:32 - 04123136 _____ C:\Program Files (x86)\AUFTRAG.EXE 2016-09-03 15:41 - 2008-04-23 14:03 - 03098112 _____ () C:\Program Files (x86)\Kunden.exe 2016-09-03 15:41 - 2008-04-22 21:26 - 01878528 _____ C:\Program Files (x86)\AllOrder.exe 2016-09-03 15:41 - 2008-04-14 18:27 - 02263040 _____ () C:\Program Files (x86)\RECH32.exe 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.XG2 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.XG1 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.XG0 2016-09-03 15:41 - 2008-04-13 22:09 - 00006144 _____ C:\Program Files (x86)\Bestell.DB 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.YG2 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.YG1 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.YG0 2016-09-03 15:41 - 2008-04-13 22:09 - 00004096 _____ C:\Program Files (x86)\Bestell.PX 2016-09-03 15:41 - 2008-04-13 21:57 - 02864128 _____ C:\Program Files (x86)\Order32.exe 2016-09-03 15:41 - 2008-04-02 08:19 - 01332224 _____ () C:\Program Files (x86)\NEWUPCS.exe 2016-09-03 15:41 - 2008-04-01 10:33 - 01374720 _____ C:\Program Files (x86)\DatenZIP.exe 2016-09-03 15:41 - 2008-03-27 13:10 - 01718272 _____ () C:\Program Files (x86)\Lagerort.exe 2016-09-03 15:41 - 2008-03-12 09:16 - 01080832 _____ (TaylorCom) C:\Program Files (x86)\Info.exe 2016-09-03 15:41 - 2008-03-05 23:08 - 00313344 _____ C:\Program Files (x86)\LAGER.DB 2016-09-03 15:41 - 2008-03-05 23:08 - 00038912 _____ C:\Program Files (x86)\LAGER.XG4 2016-09-03 15:41 - 2008-03-05 23:08 - 00026624 _____ C:\Program Files (x86)\LAGER.XG3 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG6 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG5 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG2 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG1 2016-09-03 15:41 - 2008-03-05 23:08 - 00014336 _____ C:\Program Files (x86)\LAGER.XG0 2016-09-03 15:41 - 2008-03-05 23:08 - 00008192 _____ C:\Program Files (x86)\LAGER.PX 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG6 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG5 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG4 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG3 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG2 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG1 2016-09-03 15:41 - 2008-03-05 23:08 - 00004096 _____ C:\Program Files (x86)\LAGER.YG0 2016-09-03 15:41 - 2008-03-03 12:00 - 02550784 _____ C:\Program Files (x86)\Import32.exe 2016-09-03 15:41 - 2008-02-27 14:27 - 01306624 _____ (TaylorCom) C:\Program Files (x86)\SerienNr.exe 2016-09-03 15:41 - 2008-02-26 14:14 - 01652224 _____ () C:\Program Files (x86)\Rep32.exe 2016-09-03 15:41 - 2008-02-19 21:17 - 00090825 _____ C:\Program Files (x86)\preisliste.pdf 2016-09-03 15:41 - 2008-01-29 14:01 - 00003620 _____ C:\Program Files (x86)\QKASSE.INI 2016-09-03 15:41 - 2008-01-29 13:49 - 00004096 _____ C:\Program Files (x86)\OffenePosten.PX 2016-09-03 15:41 - 2008-01-29 13:49 - 00004096 _____ C:\Program Files (x86)\OffenePosten.DB 2016-09-03 15:41 - 2008-01-18 07:45 - 00839168 _____ () C:\Program Files (x86)\eMail32.exe 2016-09-03 15:41 - 2008-01-08 11:13 - 01392640 _____ () C:\Program Files (x86)\Inventur.exe 2016-09-03 15:41 - 2007-12-29 10:26 - 01440768 _____ () C:\Program Files (x86)\Mobil32.exe 2016-09-03 15:41 - 2007-12-08 14:19 - 00497152 _____ (www.winlager.de) C:\Program Files (x86)\LiveUpda.exe 2016-09-03 15:41 - 2007-12-08 14:18 - 00736256 _____ C:\Program Files (x86)\Feedback.exe 2016-09-03 15:41 - 2007-11-07 11:25 - 01901056 _____ C:\Program Files (x86)\KOrder32.exe 2016-09-03 15:41 - 2007-10-28 16:50 - 01417216 _____ () C:\Program Files (x86)\Bilder.exe 2016-09-03 15:41 - 2007-10-27 12:54 - 01324032 _____ () C:\Program Files (x86)\Mobil_K.exe 2016-09-03 15:41 - 2007-10-22 20:17 - 01239552 _____ C:\Program Files (x86)\Preisgrp.exe 2016-09-03 15:41 - 2007-10-02 12:47 - 00010240 _____ C:\Program Files (x86)\Lieferrt.DB 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG3 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG2 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00006144 _____ C:\Program Files (x86)\Lieferrt.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.YG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\SerienNr.DB 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG3 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG2 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG1 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\Lieferrt.PX 2016-09-03 15:41 - 2007-09-27 20:49 - 01945088 _____ C:\Program Files (x86)\Lief32.exe 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.YG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\ListLO.DB 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.YG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 00004096 _____ C:\Program Files (x86)\Lagerort.DB 2016-09-03 15:41 - 2007-09-22 08:22 - 00896000 _____ C:\Program Files (x86)\1REPARAT.exe 2016-09-03 15:41 - 2007-09-01 09:07 - 00000223 _____ C:\Program Files (x86)\demo.dat 2016-09-03 15:41 - 2007-08-25 16:11 - 00246784 _____ (DelphiZip) C:\Program Files (x86)\DelZip179.dll 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.XG2 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.XG1 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.XG0 2016-09-03 15:41 - 2007-08-25 11:06 - 00006144 _____ C:\Program Files (x86)\AufKopf.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\LiefADr.PX 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\LiefADr.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.YG2 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.YG1 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.YG0 2016-09-03 15:41 - 2007-08-25 11:06 - 00004096 _____ C:\Program Files (x86)\AufKopf.PX 2016-09-03 15:41 - 2007-08-14 20:29 - 01319936 _____ (Scalabium, Mike Shkolnik) C:\Program Files (x86)\Export32.exe 2016-09-03 15:41 - 2007-08-13 09:35 - 00989184 _____ () C:\Program Files (x86)\Admin.exe 2016-09-03 15:41 - 2007-08-09 20:09 - 00034816 _____ C:\Program Files (x86)\KUNDEN.DB 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\STATBEST.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\Kunden.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\Kunden.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00018432 _____ C:\Program Files (x86)\Kunden.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00010240 _____ C:\Program Files (x86)\STATBEST.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00008192 _____ C:\Program Files (x86)\Memo.db 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG5 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG4 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG3 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\STATBEST.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\Auftrag.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\Auftrag.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00006144 _____ C:\Program Files (x86)\Auftrag.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG3 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\REPDETAL.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Memo.px 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Kunden.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Kunden.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Kunden.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\KUNDEN.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Auftrag.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Auftrag.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Auftrag.YG0 2016-09-03 15:41 - 2007-08-02 21:01 - 00900608 _____ C:\Program Files (x86)\PDAExp.exe 2016-09-03 15:41 - 2007-06-20 17:33 - 04539904 _____ (combit GmbH) C:\Program Files (x86)\Cull12.dll 2016-09-03 15:41 - 2007-06-20 16:54 - 04375552 _____ (combit GmbH) C:\Program Files (x86)\cmll12.dll 2016-09-03 15:41 - 2007-06-14 10:56 - 02006745 _____ (combit GmbH) C:\Program Files (x86)\Cmll12xl.dll 2016-09-03 15:41 - 2007-06-13 16:24 - 00008192 _____ C:\Program Files (x86)\AfterBuy.DB 2016-09-03 15:41 - 2007-06-13 16:24 - 00004096 _____ C:\Program Files (x86)\AfterBuy.PX 2016-09-03 15:41 - 2007-06-13 10:13 - 02251776 _____ (combit GmbH) C:\Program Files (x86)\Cuct12.dll 2016-09-03 15:41 - 2007-06-13 10:13 - 02216448 _____ (combit GmbH) C:\Program Files (x86)\Cmct12.dll 2016-09-03 15:41 - 2007-06-11 10:53 - 01923584 _____ (combit GmbH) C:\Program Files (x86)\culs12.dll 2016-09-03 15:41 - 2007-06-11 10:53 - 01858048 _____ (combit GmbH) C:\Program Files (x86)\cmls12.dll 2016-09-03 15:41 - 2007-06-11 10:52 - 02473554 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ob.llx 2016-09-03 15:41 - 2007-06-08 09:22 - 01497600 _____ (combit GmbH) C:\Program Files (x86)\Cubr12.dll 2016-09-03 15:41 - 2007-06-08 09:22 - 01456128 _____ (combit GmbH) C:\Program Files (x86)\Cmbr12.dll 2016-09-03 15:41 - 2007-06-05 13:21 - 01649664 _____ C:\Program Files (x86)\Auswahl.exe 2016-09-03 15:41 - 2007-05-11 12:30 - 00351744 _____ (combit GmbH) C:\Program Files (x86)\Cmll12pw.llx 2016-09-03 15:41 - 2007-05-10 10:54 - 00875520 _____ (combit GmbH) C:\Program Files (x86)\cmll12ht.llx 2016-09-03 15:41 - 2007-05-08 11:01 - 00774196 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ex.llx 2016-09-03 15:41 - 2007-04-26 13:33 - 00941056 _____ (combit GmbH) C:\Program Files (x86)\Cmll12bc.llx 2016-09-03 15:41 - 2007-04-24 12:26 - 00435712 _____ (combit GmbH) C:\Program Files (x86)\Cuut12.dll 2016-09-03 15:41 - 2007-04-24 12:26 - 00408576 _____ (combit GmbH) C:\Program Files (x86)\Cmut12.dll 2016-09-03 15:41 - 2007-04-12 20:53 - 01619456 _____ (TaylorCom) C:\Program Files (x86)\Termine2007.exe 2016-09-03 15:41 - 2007-04-05 23:15 - 01808437 _____ C:\Program Files (x86)\cmLL1200.chm 2016-09-03 15:41 - 2007-04-05 23:15 - 00815104 _____ (combit GmbH) C:\Program Files (x86)\cudw12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00788480 _____ (combit GmbH) C:\Program Files (x86)\cmdw12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00546609 _____ (combit GmbH) C:\Program Files (x86)\cmll12eu.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00527872 _____ (combit GmbH) C:\Program Files (x86)\cull1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00525312 _____ (combit GmbH) C:\Program Files (x86)\cmll1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00493044 _____ (combit GmbH) C:\Program Files (x86)\cmll12bm.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00411648 _____ C:\Program Files (x86)\Cmmx0100.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00410624 _____ (combit GmbH) C:\Program Files (x86)\cupr12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00390656 _____ (combit GmbH) C:\Program Files (x86)\cmpr12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00330752 _____ (combit GmbH) C:\Program Files (x86)\cmll12oc.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00216476 _____ (combit GmbH) C:\Program Files (x86)\cmll12si.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 00075264 _____ (combit GmbH) C:\Program Files (x86)\culs1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00075264 _____ (combit GmbH) C:\Program Files (x86)\cmls1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 00036864 _____ (combit GmbH) C:\Program Files (x86)\cmll12sx.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 00008277 _____ C:\Program Files (x86)\cmll12si.chm 2016-09-03 15:41 - 2007-03-29 18:39 - 00006144 _____ C:\Program Files (x86)\Auftrag.DB 2016-09-03 15:41 - 2007-03-29 18:39 - 00004096 _____ C:\Program Files (x86)\Auftrag.PX 2016-09-03 15:41 - 2007-03-29 18:38 - 00004096 _____ C:\Program Files (x86)\KassenStand.PX 2016-09-03 15:41 - 2007-03-29 18:38 - 00004096 _____ C:\Program Files (x86)\KassenStand.DB 2016-09-03 15:41 - 2007-03-14 13:37 - 00800768 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.dll 2016-09-03 15:41 - 2007-03-08 21:13 - 00973312 _____ (TaylorCom) C:\Program Files (x86)\Kostelle.exe 2016-09-03 15:41 - 2007-03-05 15:13 - 00004096 _____ C:\Program Files (x86)\PCList.PX 2016-09-03 15:41 - 2007-03-05 15:13 - 00004096 _____ C:\Program Files (x86)\PCList.db 2016-09-03 15:41 - 2007-02-09 21:45 - 01496576 _____ C:\Program Files (x86)\PrintBon.exe 2016-09-03 15:41 - 2007-01-31 08:39 - 00980480 _____ C:\Program Files (x86)\Service.exe 2016-09-03 15:41 - 2007-01-24 17:39 - 00054992 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.cpl 2016-09-03 15:41 - 2007-01-14 23:15 - 01424896 _____ C:\Program Files (x86)\IstWerte.exe 2016-09-03 15:41 - 2007-01-09 11:22 - 00006144 _____ C:\Program Files (x86)\AfterBuy.XG1 2016-09-03 15:41 - 2007-01-09 11:22 - 00006144 _____ C:\Program Files (x86)\AfterBuy.XG0 2016-09-03 15:41 - 2007-01-09 11:22 - 00004096 _____ C:\Program Files (x86)\AfterBuy.YG1 2016-09-03 15:41 - 2007-01-09 11:22 - 00004096 _____ C:\Program Files (x86)\AfterBuy.YG0 2016-09-03 15:41 - 2007-01-04 13:15 - 00946688 _____ C:\Program Files (x86)\Dlgfind.exe 2016-09-03 15:41 - 2006-12-08 09:03 - 00141312 _____ C:\Program Files (x86)\Statbest.DB 2016-09-03 15:41 - 2006-12-08 09:03 - 00004096 _____ C:\Program Files (x86)\Statbest.PX 2016-09-03 15:41 - 2006-10-04 10:47 - 00077440 _____ C:\Program Files (x86)\aero_busy_xl.ani 2016-09-03 15:41 - 2006-06-10 10:20 - 00000076 _____ C:\Program Files (x86)\Auftrag.ini 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.YG0 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.XG0 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.PX 2016-09-03 15:41 - 2006-02-19 17:08 - 00004096 _____ C:\Program Files (x86)\Kostelle.DB 2016-09-03 15:41 - 2006-02-02 16:39 - 00783872 _____ (TaylorCom) C:\Program Files (x86)\Etikett.exe 2016-09-03 15:41 - 2006-01-20 13:29 - 01540096 _____ C:\Program Files (x86)\Drucka32.exe 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.YG0 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.XG0 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.PX 2016-09-03 15:41 - 2006-01-10 09:08 - 00004096 _____ C:\Program Files (x86)\KOrder.DB 2016-09-03 15:41 - 2005-11-30 20:49 - 00002048 _____ C:\Program Files (x86)\LiefZusatz.PX 2016-09-03 15:41 - 2005-11-30 20:49 - 00002048 _____ C:\Program Files (x86)\LiefZusatz.db 2016-09-03 15:41 - 2005-11-14 19:54 - 00599552 _____ C:\Program Files (x86)\SMS.exe 2016-09-03 15:41 - 2005-08-31 20:52 - 00020480 _____ ( ) C:\Program Files (x86)\Net00001.dll 2016-09-03 15:41 - 2005-08-15 18:03 - 00002048 _____ C:\Program Files (x86)\Etikett.PX 2016-09-03 15:41 - 2005-08-15 18:03 - 00002048 _____ C:\Program Files (x86)\Etikett.db 2016-09-03 15:41 - 2005-06-25 07:23 - 01263104 _____ C:\Program Files (x86)\Kommlist.exe 2016-09-03 15:41 - 2005-03-13 17:48 - 00002048 _____ C:\Program Files (x86)\PREISGRP.PX 2016-09-03 15:41 - 2005-03-13 17:48 - 00002048 _____ C:\Program Files (x86)\PREISGRP.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 00006144 _____ C:\Program Files (x86)\Notiz.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00006144 _____ C:\Program Files (x86)\Notiz.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\RepDetal.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\RepDetal.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Notiz.YG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Notiz.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.YG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Bilder.DB 2016-09-03 15:41 - 2005-01-10 19:31 - 00001728 _____ C:\Program Files (x86)\beispiel.LWL 2016-09-03 15:41 - 2004-10-31 16:35 - 00992256 _____ () C:\Program Files (x86)\ITC.exe 2016-09-03 15:41 - 2004-08-20 22:39 - 00000083 _____ C:\Program Files (x86)\RegKey.info 2016-09-03 15:41 - 2004-06-20 21:00 - 00000020 _____ C:\Program Files (x86)\Display.ini 2016-09-03 15:41 - 2002-11-13 21:38 - 00000048 _____ C:\Program Files (x86)\232_read.ini 2016-09-03 15:41 - 2002-10-13 21:29 - 00487424 _____ C:\Program Files (x86)\deinstal.exe 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.YG1 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.YG0 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.XG1 2016-09-03 15:41 - 2002-06-17 22:01 - 00004096 _____ C:\Program Files (x86)\KOMMLIST.XG0 2016-09-03 15:41 - 2002-06-17 22:01 - 00002048 _____ C:\Program Files (x86)\KOMMLIST.PX 2016-09-03 15:41 - 2002-06-17 22:01 - 00002048 _____ C:\Program Files (x86)\KOMMLIST.DB 2016-09-03 15:41 - 2002-05-21 21:11 - 00049152 _____ C:\Program Files (x86)\232_read.exe 2016-09-03 15:41 - 2002-02-14 10:49 - 00082944 _____ C:\Program Files (x86)\RegKey.reg 2016-09-03 15:41 - 2002-02-14 10:49 - 00082944 _____ C:\Program Files (x86)\qrpdflib.dll 2016-09-03 15:40 - 2016-09-03 15:42 - 00000882 _____ C:\Users\Luca\Desktop\TaylorCom Startcenter.lnk 2016-09-03 15:40 - 2016-09-03 15:41 - 00000000 ___HD C:\Program Files (x86)\SETUP 2016-09-03 15:40 - 2016-09-03 15:41 - 00000000 ____D C:\Program Files (x86)\Datev 2016-09-03 15:40 - 2016-09-03 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAGER 3000 TaylorCom 2016-09-03 15:40 - 2008-04-22 21:12 - 01571840 _____ C:\Program Files (x86)\WEO32.exe 2016-09-03 15:40 - 2008-04-17 17:39 - 05539328 _____ () C:\Program Files (x86)\Umsatz32.exe 2016-09-03 15:40 - 2008-04-04 07:00 - 00243712 _____ C:\Program Files (x86)\StatRech.DB 2016-09-03 15:40 - 2008-04-04 07:00 - 00043008 _____ C:\Program Files (x86)\StatRech.XG2 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG6 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG4 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG3 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG1 2016-09-03 15:40 - 2008-04-04 07:00 - 00010240 _____ C:\Program Files (x86)\StatRech.XG0 2016-09-03 15:40 - 2008-04-04 07:00 - 00006144 _____ C:\Program Files (x86)\StatRech.XG5 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG6 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG5 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG4 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG3 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG2 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG1 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.YG0 2016-09-03 15:40 - 2008-04-04 07:00 - 00004096 _____ C:\Program Files (x86)\StatRech.PX 2016-09-03 15:40 - 2008-04-03 11:58 - 01395712 _____ C:\Program Files (x86)\WG.exe 2016-09-03 15:40 - 2008-03-29 10:05 - 00004096 _____ C:\Program Files (x86)\Wgr.PX 2016-09-03 15:40 - 2008-03-29 10:05 - 00004096 _____ C:\Program Files (x86)\Wgr.DB 2016-09-03 15:40 - 2008-02-26 14:22 - 01872384 _____ (TaylorCom) C:\Program Files (x86)\System32.exe 2016-09-03 15:40 - 2007-11-16 08:56 - 01314816 _____ C:\Program Files (x86)\stcklist.exe 2016-09-03 15:40 - 2007-10-02 12:47 - 00004096 _____ C:\Program Files (x86)\STCKLIST.DB 2016-09-03 15:40 - 2007-08-25 11:07 - 00020480 _____ C:\Program Files (x86)\System.DB 2016-09-03 15:40 - 2007-08-25 11:07 - 00004096 _____ C:\Program Files (x86)\SYSTEM.PX 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.YG1 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.YG0 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.XG1 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\Stcklist.XG0 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG5 2016-09-03 15:40 - 2007-08-09 20:09 - 00004096 _____ C:\Program Files (x86)\STATBEST.YG4 2016-09-03 15:40 - 2007-07-06 02:00 - 00613581 _____ C:\Program Files (x86)\stepbystep.pdf 2016-09-03 15:40 - 2007-03-23 23:29 - 00923648 _____ C:\Program Files (x86)\ULOrt32.exe 2016-09-03 15:40 - 2006-03-07 15:06 - 00004096 _____ C:\Program Files (x86)\STCKLIST.PX 2016-09-03 15:40 - 2005-10-12 20:42 - 00096256 _____ C:\Program Files (x86)\StBestand.DB 2016-09-03 15:40 - 2005-10-12 20:42 - 00004096 _____ C:\Program Files (x86)\StBestand.PX 2016-09-03 15:40 - 2005-09-25 17:38 - 00002048 _____ C:\Program Files (x86)\Termine.PX 2016-09-03 15:40 - 2005-09-25 17:38 - 00002048 _____ C:\Program Files (x86)\Termine.db 2016-09-03 15:40 - 2005-09-01 07:32 - 00102400 _____ ( ) C:\Program Files (x86)\ZaHilfe.exe 2016-09-03 15:40 - 2005-02-20 15:06 - 00138752 _____ () C:\Program Files (x86)\ZipDll.dll 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.YG0 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.XG0 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.PX 2016-09-03 15:40 - 2005-02-09 20:29 - 00004096 _____ C:\Program Files (x86)\Ulag.DB 2016-09-03 15:40 - 2004-12-30 11:20 - 00120320 _____ () C:\Program Files (x86)\UnzDll.dll 2016-09-03 15:40 - 2002-12-26 12:12 - 00000006 _____ C:\Program Files (x86)\tan 2016-09-03 15:40 - 2000-12-09 04:00 - 00244984 _____ C:\Program Files (x86)\TUTIL32.DLL 2016-09-03 15:38 - 2016-09-03 15:38 - 66217159 _____ (TaylorCom) C:\Users\Luca\Downloads\demoweb.exe 2016-09-03 15:32 - 2016-09-09 14:23 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Bilder 2016-09-03 15:32 - 2016-09-03 15:32 - 00099095 _____ C:\Users\Familie Schütz\Downloads\Uninstal.exe 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Sicher 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Import 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Export 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\Downloads\Berichte 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\Users\Familie Schütz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmallCash 2016-09-03 15:32 - 2016-09-03 15:32 - 00000000 ____D C:\ProgramData\dFPUG 2016-09-03 15:31 - 2016-09-03 15:31 - 08388054 _____ () C:\Users\Luca\Downloads\smallcash_setup.exe 2016-09-03 14:01 - 2016-09-03 15:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-09-02 14:38 - 2016-09-02 14:38 - 00000000 ____D C:\Users\Luca\AppData\Roaming\WebApp 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\Documents\Lenovo 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\Documents\CyberLink 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\AppData\Roaming\Lenovo 2016-09-02 14:36 - 2016-09-02 14:36 - 00000000 ____D C:\Users\Luca\AppData\Roaming\CyberLink 2016-09-02 13:25 - 2016-09-10 01:29 - 00000000 ____D C:\Users\Luca\Documents\Camtasia Studio 2016-09-02 12:57 - 2016-09-02 12:57 - 00000000 ____D C:\Users\Luca\Documents\Medium 2016-09-02 12:57 - 2016-09-02 12:57 - 00000000 ____D C:\Users\Luca\Documents\Benutzerdefinierte Produktionsprofile 8.0 2016-08-29 19:49 - 2016-08-29 19:49 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\gegl-0.2 2016-08-29 19:49 - 2016-08-29 19:49 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\fontconfig 2016-08-29 19:49 - 2016-08-29 19:49 - 00000000 ____D C:\Users\Familie Schütz\.gimp-2.8 2016-08-29 19:34 - 2016-08-29 19:42 - 00000921 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2016-08-29 19:32 - 2016-08-29 19:34 - 00000000 ____D C:\Program Files\GIMP 2 2016-08-29 19:31 - 2016-08-29 19:31 - 77404656 _____ (The GIMP Team ) C:\Users\Familie Schütz\Downloads\gimp-2.8.18-setup.exe 2016-08-28 12:07 - 2016-08-28 12:07 - 00003222 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task 2016-08-26 15:21 - 2016-08-26 15:21 - 00001165 _____ C:\Users\Public\Desktop\Avira Launcher.lnk 2016-08-25 21:00 - 2016-08-25 21:00 - 00000000 ____D C:\WINDOWS\LastGood.Tmp 2016-08-20 12:44 - 2016-08-20 12:45 - 00099968 _____ C:\Users\Luca\Downloads\just_believe.zip 2016-08-20 12:44 - 2016-08-20 12:44 - 00521111 _____ C:\Users\Luca\Downloads\outrun_future.zip 2016-08-20 12:44 - 2016-08-20 12:44 - 00035309 _____ C:\Users\Luca\Downloads\gentleman_on_the_rainbow.zip 2016-08-17 19:21 - 2016-08-17 19:21 - 00000000 ____D C:\Users\Familie Schütz\Tracing 2016-08-16 23:40 - 2016-08-16 23:40 - 01748804 _____ C:\Users\Luca\Downloads\OptiFine_1.10_HD_U_C1.jar 2016-08-16 23:36 - 2016-08-16 23:36 - 01747901 _____ C:\Users\Luca\Downloads\OptiFine_1.10.2_HD_U_C1.jar ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-13 16:36 - 2016-01-04 20:18 - 00000000 ____D C:\ProgramData\Gramblr 2016-09-13 16:33 - 2015-10-19 17:47 - 00000000 ____D C:\Program Files\Adobe 2016-09-13 16:10 - 2015-12-24 13:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2016-09-13 16:10 - 2015-12-24 13:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-09-13 16:10 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2016-09-13 16:10 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-09-13 16:08 - 2016-01-24 23:02 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-09-13 15:50 - 2015-10-14 21:26 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1976660754-2451958475-3698774454-1001 2016-09-13 15:35 - 2015-06-10 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-09-13 15:27 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-09-13 15:20 - 2015-11-15 13:05 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\CrashDumps 2016-09-13 15:20 - 2015-06-10 03:46 - 00000000 ____D C:\ProgramData\Lenovo 2016-09-13 15:18 - 2016-01-24 23:02 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-09-13 15:18 - 2016-01-20 19:48 - 00000000 ____D C:\Users\Familie Schütz\AppData\Roaming\Skype 2016-09-13 15:17 - 2015-10-14 21:18 - 00000000 __SHD C:\Users\Familie Schütz\IntelGraphicsProfiles 2016-09-13 13:06 - 2015-10-14 21:18 - 00000000 ____D C:\Users\Familie Schütz 2016-09-13 13:04 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-09-13 12:46 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-09-13 12:45 - 2015-06-10 03:39 - 00153336 _____ C:\WINDOWS\system32\wpbbin.exe 2016-09-13 12:45 - 2015-06-10 03:39 - 00111088 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoCheck.exe 2016-09-13 12:45 - 2015-06-10 03:39 - 00026608 _____ (Lenovo) C:\WINDOWS\system32\LenovoUpdate.exe 2016-09-11 13:15 - 2015-11-15 15:07 - 00000000 ____D C:\Users\Luca\AppData\Local\CrashDumps 2016-09-11 13:12 - 2015-10-15 17:04 - 00000000 ____D C:\Users\Luca\AppData\Local\Adobe 2016-09-11 13:11 - 2015-10-15 12:56 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1976660754-2451958475-3698774454-1004 2016-09-11 13:06 - 2015-10-15 12:50 - 00000000 __SHD C:\Users\Luca\IntelGraphicsProfiles 2016-09-11 12:04 - 2015-10-14 21:19 - 00000000 ____D C:\Users\Familie Schütz\AppData\Local\Packages 2016-09-10 21:55 - 2015-10-15 12:50 - 00000000 ____D C:\Users\Luca 2016-09-10 18:36 - 2015-10-15 17:27 - 00000420 _____ C:\WINDOWS\Tasks\update-sys.job 2016-09-10 18:30 - 2015-10-15 12:50 - 00000000 ____D C:\Users\Luca\AppData\Local\Packages 2016-09-10 14:03 - 2016-07-13 15:56 - 00000000 ____D C:\Users\Luca\Documents\Ministrantenordner 2016-09-10 11:40 - 2015-10-19 17:32 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-09-10 01:43 - 2015-10-15 17:28 - 00000420 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1976660754-2451958475-3698774454-1001.job 2016-09-09 23:56 - 2015-11-14 23:08 - 02274816 ___SH C:\Users\Luca\Downloads\Thumbs.db 2016-09-09 14:24 - 2016-01-07 16:04 - 00446464 ___SH C:\Users\Familie Schütz\Downloads\Thumbs.db 2016-09-08 14:19 - 2015-10-14 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-09-08 12:22 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf 2016-09-08 00:34 - 2015-01-25 10:29 - 00010244 _____ C:\Users\Luca\Documents\.DS_Store 2016-09-08 00:34 - 2015-01-23 01:22 - 00343821 _____ C:\Users\Luca\Documents\Town 3.cube 2016-09-08 00:34 - 2015-01-23 01:12 - 00343821 _____ C:\Users\Luca\Documents\Town.cube 2016-09-08 00:34 - 2015-01-23 01:02 - 00343821 _____ C:\Users\Luca\Documents\Town 2.cube 2016-09-08 00:34 - 2015-01-22 07:54 - 00720938 _____ C:\Users\Luca\Documents\Flat.cube 2016-09-08 00:34 - 2015-01-21 07:21 - 00503207 _____ C:\Users\Luca\Documents\Anti Green (WB).cube 2016-09-08 00:34 - 2015-01-21 07:16 - 00503207 _____ C:\Users\Luca\Documents\Neutral S.cube 2016-09-08 00:34 - 2015-01-21 06:35 - 00503207 _____ C:\Users\Luca\Documents\Day.cube 2016-09-08 00:34 - 2015-01-21 06:31 - 00526353 _____ C:\Users\Luca\Documents\Cinema C.cube 2016-09-08 00:34 - 2015-01-21 06:16 - 00503257 _____ C:\Users\Luca\Documents\Cinema B (LOG).cube 2016-09-08 00:34 - 2015-01-21 06:14 - 00503257 _____ C:\Users\Luca\Documents\Cinema B.cube 2016-09-08 00:34 - 2015-01-21 06:02 - 00503207 _____ C:\Users\Luca\Documents\RedTree (B&W).cube 2016-09-08 00:34 - 2015-01-21 06:01 - 00503207 _____ C:\Users\Luca\Documents\BlueTree 3 (B&W).cube 2016-09-08 00:34 - 2015-01-21 05:52 - 00503207 _____ C:\Users\Luca\Documents\BlueTree 2.cube 2016-09-08 00:34 - 2015-01-21 04:37 - 00591165 _____ C:\Users\Luca\Documents\BlueTree.cube 2016-09-08 00:34 - 2015-01-21 04:03 - 00503223 _____ C:\Users\Luca\Documents\Red Sky (LOG).cube 2016-09-08 00:34 - 2015-01-21 03:32 - 00503207 _____ C:\Users\Luca\Documents\Orange Sky (LOG).cube 2016-09-08 00:34 - 2015-01-21 02:44 - 00526419 _____ C:\Users\Luca\Documents\Cinema A.cube 2016-09-08 00:34 - 2015-01-21 02:12 - 00526619 _____ C:\Users\Luca\Documents\Sunset C.cube 2016-09-08 00:34 - 2015-01-21 02:04 - 00526619 _____ C:\Users\Luca\Documents\Sunset M.cube 2016-09-08 00:34 - 2015-01-21 02:00 - 00480209 _____ C:\Users\Luca\Documents\80`s.cube 2016-09-08 00:34 - 2015-01-21 01:56 - 00503373 _____ C:\Users\Luca\Documents\Cold.cube 2016-09-08 00:34 - 2015-01-21 01:45 - 00526553 _____ C:\Users\Luca\Documents\Choco Tone.cube 2016-09-08 00:34 - 2015-01-21 01:41 - 00526553 _____ C:\Users\Luca\Documents\Green Tone.cube 2016-09-08 00:20 - 2016-05-16 22:22 - 00951951 _____ C:\Users\Luca\Documents\FreeLut.cube 2016-09-07 23:41 - 2015-10-15 13:03 - 00000000 ____D C:\Users\Luca\AppData\Roaming\.minecraft 2016-09-07 16:42 - 2016-01-16 00:44 - 758278609 _____ C:\WINDOWS\MEMORY.DMP 2016-09-07 16:42 - 2016-01-16 00:44 - 00000000 ____D C:\WINDOWS\Minidump 2016-09-05 14:44 - 2015-10-29 21:22 - 00000000 ____D C:\Users\Familie Schütz\Documents\Nicola 2016-09-04 21:59 - 2015-10-15 17:33 - 00000000 ___RD C:\Users\Luca\Desktop\Möp 2016-09-03 16:05 - 2015-06-10 04:35 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo 2016-09-03 15:48 - 2013-08-22 16:44 - 05185072 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-09-03 15:46 - 2015-10-15 12:50 - 00000000 ____D C:\Users\Luca\AppData\Local\VirtualStore 2016-09-03 15:33 - 2016-08-03 17:37 - 00012800 _____ C:\Users\Familie Schütz\Downloads\artikel_si.CDX 2016-09-03 15:33 - 2016-08-03 17:37 - 00000398 _____ C:\Users\Familie Schütz\Downloads\proto.csv 2016-09-03 15:33 - 2016-07-31 15:18 - 00001489 _____ C:\Users\Familie Schütz\Downloads\proto.dbf 2016-09-03 15:33 - 2016-01-11 17:08 - 00014057 _____ C:\Users\Familie Schütz\Downloads\artikel_si.dbf 2016-09-03 15:33 - 2015-10-17 10:42 - 00001489 _____ C:\Users\Familie Schütz\Downloads\proto_si.dbf 2016-09-03 15:33 - 2015-07-21 17:52 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tische.CDX 2016-09-03 15:33 - 2015-07-21 17:52 - 00000510 _____ C:\Users\Familie Schütz\Downloads\tische.dbf 2016-09-03 15:33 - 2015-07-09 11:19 - 00008803 _____ C:\Users\Familie Schütz\Downloads\grund.dbf 2016-09-03 15:33 - 2015-07-09 11:19 - 00001280 _____ C:\Users\Familie Schütz\Downloads\grund.FPT 2016-09-03 15:33 - 2015-06-19 13:42 - 00004430 _____ C:\Users\Familie Schütz\Downloads\gruppe_si.dbf 2016-09-03 15:33 - 2015-01-11 17:34 - 00014057 _____ C:\Users\Familie Schütz\Downloads\artikel.dbf 2016-09-03 15:33 - 2015-01-11 17:34 - 00012800 _____ C:\Users\Familie Schütz\Downloads\artikel.CDX 2016-09-03 15:33 - 2013-09-20 20:44 - 00004608 _____ C:\Users\Familie Schütz\Downloads\vorgang.CDX 2016-09-03 15:33 - 2013-09-20 20:44 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tischres.CDX 2016-09-03 15:33 - 2013-09-20 20:44 - 00000552 _____ C:\Users\Familie Schütz\Downloads\tischres.dbf 2016-09-03 15:33 - 2013-09-18 09:44 - 00012288 _____ C:\Users\Familie Schütz\Downloads\adressen.CDX 2016-09-03 15:33 - 2012-08-27 14:57 - 00005248 _____ C:\Users\Familie Schütz\Downloads\FOXUSER.FPT 2016-09-03 15:33 - 2012-08-27 14:57 - 00004430 _____ C:\Users\Familie Schütz\Downloads\gruppe.dbf 2016-09-03 15:33 - 2012-08-27 14:57 - 00002977 _____ C:\Users\Familie Schütz\Downloads\bonall.dbf 2016-09-03 15:33 - 2012-08-27 14:57 - 00002009 _____ C:\Users\Familie Schütz\Downloads\FOXUSER.DBF 2016-09-03 15:32 - 2016-08-03 17:37 - 00012288 _____ C:\Users\Familie Schütz\Downloads\adressen_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00004608 _____ C:\Users\Familie Schütz\Downloads\vorgang_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tischres_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00003072 _____ C:\Users\Familie Schütz\Downloads\tische_si.CDX 2016-09-03 15:32 - 2016-08-03 17:37 - 00000328 _____ C:\Users\Familie Schütz\Downloads\fehler_si.DBF 2016-09-03 15:32 - 2015-07-21 17:52 - 00000511 _____ C:\Users\Familie Schütz\Downloads\tische_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00748377 _____ C:\Users\Familie Schütz\Downloads\vermietung_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00008804 _____ C:\Users\Familie Schütz\Downloads\grund_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00002977 _____ C:\Users\Familie Schütz\Downloads\bonall_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001851 _____ C:\Users\Familie Schütz\Downloads\adressen_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001633 _____ C:\Users\Familie Schütz\Downloads\vorgang_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001352 _____ C:\Users\Familie Schütz\Downloads\bonmem_si.dbf 2016-09-03 15:32 - 2015-06-19 13:42 - 00001152 _____ C:\Users\Familie Schütz\Downloads\grund_si.FPT 2016-09-03 15:32 - 2015-06-19 13:42 - 00000552 _____ C:\Users\Familie Schütz\Downloads\tischres_si.dbf 2016-09-03 15:32 - 2015-02-19 09:25 - 00001352 _____ C:\Users\Familie Schütz\Downloads\bon_si.dbf 2016-09-03 15:19 - 2015-10-14 21:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-09-03 12:26 - 2015-06-10 03:56 - 00000000 ____D C:\ProgramData\Package Cache 2016-08-28 12:06 - 2016-04-25 21:05 - 00002367 _____ C:\Users\Luca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk 2016-08-28 12:06 - 2015-10-19 17:55 - 00003174 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1976660754-2451958475-3698774454-1004 2016-08-25 20:55 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-08-20 23:53 - 2016-01-19 17:25 - 00000000 ____D C:\Users\Luca\AppData\Roaming\Skype 2016-08-17 19:20 - 2016-01-19 17:25 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-08-17 19:20 - 2016-01-19 17:24 - 00000000 ____D C:\ProgramData\Skype 2016-08-17 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2016-08-17 00:16 - 2015-06-10 13:35 - 00766620 _____ C:\WINDOWS\system32\perfh007.dat 2016-08-17 00:16 - 2015-06-10 13:35 - 00159902 _____ C:\WINDOWS\system32\perfc007.dat 2016-08-17 00:16 - 2014-11-21 06:44 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-08-17 00:05 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-12-11 21:40 - 2009-12-21 11:35 - 0382643 ____N () C:\Program Files\Bedienungsanleitung_SecureUSBflashdrives_de.pdf 2015-12-12 00:29 - 2015-12-12 00:29 - 9221857 _____ () C:\Program Files\usbenter_4.1.12.15.zip 2016-09-03 15:41 - 2007-09-22 08:22 - 0896000 _____ () C:\Program Files (x86)\1REPARAT.exe 2016-09-03 15:41 - 2002-05-21 21:11 - 0049152 _____ () C:\Program Files (x86)\232_read.exe 2016-09-03 15:41 - 2002-11-13 21:38 - 0000048 _____ () C:\Program Files (x86)\232_read.ini 2016-09-03 15:41 - 2007-08-13 09:35 - 0989184 _____ () C:\Program Files (x86)\Admin.exe 2016-09-03 15:41 - 2006-10-04 10:47 - 0077440 _____ () C:\Program Files (x86)\aero_busy_xl.ani 2016-09-03 15:41 - 2007-06-13 16:24 - 0008192 _____ () C:\Program Files (x86)\AfterBuy.DB 2016-09-03 15:41 - 2007-06-13 16:24 - 0004096 _____ () C:\Program Files (x86)\AfterBuy.PX 2016-09-03 15:41 - 2007-01-09 11:22 - 0006144 _____ () C:\Program Files (x86)\AfterBuy.XG0 2016-09-03 15:41 - 2007-01-09 11:22 - 0006144 _____ () C:\Program Files (x86)\AfterBuy.XG1 2016-09-03 15:41 - 2007-01-09 11:22 - 0004096 _____ () C:\Program Files (x86)\AfterBuy.YG0 2016-09-03 15:41 - 2007-01-09 11:22 - 0004096 _____ () C:\Program Files (x86)\AfterBuy.YG1 2016-09-03 15:41 - 2008-04-24 15:53 - 2233344 _____ () C:\Program Files (x86)\AList32.exe 2016-09-03 15:41 - 2008-04-22 21:26 - 1878528 _____ () C:\Program Files (x86)\AllOrder.exe 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.PX 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.XG0 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.XG1 2016-09-03 15:41 - 2007-08-25 11:06 - 0006144 _____ () C:\Program Files (x86)\AufKopf.XG2 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.YG0 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.YG1 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\AufKopf.YG2 2016-09-03 15:41 - 2007-03-29 18:39 - 0006144 _____ () C:\Program Files (x86)\Auftrag.DB 2016-09-03 15:41 - 2008-04-23 21:32 - 4123136 _____ () C:\Program Files (x86)\AUFTRAG.EXE 2016-09-03 15:41 - 2006-06-10 10:20 - 0000076 _____ () C:\Program Files (x86)\Auftrag.ini 2016-09-03 15:41 - 2007-03-29 18:39 - 0004096 _____ () C:\Program Files (x86)\Auftrag.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\Auftrag.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\Auftrag.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\Auftrag.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Auftrag.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Auftrag.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Auftrag.YG2 2016-09-03 15:41 - 2007-06-05 13:21 - 1649664 _____ () C:\Program Files (x86)\Auswahl.exe 2016-09-03 15:41 - 2005-01-10 19:31 - 0001728 _____ () C:\Program Files (x86)\beispiel.LWL 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.DB 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.PX 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.XG0 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.XG1 2016-09-03 15:41 - 2008-04-13 22:09 - 0006144 _____ () C:\Program Files (x86)\Bestell.XG2 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.YG0 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.YG1 2016-09-03 15:41 - 2008-04-13 22:09 - 0004096 _____ () C:\Program Files (x86)\Bestell.YG2 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.DB 2016-09-03 15:41 - 2007-10-28 16:50 - 1417216 _____ () C:\Program Files (x86)\Bilder.exe 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Bilder.YG0 2016-09-03 15:41 - 2007-06-08 09:22 - 1456128 _____ (combit GmbH) C:\Program Files (x86)\Cmbr12.dll 2016-09-03 15:41 - 2007-06-13 10:13 - 2216448 _____ (combit GmbH) C:\Program Files (x86)\Cmct12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0788480 _____ (combit GmbH) C:\Program Files (x86)\cmdw12.dll 2016-09-03 15:41 - 2007-06-20 16:54 - 4375552 _____ (combit GmbH) C:\Program Files (x86)\cmll12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 1808437 _____ () C:\Program Files (x86)\cmLL1200.chm 2016-09-03 15:41 - 2007-04-05 23:15 - 0124850 _____ () C:\Program Files (x86)\cmll1200.inf 2016-09-03 15:41 - 2007-04-05 23:15 - 0525312 _____ (combit GmbH) C:\Program Files (x86)\cmll1200.lng 2016-09-03 15:41 - 2007-04-26 13:33 - 0941056 _____ (combit GmbH) C:\Program Files (x86)\Cmll12bc.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0493044 _____ (combit GmbH) C:\Program Files (x86)\cmll12bm.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0546609 _____ (combit GmbH) C:\Program Files (x86)\cmll12eu.llx 2016-09-03 15:41 - 2007-05-08 11:01 - 0774196 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ex.llx 2016-09-03 15:41 - 2007-05-10 10:54 - 0875520 _____ (combit GmbH) C:\Program Files (x86)\cmll12ht.llx 2016-09-03 15:41 - 2007-06-11 10:52 - 2473554 _____ (combit GmbH) C:\Program Files (x86)\Cmll12ob.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0330752 _____ (combit GmbH) C:\Program Files (x86)\cmll12oc.llx 2016-09-03 15:41 - 2007-05-11 12:30 - 0351744 _____ (combit GmbH) C:\Program Files (x86)\Cmll12pw.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0008277 _____ () C:\Program Files (x86)\cmll12si.chm 2016-09-03 15:41 - 2007-04-05 23:15 - 0216476 _____ (combit GmbH) C:\Program Files (x86)\cmll12si.llx 2016-09-03 15:41 - 2007-04-05 23:15 - 0036864 _____ (combit GmbH) C:\Program Files (x86)\cmll12sx.dll 2016-09-03 15:41 - 2007-06-14 10:56 - 2006745 _____ (combit GmbH) C:\Program Files (x86)\Cmll12xl.dll 2016-09-03 15:41 - 2007-06-11 10:53 - 1858048 _____ (combit GmbH) C:\Program Files (x86)\cmls12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0075264 _____ (combit GmbH) C:\Program Files (x86)\cmls1200.lng 2016-09-03 15:41 - 2007-01-24 17:39 - 0054992 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.cpl 2016-09-03 15:41 - 2007-03-14 13:37 - 0800768 _____ (combit GmbH) C:\Program Files (x86)\Cmmx01.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0411648 _____ () C:\Program Files (x86)\Cmmx0100.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 0390656 _____ (combit GmbH) C:\Program Files (x86)\cmpr12.dll 2016-09-03 15:41 - 2007-04-24 12:26 - 0408576 _____ (combit GmbH) C:\Program Files (x86)\Cmut12.dll 2016-09-03 15:41 - 2007-06-08 09:22 - 1497600 _____ (combit GmbH) C:\Program Files (x86)\Cubr12.dll 2016-09-03 15:41 - 2007-06-13 10:13 - 2251776 _____ (combit GmbH) C:\Program Files (x86)\Cuct12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0815104 _____ (combit GmbH) C:\Program Files (x86)\cudw12.dll 2016-09-03 15:41 - 2007-06-20 17:33 - 4539904 _____ (combit GmbH) C:\Program Files (x86)\Cull12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0527872 _____ (combit GmbH) C:\Program Files (x86)\cull1200.lng 2016-09-03 15:41 - 2007-06-11 10:53 - 1923584 _____ (combit GmbH) C:\Program Files (x86)\culs12.dll 2016-09-03 15:41 - 2007-04-05 23:15 - 0075264 _____ (combit GmbH) C:\Program Files (x86)\culs1200.lng 2016-09-03 15:41 - 2007-04-05 23:15 - 0410624 _____ (combit GmbH) C:\Program Files (x86)\cupr12.dll 2016-09-03 15:41 - 2007-04-24 12:26 - 0435712 _____ (combit GmbH) C:\Program Files (x86)\Cuut12.dll 2016-09-03 15:41 - 2008-04-01 10:33 - 1374720 _____ () C:\Program Files (x86)\DatenZIP.exe 2016-09-03 15:41 - 2002-10-13 21:29 - 0487424 _____ () C:\Program Files (x86)\deinstal.exe 2016-09-03 15:41 - 2007-08-25 16:11 - 0246784 _____ (DelphiZip) C:\Program Files (x86)\DelZip179.dll 2016-09-03 15:41 - 2007-09-01 09:07 - 0000223 _____ () C:\Program Files (x86)\demo.dat 2016-09-03 15:41 - 2004-06-20 21:00 - 0000020 _____ () C:\Program Files (x86)\Display.ini 2016-09-03 15:41 - 2007-01-04 13:15 - 0946688 _____ () C:\Program Files (x86)\Dlgfind.exe 2016-09-03 15:41 - 2006-01-20 13:29 - 1540096 _____ () C:\Program Files (x86)\Drucka32.exe 2016-09-03 15:41 - 2008-01-18 07:45 - 0839168 _____ () C:\Program Files (x86)\eMail32.exe 2016-09-03 15:41 - 2005-08-15 18:03 - 0002048 _____ () C:\Program Files (x86)\Etikett.db 2016-09-03 15:41 - 2006-02-02 16:39 - 0783872 _____ (TaylorCom) C:\Program Files (x86)\Etikett.exe 2016-09-03 15:41 - 2005-08-15 18:03 - 0002048 _____ () C:\Program Files (x86)\Etikett.PX 2016-09-03 15:41 - 2007-08-14 20:29 - 1319936 _____ (Scalabium, Mike Shkolnik) C:\Program Files (x86)\Export32.exe 2016-09-03 15:41 - 2007-12-08 14:18 - 0736256 _____ () C:\Program Files (x86)\Feedback.exe 2016-09-03 15:41 - 2008-04-26 19:55 - 0000793 _____ () C:\Program Files (x86)\Felder.ini 2016-09-03 15:41 - 2008-03-03 12:00 - 2550784 _____ () C:\Program Files (x86)\Import32.exe 2016-09-03 15:41 - 2008-03-12 09:16 - 1080832 _____ (TaylorCom) C:\Program Files (x86)\Info.exe 2016-09-03 15:41 - 2008-01-08 11:13 - 1392640 _____ () C:\Program Files (x86)\Inventur.exe 2016-09-03 15:41 - 2007-01-14 23:15 - 1424896 _____ () C:\Program Files (x86)\IstWerte.exe 2016-09-03 15:41 - 2004-10-31 16:35 - 0992256 _____ () C:\Program Files (x86)\ITC.exe 2016-09-03 15:41 - 2007-03-29 18:38 - 0004096 _____ () C:\Program Files (x86)\KassenStand.DB 2016-09-03 15:41 - 2007-03-29 18:38 - 0004096 _____ () C:\Program Files (x86)\KassenStand.PX 2016-09-03 15:41 - 2002-06-17 22:01 - 0002048 _____ () C:\Program Files (x86)\KOMMLIST.DB 2016-09-03 15:41 - 2005-06-25 07:23 - 1263104 _____ () C:\Program Files (x86)\Kommlist.exe 2016-09-03 15:41 - 2002-06-17 22:01 - 0002048 _____ () C:\Program Files (x86)\KOMMLIST.PX 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.XG0 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.XG1 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.YG0 2016-09-03 15:41 - 2002-06-17 22:01 - 0004096 _____ () C:\Program Files (x86)\KOMMLIST.YG1 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.DB 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.PX 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.XG0 2016-09-03 15:41 - 2006-01-10 09:08 - 0004096 _____ () C:\Program Files (x86)\KOrder.YG0 2016-09-03 15:41 - 2007-11-07 11:25 - 1901056 _____ () C:\Program Files (x86)\KOrder32.exe 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.DB 2016-09-03 15:41 - 2007-03-08 21:13 - 0973312 _____ (TaylorCom) C:\Program Files (x86)\Kostelle.exe 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.PX 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.XG0 2016-09-03 15:41 - 2006-02-19 17:08 - 0004096 _____ () C:\Program Files (x86)\Kostelle.YG0 2016-09-03 15:41 - 2000-12-03 20:04 - 0034304 _____ () C:\Program Files (x86)\KUNDE.DOC 2016-09-03 15:41 - 2007-08-09 20:09 - 0034816 _____ () C:\Program Files (x86)\KUNDEN.DB 2016-09-03 15:41 - 2000-12-11 15:23 - 0034816 _____ () C:\Program Files (x86)\KUNDEN.DOC 2016-09-03 15:41 - 2008-04-23 14:03 - 3098112 _____ () C:\Program Files (x86)\Kunden.exe 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\KUNDEN.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\Kunden.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\Kunden.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\Kunden.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Kunden.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Kunden.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Kunden.YG2 2016-09-03 15:41 - 2008-04-26 19:51 - 3671040 _____ (TaylorCom) C:\Program Files (x86)\LAG2002.exe 2016-09-03 15:41 - 2008-03-05 23:08 - 0313344 _____ () C:\Program Files (x86)\LAGER.DB 2016-09-03 15:41 - 2008-03-05 23:08 - 0008192 _____ () C:\Program Files (x86)\LAGER.PX 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG0 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG1 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG2 2016-09-03 15:41 - 2008-03-05 23:08 - 0026624 _____ () C:\Program Files (x86)\LAGER.XG3 2016-09-03 15:41 - 2008-03-05 23:08 - 0038912 _____ () C:\Program Files (x86)\LAGER.XG4 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG5 2016-09-03 15:41 - 2008-03-05 23:08 - 0014336 _____ () C:\Program Files (x86)\LAGER.XG6 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG0 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG1 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG2 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG3 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG4 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG5 2016-09-03 15:41 - 2008-03-05 23:08 - 0004096 _____ () C:\Program Files (x86)\LAGER.YG6 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.DB 2016-09-03 15:41 - 2008-03-27 13:10 - 1718272 _____ () C:\Program Files (x86)\Lagerort.exe 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\Lagerort.YG1 2016-09-03 15:41 - 2000-12-11 11:28 - 0034304 _____ () C:\Program Files (x86)\LIEF.DOC 2016-09-03 15:41 - 2007-09-27 20:49 - 1945088 _____ () C:\Program Files (x86)\Lief32.exe 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\LiefADr.DB 2016-09-03 15:41 - 2007-08-25 11:06 - 0004096 _____ () C:\Program Files (x86)\LiefADr.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 0010240 _____ () C:\Program Files (x86)\Lieferrt.DB 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG2 2016-09-03 15:41 - 2007-10-02 12:47 - 0006144 _____ () C:\Program Files (x86)\Lieferrt.XG3 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG1 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG2 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\Lieferrt.YG3 2016-09-03 15:41 - 2005-11-30 20:49 - 0002048 _____ () C:\Program Files (x86)\LiefZusatz.db 2016-09-03 15:41 - 2005-11-30 20:49 - 0002048 _____ () C:\Program Files (x86)\LiefZusatz.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.DB 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.PX 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.XG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.XG1 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.YG0 2016-09-03 15:41 - 2007-09-27 17:26 - 0004096 _____ () C:\Program Files (x86)\ListLO.YG1 2016-09-03 15:41 - 2007-12-08 14:19 - 0497152 _____ (www.winlager.de) C:\Program Files (x86)\LiveUpda.exe 2016-09-03 15:41 - 2007-08-09 20:09 - 0008192 _____ () C:\Program Files (x86)\Memo.db 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.px 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Memo.YG2 2016-09-03 15:41 - 2007-12-29 10:26 - 1440768 _____ () C:\Program Files (x86)\Mobil32.exe 2016-09-03 15:41 - 2007-10-27 12:54 - 1324032 _____ () C:\Program Files (x86)\Mobil_K.exe 2016-09-03 15:41 - 2005-08-31 20:52 - 0020480 _____ ( ) C:\Program Files (x86)\Net00001.dll 2016-09-03 15:41 - 2008-04-02 08:19 - 1332224 _____ () C:\Program Files (x86)\NEWUPCS.exe 2016-09-03 15:41 - 2005-02-09 20:29 - 0006144 _____ () C:\Program Files (x86)\Notiz.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Notiz.PX 2016-09-03 15:41 - 2005-02-09 20:29 - 0006144 _____ () C:\Program Files (x86)\Notiz.XG0 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Notiz.YG0 2016-09-03 15:41 - 2008-01-29 13:49 - 0004096 _____ () C:\Program Files (x86)\OffenePosten.DB 2016-09-03 15:41 - 2008-01-29 13:49 - 0004096 _____ () C:\Program Files (x86)\OffenePosten.PX 2016-09-03 15:41 - 2008-04-13 21:57 - 2864128 _____ () C:\Program Files (x86)\Order32.exe 2016-09-03 15:41 - 2007-03-05 15:13 - 0004096 _____ () C:\Program Files (x86)\PCList.db 2016-09-03 15:41 - 2007-03-05 15:13 - 0004096 _____ () C:\Program Files (x86)\PCList.PX 2016-09-03 15:41 - 2007-08-02 21:01 - 0900608 _____ () C:\Program Files (x86)\PDAExp.exe 2016-09-03 15:41 - 2005-03-13 17:48 - 0002048 _____ () C:\Program Files (x86)\PREISGRP.DB 2016-09-03 15:41 - 2007-10-22 20:17 - 1239552 _____ () C:\Program Files (x86)\Preisgrp.exe 2016-09-03 15:41 - 2005-03-13 17:48 - 0002048 _____ () C:\Program Files (x86)\PREISGRP.PX 2016-09-03 15:41 - 2008-02-19 21:17 - 0090825 _____ () C:\Program Files (x86)\preisliste.pdf 2016-09-03 15:41 - 2007-02-09 21:45 - 1496576 _____ () C:\Program Files (x86)\PrintBon.exe 2016-09-03 15:41 - 2008-04-26 19:51 - 5263360 _____ (TaylorCom) C:\Program Files (x86)\Qkasse.exe 2016-09-03 15:41 - 2008-01-29 14:01 - 0003620 _____ () C:\Program Files (x86)\QKASSE.INI 2016-09-03 15:41 - 2002-02-14 10:49 - 0082944 _____ () C:\Program Files (x86)\qrpdflib.dll 2016-09-03 15:41 - 2008-04-14 18:27 - 2263040 _____ () C:\Program Files (x86)\RECH32.exe 2016-09-03 15:41 - 2004-08-20 22:39 - 0000083 _____ () C:\Program Files (x86)\RegKey.info 2016-09-03 15:41 - 2002-02-14 10:49 - 0082944 _____ () C:\Program Files (x86)\RegKey.reg 2016-09-03 15:41 - 2008-02-26 14:14 - 1652224 _____ () C:\Program Files (x86)\Rep32.exe 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\RepDetal.DB 2016-09-03 15:41 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\RepDetal.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\REPDETAL.YG2 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.DB 2016-09-03 15:41 - 2008-02-27 14:27 - 1306624 _____ (TaylorCom) C:\Program Files (x86)\SerienNr.exe 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.PX 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.XG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.XG1 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.YG0 2016-09-03 15:41 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\SerienNr.YG1 2016-09-03 15:41 - 2007-01-31 08:39 - 0980480 _____ () C:\Program Files (x86)\Service.exe 2016-09-03 15:41 - 2005-11-14 19:54 - 0599552 _____ () C:\Program Files (x86)\SMS.exe 2016-09-03 15:41 - 2008-04-26 09:16 - 1682944 _____ () C:\Program Files (x86)\start.exe 2016-09-03 15:41 - 2006-12-08 09:03 - 0141312 _____ () C:\Program Files (x86)\Statbest.DB 2016-09-03 15:41 - 2006-12-08 09:03 - 0004096 _____ () C:\Program Files (x86)\Statbest.PX 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0018432 _____ () C:\Program Files (x86)\STATBEST.XG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0010240 _____ () C:\Program Files (x86)\STATBEST.XG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG3 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG4 2016-09-03 15:41 - 2007-08-09 20:09 - 0006144 _____ () C:\Program Files (x86)\STATBEST.XG5 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG0 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG1 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG2 2016-09-03 15:41 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG3 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG4 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\STATBEST.YG5 2016-09-03 15:40 - 2008-04-04 07:00 - 0243712 _____ () C:\Program Files (x86)\StatRech.DB 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.PX 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG0 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG1 2016-09-03 15:40 - 2008-04-04 07:00 - 0043008 _____ () C:\Program Files (x86)\StatRech.XG2 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG3 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG4 2016-09-03 15:40 - 2008-04-04 07:00 - 0006144 _____ () C:\Program Files (x86)\StatRech.XG5 2016-09-03 15:40 - 2008-04-04 07:00 - 0010240 _____ () C:\Program Files (x86)\StatRech.XG6 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG0 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG1 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG2 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG3 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG4 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG5 2016-09-03 15:40 - 2008-04-04 07:00 - 0004096 _____ () C:\Program Files (x86)\StatRech.YG6 2016-09-03 15:40 - 2005-10-12 20:42 - 0096256 _____ () C:\Program Files (x86)\StBestand.DB 2016-09-03 15:40 - 2005-10-12 20:42 - 0004096 _____ () C:\Program Files (x86)\StBestand.PX 2016-09-03 15:40 - 2007-10-02 12:47 - 0004096 _____ () C:\Program Files (x86)\STCKLIST.DB 2016-09-03 15:40 - 2007-11-16 08:56 - 1314816 _____ () C:\Program Files (x86)\stcklist.exe 2016-09-03 15:40 - 2006-03-07 15:06 - 0004096 _____ () C:\Program Files (x86)\STCKLIST.PX 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.XG0 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.XG1 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.YG0 2016-09-03 15:40 - 2007-08-09 20:09 - 0004096 _____ () C:\Program Files (x86)\Stcklist.YG1 2016-09-03 15:40 - 2007-07-06 02:00 - 0613581 _____ () C:\Program Files (x86)\stepbystep.pdf 2016-09-03 15:40 - 2007-08-25 11:07 - 0020480 _____ () C:\Program Files (x86)\System.DB 2016-09-03 15:40 - 2007-08-25 11:07 - 0004096 _____ () C:\Program Files (x86)\SYSTEM.PX 2016-09-03 15:40 - 2008-02-26 14:22 - 1872384 _____ (TaylorCom) C:\Program Files (x86)\System32.exe 2016-09-03 15:40 - 2002-12-26 12:12 - 0000006 _____ () C:\Program Files (x86)\tan 2016-09-03 15:41 - 2007-12-09 14:21 - 0011856 _____ () C:\Program Files (x86)\taylorcom6.jpg 2016-09-03 15:40 - 2005-09-25 17:38 - 0002048 _____ () C:\Program Files (x86)\Termine.db 2016-09-03 15:40 - 2005-09-25 17:38 - 0002048 _____ () C:\Program Files (x86)\Termine.PX 2016-09-03 15:41 - 2007-04-12 20:53 - 1619456 _____ (TaylorCom) C:\Program Files (x86)\Termine2007.exe 2016-09-03 15:40 - 2000-12-09 04:00 - 0244984 _____ () C:\Program Files (x86)\TUTIL32.DLL 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.DB 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.PX 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.XG0 2016-09-03 15:40 - 2005-02-09 20:29 - 0004096 _____ () C:\Program Files (x86)\Ulag.YG0 2016-09-03 15:40 - 2007-03-23 23:29 - 0923648 _____ () C:\Program Files (x86)\ULOrt32.exe 2016-09-03 15:40 - 2008-04-17 17:39 - 5539328 _____ () C:\Program Files (x86)\Umsatz32.exe 2016-09-03 15:40 - 2004-12-30 11:20 - 0120320 _____ () C:\Program Files (x86)\UnzDll.dll 2016-09-03 15:40 - 2008-04-22 21:12 - 1571840 _____ () C:\Program Files (x86)\WEO32.exe 2016-09-03 15:40 - 2008-04-03 11:58 - 1395712 _____ () C:\Program Files (x86)\WG.exe 2016-09-03 15:40 - 2008-03-29 10:05 - 0004096 _____ () C:\Program Files (x86)\Wgr.DB 2016-09-03 15:40 - 2008-03-29 10:05 - 0004096 _____ () C:\Program Files (x86)\Wgr.PX 2016-09-03 15:40 - 2005-09-01 07:32 - 0102400 _____ ( ) C:\Program Files (x86)\ZaHilfe.exe 2016-09-03 15:40 - 2005-02-20 15:06 - 0138752 _____ () C:\Program Files (x86)\ZipDll.dll 2015-10-15 17:27 - 2015-10-15 17:27 - 0000003 _____ () C:\Users\Familie Schütz\AppData\Local\updater.log 2015-10-15 17:28 - 2016-08-06 17:45 - 0000424 _____ () C:\Users\Familie Schütz\AppData\Local\UserProducts.xml 2015-10-21 18:13 - 2015-10-21 18:13 - 0000057 _____ () C:\ProgramData\Ament.ini 2015-06-10 04:03 - 2015-06-10 04:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-02-19 15:07 - 2016-02-19 15:07 - 0000016 _____ () C:\ProgramData\mntemp 2016-02-19 15:07 - 2016-02-19 15:07 - 0004881 _____ () C:\ProgramData\rxsmznjf.zcp 2015-12-06 20:55 - 2015-12-06 20:57 - 0002702 _____ () C:\ProgramData\{CF93D06A-43BB-4aa4-A4FB-99880124E1AB}.log 2015-12-06 20:57 - 2015-12-06 20:57 - 0001240 _____ () C:\ProgramData\{CF93D06A-43BB-4aa4-A4FB-99880124E1AC}.log Einige Dateien in TEMP: ==================== C:\Users\Familie Schütz\AppData\Local\Temp\avgnt.exe C:\Users\Luca\AppData\Local\Temp\avgnt.exe C:\Users\Luca\AppData\Local\Temp\COMAP.EXE C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-102047070684350419.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1021881899779484485.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1194839775302232026.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1224375518983917759.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1237489147569781333.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1307433817920319581.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1456435416031738893.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1464962070855903375.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1528553351840808739.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1571130032418379314.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1632876740646237568.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1695829961931317244.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1882760050758381558.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-1907469925100803517.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2087887608307734468.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2108677866551399122.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2114623020418463076.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2120522379633388997.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-223172868179840990.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2421287095259216208.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2436118439381431734.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2459736261541492186.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-255599553491956244.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2821363238713007500.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2859328016598020176.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2974542198954142184.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-2987575025481865385.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3100460345089814711.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3130189905255603175.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3213438227998160228.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3353130129378264198.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3914618017386171196.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-3917184219499964349.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4179747194328986809.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4425429522757829601.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4460200915679666436.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4520063700390926208.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4875590239972915801.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-4923337720850207982.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5016729431153679609.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5075451959652649879.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-511424715168692176.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5121462731662133481.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5220097767482780973.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5236295242808673195.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5662222964873507119.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5679955704194244753.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5787592863547240981.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5797732592276521532.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5805661804948033654.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5856515132126807927.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5859123043035014602.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5893347290188778165.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-5954428564874338353.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-598272773333188866.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6359089739298817183.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6360251957606637130.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6507858170975037715.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6616386241688709177.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6775778621678581319.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6792410408762878556.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6797761778214371580.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-6897087221144990756.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7078459544603952461.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7203307528366933922.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7271936160273324107.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7294070849721839121.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-737780776036636949.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7418448487893126912.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7462364185428468549.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-748066607832008916.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7809177982995337970.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-7922564895001451556.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8075903985073177170.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-827794143497998031.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8314083586517610471.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8379653462155866068.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8468649408409892509.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8696954352210092706.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8724357053138375530.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-8860078047425473659.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-9031216940269788875.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-9161077897874199970.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-939554906850328812.dll C:\Users\Luca\AppData\Local\Temp\jansi-32-git-Spigot-90839e6-c5d27c5-957949023841733584.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-BungeeCord-4622417259289570418.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-BungeeCord-721977166654502710.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-BungeeCord-8127545728231287598.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-b3020jnks.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2088781779981914868.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2576755252107033352.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2613782420221683601.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2658253220037464709.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-2848975334696030289.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3101935224798676073.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-318922407554183004.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3337685243657530132.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3402095750885288298.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3424685235226310988.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-3792522935184894631.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-4612394268522924073.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-4839105660862162032.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-6859979679269378671.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-6930083474114083688.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7548605125554448821.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7686319554663862876.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7786331900825824608.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-7928466940541968416.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-8111728990841794655.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-8753909120653273612.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-8892688959095004199.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-9076627318491808874.dll C:\Users\Luca\AppData\Local\Temp\jansi-64-git-Spigot-90839e6-c5d27c5-950510556330372640.dll C:\Users\Luca\AppData\Local\Temp\SkypeSetup.exe C:\Users\Luca\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-09-04 19:42 ==================== Ende von FRST.txt ============================ |
13.09.2016, 15:42 | #6 |
| Win8.1: Antivir findet Trojaner - was nun?Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-09-2016 durchgeführt von Familie Schütz (13-09-2016 16:37:35) Gestartet von C:\Users\Familie Schütz\Desktop Windows 8.1 (Update) (X64) (2015-10-14 19:17:54) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1976660754-2451958475-3698774454-500 - Administrator - Disabled) Familie Schütz (S-1-5-21-1976660754-2451958475-3698774454-1001 - Administrator - Enabled) => C:\Users\Familie Schütz Gast (S-1-5-21-1976660754-2451958475-3698774454-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1976660754-2451958475-3698774454-1003 - Limited - Enabled) Luca (S-1-5-21-1976660754-2451958475-3698774454-1004 - Limited - Enabled) => C:\Users\Luca ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.2 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.2 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{ED58E095-DBF7-FD50-6290-137EC1723430}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.20.59 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{6052a753-acc6-4c02-b5a8-70962ff8e0a4}) (Version: 1.2.69.16114 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.2.69.16114 - Avira Operations GmbH & Co. KG) Hidden Benutzerhandbücher (x32 Version: 3.0.0.3 - Lenovo) Hidden Camtasia Studio 8 (HKLM-x32\...\{F6EC4C4E-C87B-4F50-851B-1C86E0C94F00}) (Version: 8.6.0.2055 - TechSmith Corporation) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.32.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc) FileZilla Client 3.16.1 (HKLM-x32\...\FileZilla Client) (Version: 3.16.1 - Tim Kosse) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Gramblr (HKLM\...\Gramblr) (Version: 2.4.6 - Gramblr Team) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HP Deskjet 1000 J110 series - Grundlegende Software für das Gerät (HKLM\...\{CED47C99-8892-4956-BCA7-CC3123531371}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.30.1072 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4099 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.3.1001 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1449.356) (HKLM\...\{302600C1-6BDF-4FD1-1411-148929CC1385}) (Version: 17.1.1411.0506 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Intel® PROSet/Wireless Software (HKLM-x32\...\{6535d76a-59fb-4935-b2c5-cd61917c4a4b}) (Version: 17.16.0 - Intel Corporation) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Lenovo App Services (HKLM\...\Lenovo App Services) (Version: 0.200.8.201 - Lenovo) Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11068 - Realtek Semiconductor Corp.) Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.) Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 2.0.0.19b - Lenovo) Lenovo PhoneCompanion (x32 Version: 2.0.0.19b - Lenovo) Hidden Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.5.2624.01 - CyberLink Corp.) Lenovo Photo Master (x32 Version: 1.5.2624.01 - CyberLink Corp.) Hidden Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6806.52 - CyberLink Corp.) Lenovo PowerDVD10 (x32 Version: 10.0.6806.52 - CyberLink Corp.) Hidden Lenovo Solution Center (HKLM\...\{15730627-A3E2-4EBA-A431-CAD867DADFFD}) (Version: 2.8.002.00 - Lenovo Group Limited) Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.1.14.6181 - Lenovo) LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 2.0.0.6 - Ihr Firmenname) LenovoUtility (x32 Version: 2.0.0.6 - Ihr Firmenname) Hidden Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7167.2040 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Movavi Video Editor 11 (HKLM-x32\...\Movavi Video Editor 11) (Version: 11.2.0 - Movavi) Mozilla Firefox 48.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 de)) (Version: 48.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla) NBTExplorer (HKLM-x32\...\{06107EDA-5B85-4CEC-AB1E-8350DEC15231}) (Version: 2.7.4.0 - Justin Aquadro) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team) OEM Application Profile (HKLM-x32\...\{1D464EFF-EC8B-F225-2F74-F74143200DDF}) (Version: 1.00.0000 - Ihr Firmenname) Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7167.2040 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7167.2040 - Microsoft Corporation) Hidden OneKey Optimizer (HKLM-x32\...\InstallShield_{D5D573DC-D989-4769-9B56-D6A7EA503D7F}) (Version: 1.2.24.07 - Lenovo) OneKey Optimizer (x32 Version: 1.2.24.07 - Lenovo) Hidden OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39063 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7469 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games) Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.) Small Cash Kassensystem (HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\...\Small Cash Kassensystem) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.143 - Synaptics Incorporated) TaylorCom Software 3000 (HKLM-x32\...\TaylorCom Software 3000) (Version: 3000 - TaylorCom) TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation) USB Flash Security Ver.4.1.12 (HKLM-x32\...\KASHU_UsbEnterVer.4.1.12) (Version: Ver.4.1.12 - KASHU SYSTEM DESIGN INC.) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Windows-Treiberpaket - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo) Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo) WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-1976660754-2451958475-3698774454-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {0FE3E764-D348-4E57-A633-7F04A3751829} - System32\Tasks\{BBB31CA8-DF60-4C38-9EF8-99581B6E569C} => pcalua.exe -a E:\eFilmLt.exe -d E:\ Task: {35B39342-678B-4479-A383-5D4C61737488} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated) Task: {401EEFD4-6A62-4B34-AEDB-B91F669C1546} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-01-19] (Lenovo) Task: {4E5AEED8-0F4E-4A3A-9F82-05A690108326} - System32\Tasks\update-S-1-5-21-1976660754-2451958475-3698774454-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {56FF05E2-34BA-4F68-90F4-DFCB4BD46B83} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-09-02] (Lenovo) Task: {629BAB24-B707-4639-AFBD-0978F1BB8BA4} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo) Task: {66EE4A22-EB6F-4195-9589-2BD355121153} - System32\Tasks\Lenovo App Services => C:\ProgramData\Lenovo App Services\Engine\LenovoAppServices.exe [2016-04-27] (Lenovo) Task: {6C745F9E-B57C-4DA0-87D0-F8E5300A9F4C} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Luca\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-28] (Microsoft Corporation) Task: {741CE3F1-0130-4BE5-9770-1AC80A23FB80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-24] (Google Inc.) Task: {8A4153F6-F8DE-4C16-977C-500D942C4804} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-24] (Google Inc.) Task: {8B2EB5D9-6A81-44EE-AD01-C47CFC6587A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {8E9DC9B7-8391-4759-9E57-34CDD4CDE0F2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-08-11] (Microsoft Corporation) Task: {95487E3A-FF7E-46BA-BCC9-881288221BFE} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1976660754-2451958475-3698774454-1004 => C:\Users\Familie Schütz\AppData\Local\Microsoft\OneDrive\OneDrive.exe Task: {A827E0F6-5B87-458E-8FC2-8AF9859B5DCC} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-01-19] () Task: {BF2B07FD-44DC-4691-8CA3-C5C338AD98E2} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-01-19] (Lenovo) Task: {C4DD34B6-C854-4A4B-9799-84D855E7257E} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe Task: {C71BED56-DBD5-45A1-9232-EC7FC0C83D4D} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {CB8CB121-6F16-4D26-9ABB-3260AFE1CADC} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] () Task: {CEE07A94-2CE1-43D3-8042-3FAE293D402B} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {D2D6EB32-5EBC-4797-B391-84B1BF5D3099} - System32\Tasks\AdobeAAMUpdater-1.0-Schütz-Luca => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated) Task: {DB73D877-CAD2-4151-8D76-A97EFA601D4E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-08-12] (Microsoft Corporation) Task: {EDD65570-24E5-4CDA-B9D8-27A429CDDB0A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-08-11] (Microsoft Corporation) Task: {F1175755-5A3B-472F-B278-07EC92481937} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-01-19] () Task: {F6D452FD-B8D4-450B-96AA-00DE156B729A} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.) Task: {F82FECDE-2D04-4131-9A06-1B2836A0B090} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-08-25] (Microsoft Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-1976660754-2451958475-3698774454-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-06-10 04:46 - 2015-01-27 15:34 - 00016920 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\FbServicePS.dll 2016-03-16 12:17 - 2016-03-16 12:17 - 00052912 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll 2015-06-10 04:40 - 2012-04-24 12:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2015-06-10 04:36 - 2015-06-10 04:36 - 00068880 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe 2015-06-10 04:36 - 2015-06-10 04:36 - 00672016 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfDataStorageInterface.dll 2016-01-04 20:18 - 2016-01-26 19:35 - 09036880 _____ () C:\Program Files\Gramblr\gramblr.exe 2015-06-10 04:44 - 2015-06-10 04:43 - 00815104 _____ () C:\Program Files\Lenovo PhoneCompanion\adb.exe 2015-06-10 04:35 - 2014-10-22 10:15 - 00644080 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe 2015-06-10 04:46 - 2015-03-30 15:04 - 00037672 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\Metric.dll 2015-06-10 04:46 - 2015-03-30 15:04 - 00166696 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\Lenovo.MetricCollectionMFCx64.dll 2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2016-02-21 23:38 - 2016-02-21 23:38 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2015-06-10 04:35 - 2014-10-22 10:15 - 00410096 _____ () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe 2015-06-09 21:24 - 2015-02-04 20:35 - 00391784 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-06-10 04:35 - 2015-06-10 04:35 - 00791368 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe 2015-06-10 04:35 - 2015-06-10 04:35 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll 2015-06-10 04:46 - 2015-03-30 15:05 - 00050472 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\res_GR_German_DEU.dll 2016-04-01 23:17 - 2016-04-01 23:17 - 31679664 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2015-06-10 04:46 - 2015-01-27 15:34 - 00159256 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\FbApi.dll 2015-06-10 04:46 - 2015-03-30 15:05 - 00036136 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\zd.dll 2015-06-10 04:46 - 2015-06-10 04:46 - 00019232 _____ () C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\Lenovo.MetricCollectionSDK\v4.0_1.1.9.0__d43be3ee47b19ecb\Lenovo.MetricCollectionSDK.dll 2014-10-10 09:37 - 2014-10-10 09:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-06-10 04:40 - 2014-07-04 06:35 - 00627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll 2014-07-04 12:35 - 2014-07-04 12:35 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll 2016-04-07 11:44 - 2016-04-07 11:44 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2016-03-29 17:19 - 2016-03-29 17:19 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-03-29 17:19 - 2016-03-29 17:19 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-03-29 17:19 - 2016-03-29 17:19 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2016-03-29 17:19 - 2016-03-29 17:19 - 00126464 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-04-07 11:35 - 2016-04-07 11:35 - 00090304 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll 2016-03-29 17:19 - 2016-03-29 17:19 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 15:25 - 2016-03-17 17:38 - 00000904 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1976660754-2451958475-3698774454-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{8E434D43-E64D-48C0-B819-2E45215392C8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{2AC04613-91A0-4407-A804-8D0B27B5DFA9}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{3DF639D7-E644-4988-857C-CBB94875B9D8}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{3A8A42A7-761B-455D-832C-952BDB08E9A6}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{E6D6C3CF-C348-4EB4-A951-6C4599EFE264}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{2F768628-1E35-4D1B-BCB9-E1F587C77695}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE FirewallRules: [{BF9758A5-9638-4FA2-8920-1E93FAEFA9CD}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{F8AC99EE-1CA4-46A8-B047-FCD36245C0E9}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{260BB7CE-80A7-4533-9863-D1774715BDF3}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe FirewallRules: [{DDC73664-1DC7-4070-BC3F-BB665C79F9A1}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe FirewallRules: [{EF7678B9-2C84-49BB-B959-272168A38751}] => (Allow) LPort=55100 FirewallRules: [{6C0C3A92-EE50-4739-B6B9-212C704539C6}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe FirewallRules: [{0CEE289A-5570-472C-8281-ADE8F8E56101}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{20A0F28B-D1BE-45E8-B887-B333EBED90A3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{4D470D4F-B340-4FF3-855F-005EFAF18DF1}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{6459F152-45B5-4B54-8DB3-349034C4800F}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{8AEED6EF-4996-4FEB-8A6D-6EA053003A9A}] => (Allow) C:\Users\Familie Schütz\AppData\Local\Microsoft\OneDrive\OneDrive.exe FirewallRules: [{7AEA3161-60EB-4EAE-9BA3-088992E29240}] => (Allow) C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\USBSetup.exe FirewallRules: [{361953C0-6BD6-4F51-BDF6-5BB98D94D270}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{76449607-781E-4E1B-AAA6-A1DFCD10A2FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{2CCF8C1F-7916-461B-A4F6-385AE0468F23}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [UDP Query User{3D7443D0-22A5-4D06-A7B7-261D85C8F65B}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [TCP Query User{A952F748-7120-4990-ACB8-F0562185FFBD}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{2BD60EAB-3CDF-4BFC-A9F1-934DD27681F9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{BE6499DD-DF49-4DD9-9A4D-91B13E9C5F09}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [UDP Query User{77BCEB30-FC09-4D5A-8030-DBF5AAF2162F}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [TCP Query User{0FD3678D-68EF-4EED-90B6-6762C90C8F03}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [UDP Query User{75525065-3865-4463-96F8-BC30FC22FE54}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe FirewallRules: [{482906CB-92B1-49E9-AE54-F81BE75EFED2}] => (Allow) LPort=8317 FirewallRules: [TCP Query User{AA795EC5-9617-4FD9-A21D-700FD8F97FF6}C:\program files (x86)\java\jre1.8.0_71\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\java.exe FirewallRules: [UDP Query User{A6B3BD41-AA53-443B-9466-72DBB472C295}C:\program files (x86)\java\jre1.8.0_71\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\java.exe FirewallRules: [TCP Query User{BD7A30CA-AF25-4CA2-B85B-49E7718DFA9C}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{71B12639-D79A-49EB-865E-E4256791DDD4}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{0BA9B4D6-09C2-4E68-ACD2-CAB1BBBBED2C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{5867F8AD-EECF-4093-BB8E-D726C223440A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{FB997B5F-3FE6-45C9-AF8C-FA9306F3BA33}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{580E744F-F470-4080-B893-C6FD29B38F96}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [TCP Query User{1CCDFFA6-568F-4106-A466-02C0B80A87B8}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\java.exe FirewallRules: [UDP Query User{146F3A1A-5002-4778-AEFE-507B3DB673C9}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\java.exe FirewallRules: [TCP Query User{84B11C74-E465-4B58-8745-D60DC3A42678}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{F6D788B5-2784-4C1B-9767-C37840BACC62}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [TCP Query User{7CA4A3E4-7F24-426F-A3D5-2D43D82E41D1}C:\program files\java\jdk1.7.0_79\bin\java.exe] => (Block) C:\program files\java\jdk1.7.0_79\bin\java.exe FirewallRules: [UDP Query User{B73D4BB9-C51E-4D64-9756-EBC3D944EA22}C:\program files\java\jdk1.7.0_79\bin\java.exe] => (Block) C:\program files\java\jdk1.7.0_79\bin\java.exe FirewallRules: [{8E5E3CEB-5C1D-4242-9782-B4E5A0148E24}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [TCP Query User{0E8E853D-F2FF-46D5-83CB-DCBF9AE5F83C}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [UDP Query User{CEF4FF36-D0E2-4A40-9D61-F3EE048422C5}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [{0BF51F3B-1310-4998-B1DF-C1416710A164}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9C1CB7E8-5FD5-4A0C-8FA1-D9F48D0354AD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{483CD994-DCF9-4D7D-B671-A3DCC162CCC1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{D983FEF2-DE28-4AFA-A430-94531CF7E2A0}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{DB979F76-E6D1-44D2-A4CA-FB619C94C422}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wiederherstellungspunkte ========================= 04-09-2016 19:36:56 Geplanter Prüfpunkt ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (09/13/2016 03:20:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: OnekeyOptimizerUpdata.exe, Version: 1.2.24.5, Zeitstempel: 0x551a0769 Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff Ausnahmecode: 0xc0000409 Fehleroffset: 0x0000000000074a30 ID des fehlerhaften Prozesses: 0x398 Startzeit der fehlerhaften Anwendung: 0x01d20dc12be62af3 Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe Pfad des fehlerhaften Moduls: C:\Program Files\Lenovo\OneKey Optimizer\bin\MSVCR120.dll Berichtskennung: df221a5a-79b4-11e6-8341-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/13/2016 01:04:04 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/13/2016 01:04:04 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/13/2016 12:51:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: OnekeyOptimizerUpdata.exe, Version: 1.2.24.5, Zeitstempel: 0x551a0769 Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff Ausnahmecode: 0xc0000409 Fehleroffset: 0x0000000000074a30 ID des fehlerhaften Prozesses: 0x170c Startzeit der fehlerhaften Anwendung: 0x01d20dac47544216 Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe Pfad des fehlerhaften Moduls: C:\Program Files\Lenovo\OneKey Optimizer\bin\MSVCR120.dll Berichtskennung: 1034d9ce-79a0-11e6-8341-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/13/2016 12:50:20 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/11/2016 01:15:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: OnekeyOptimizerUpdata.exe, Version: 1.2.24.5, Zeitstempel: 0x551a0769 Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff Ausnahmecode: 0xc0000409 Fehleroffset: 0x0000000000074a30 ID des fehlerhaften Prozesses: 0x1500 Startzeit der fehlerhaften Anwendung: 0x01d20c1c93f02178 Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe Pfad des fehlerhaften Moduls: C:\Program Files\Lenovo\OneKey Optimizer\bin\MSVCR120.dll Berichtskennung: 0f0db4cd-7811-11e6-8340-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/11/2016 11:53:49 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: gramblr.exe, Version: 0.0.0.0, Zeitstempel: 0x56a6476f Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4ebb Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000000546fb ID des fehlerhaften Prozesses: 0x14e4 Startzeit der fehlerhaften Anwendung: 0x01d20c11b1acb5d0 Pfad der fehlerhaften Anwendung: C:\Program Files\Gramblr\gramblr.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: a2d24108-7805-11e6-8340-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/10/2016 07:27:15 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: OnekeyOptimizerUpdata.exe, Version: 1.2.24.5, Zeitstempel: 0x551a0769 Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff Ausnahmecode: 0xc0000409 Fehleroffset: 0x0000000000074a30 ID des fehlerhaften Prozesses: 0x1d88 Startzeit der fehlerhaften Anwendung: 0x01d20b814e4d4270 Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe Pfad des fehlerhaften Moduls: C:\Program Files\Lenovo\OneKey Optimizer\bin\MSVCR120.dll Berichtskennung: d0d2495e-777b-11e6-8340-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/10/2016 06:33:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: OnekeyOptimizerUpdata.exe, Version: 1.2.24.5, Zeitstempel: 0x551a0769 Name des fehlerhaften Moduls: MSVCR120.dll, Version: 12.0.21005.1, Zeitstempel: 0x524f83ff Ausnahmecode: 0xc0000409 Fehleroffset: 0x0000000000074a30 ID des fehlerhaften Prozesses: 0x1564 Startzeit der fehlerhaften Anwendung: 0x01d20b5a28fd5507 Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe Pfad des fehlerhaften Moduls: C:\Program Files\Lenovo\OneKey Optimizer\bin\MSVCR120.dll Berichtskennung: 5b4d0e9f-7774-11e6-8340-34e6adeeeee9 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (09/10/2016 02:15:20 PM) (Source: lupdate) (EventID: 0) (User: ) Description: Event-ID 0 Systemfehler: ============= Error: (09/13/2016 12:47:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/13/2016 12:46:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "FileZilla Server FTP server" wurde aufgrund folgenden Fehlers nicht gestartet: Das System kann die angegebene Datei nicht finden. Error: (09/13/2016 12:45:30 PM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT) Description: Der Systemüberwachungszeitgeber wurde ausgelöst. Error: (09/13/2016 12:46:02 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 11.09.2016 um 13:07:02 unerwartet heruntergefahren. Error: (09/11/2016 12:19:10 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (09/11/2016 12:02:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 3 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/11/2016 11:48:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/11/2016 11:48:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows-Connectivity für Gramblr." wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 500 Millisekunden durchgeführt: Neustart des Diensts. Error: (09/10/2016 02:55:06 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (09/10/2016 02:49:17 PM) (Source: DCOM) (EventID: 10010) (User: Schütz) Description: Der Server "{1B1F472E-3221-4826-97DB-2C2324D389AE}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Prozentuale Nutzung des RAM: 67% Installierter physikalischer RAM: 4009.84 MB Verfügbarer physikalischer RAM: 1303.95 MB Summe virtueller Speicher: 8105.84 MB Verfügbarer virtueller Speicher: 4851.02 MB ==================== Laufwerke ================================ Drive c: (Windows8_OS) (Fixed) (Total:425.79 GB) (Free:198.43 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.24 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 1946CBF9) Partition: GPT. ==================== Ende von Addition.txt ============================ |
13.09.2016, 15:49 | #7 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win8.1: Antivir findet Trojaner - was nun?Code:
ATTFilter 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com Hast du jetzt ALLES an illegalen Installationen gelöscht, auch die Cracks/Keygens auch?
__________________ Logfiles bitte immer in CODE-Tags posten |
13.09.2016, 16:07 | #8 |
| Win8.1: Antivir findet Trojaner - was nun? Ich hoffe es doch Soll ich noch mal das FRST drüberlaufen lassen? |
13.09.2016, 19:50 | #9 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win8.1: Antivir findet Trojaner - was nun? Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
14.09.2016, 00:15 | #10 |
| Win8.1: Antivir findet Trojaner - was nun?Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001 www.malwarebytes.org Database version: main: v2016.09.13.12 rootkit: v2016.08.15.01 Windows 8.1 x64 NTFS Internet Explorer 11.0.9600.18427 Familie Schütz :: SCHÜTZ [administrator] 13.09.2016 21:37:11 mbar-log-2016-09-13 (21-37-11).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 413329 Time elapsed: 1 hour(s), 29 minute(s), 49 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 4 C:\Program Files (x86)\RegKey.reg (RiskWare.ExtensionMismatch) -> Delete on reboot. [c5ebb7bacad051e556f788c6a06142be] C:\$Recycle.Bin\S-1-5-21-1976660754-2451958475-3698774454-1004\$RPL52WV\Camtasia studio 8.x patch.exe (RiskWare.FilePatcher) -> Delete on reboot. [cce4b0c1a0fa75c17eed3d13aa57fd03] C:\Users\Luca\AppData\Local\Temp\Temp1_CSTMR.zip\Camtasia studio 8.x patch.exe (RiskWare.FilePatcher) -> Delete on reboot. [9f11cda4faa02e081754f957eb166a96] C:\Program Files (x86)\System32.exe (Worm.AutoRun) -> Delete on reboot. [e0d02849f6a450e6d466fd121ee5aa56] Physical Sectors Detected: 0 (No malicious items detected) (end) |
14.09.2016, 09:43 | #11 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win8.1: Antivir findet Trojaner - was nun? Du sollst was machen wenn MBAR fündig wurde?
__________________ Logfiles bitte immer in CODE-Tags posten |
Themen zu Win8.1: Antivir findet Trojaner - was nun? |
.dll, adobe, antivir, antivirus, avira, defender, email, explorer, fehler, firefox, flash player, google, homepage, mozilla, node.js, prozesse, realtek, registry, rojaner gefunden, rundll, scan, software, svchost.exe, system, trojaner, usb, windows |