Sämtliche AV-Programme plötzlich im Zertifikatsspeicher von Win 10 als "nicht vetrauenswürdige Zertifikate"

gerdman · 28.05.2017, 12:31

Hier die FRST.txt
#######
FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
durchgeführt von Leo (Administrator) auf QUADCORE-I5 (28-05-2017 13:23:13)
Gestartet von C:\Users\Leo\Downloads
Geladene Profile: Leo & UpdatusUser & MSSQLServerOLAPService & ReportServer & MsDtsServer120 (Verfügbare Profile: Leo & UpdatusUser & MSSQLServerOLAPService & ReportServer & MSSQLFDLauncher & SQLSERVERAGENT & MsDtsServer120 & MSSQLSERVER)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(IBM Corp) C:\Windows\SysWOW64\nslsvice.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IBM Corp) C:\Windows\SysWOW64\nsl.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G DATA\GDScan\GDScan.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G DATA\AVKProxy\AVKProxy.exe
(G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe
() C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe
(REINER SCT) C:\Windows\SysWOW64\cjpcsc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManager64.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(IBM Corp) C:\Program Files (x86)\lotus\notes\ntmulti.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.WTSNXEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files (x86)\StarMoney 10 apoEdition\ouservice\StarMoneyOnlineUpdate.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\120\DTS\Binn\MsDtsSrvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSRS12.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSAS12.MSSQLSERVER\OLAP\bin\msmdsrv.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G DATA\AVKProxy\AVKBap64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
() C:\Windows\Temp\g8C05.tmp.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
() C:\Windows\Temp\g8C07.tmp.exe
(IDRIX) C:\Program Files\VeraCrypt\VeraCrypt.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GDKBFltExe32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
(Farbar) C:\Users\Leo\Downloads\FRST64(1).exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [401896 2016-11-02] ()
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [1314112 2015-02-09] (FileOpen Systems Inc.)
HKLM\...\Run: [Network Configuration] => C:\Program Files (x86)\Okidata\ActKey\Network Configuration.exe [725280 2012-08-27] (Oki Data Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-03-22] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [IntelSBA] => C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe [4243168 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-03-16] (Apple Inc.)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [BrowserPlugInHelper] => C:\Program Files (x86)\Aimersoft\Video Converter Ultimate\BrowserPlugInHelper.exe
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499640 2016-12-17] (Adobe Systems Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [309184 2012-03-28] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [HPUsageTracking] => C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [30264 2009-10-06] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [73216 2015-12-23] ()
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [CDIWTSEnabler] => wscript "C:\Program Files (x86)\Cherry\CDI\cdiwtsclient.vbs"
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [SpeechExecSDQuickLoad] => C:\Program Files (x86)\Philips Speech\SpeechExec Dictate\SEDict.exe [3430416 2016-03-21] (Speech Processing Solutions GmbH)
HKLM-x32\...\Run: [PowerDVD12DMREngine] => C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe [513304 2016-11-01] (CyberLink)
HKLM-x32\...\Run: [PowerDVD12Agent] => C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe [386088 2016-11-01] (CyberLink Corp.)
HKLM Group Policy restriction on software: C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe <====== ACHTUNG
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [] => [X]
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation)
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [iDevice Manager Launcher] => C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDMLauncher.exe [139216 2014-03-15] (Marx Softwareentwicklung - www.software4u.de)
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-05-25] (Glarysoft Ltd)
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe [3180360 2017-02-15] (Link64 GmbH)
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [VeraCrypt] => C:\Program Files\VeraCrypt\VeraCrypt.exe [5489808 2016-11-04] (IDRIX)
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Run: [AnyDVD] => C:\Program Files (x86)\RedFox\AnyDVD\AnyDVDtray.exe [11030528 2017-05-05] (RedFox)
HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-21-163866912-915633979-1340512146-1003\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-163866912-915633979-1340512146-1003\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-80-2872255330-672591203-888807865-2791174282-1554802921\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-80-2872255330-672591203-888807865-2791174282-1554802921\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-80-2872255330-672591203-888807865-2791174282-1554802921\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-80-2885764129-887777008-271615777-1616004480-2722851051\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-80-2885764129-887777008-271615777-1616004480-2722851051\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-80-2885764129-887777008-271615777-1616004480-2722851051\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-80-3642287774-1615985598-572449333-1370030010-3123895339\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-80-3642287774-1615985598-572449333-1370030010-3123895339\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-80-3642287774-1615985598-572449333-1370030010-3123895339\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [4516800 2017-03-04] (Microsoft Corporation) <==== ACHTUNG
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Leo\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileSyncShell64.dll [2017-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Leo\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileSyncShell64.dll [2017-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Leo\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileSyncShell64.dll [2017-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Leo\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll [2017-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Leo\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll [2017-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Leo\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll [2017-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
GroupPolicy: Beschränkung <======= ACHTUNG
GroupPolicyScripts: Beschränkung <======= ACHTUNG
GroupPolicyScripts\User: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

ProxyEnable: [S-1-5-21-163866912-915633979-1340512146-1001] => Proxy ist aktiviert.
ProxyServer: [S-1-5-21-163866912-915633979-1340512146-1001] => http=127.0.0.1:8082
Hosts: 192.168.0.100           server
Tcpip\..\Interfaces\{17c1f411-9307-40f5-9a1d-ee7ed90c4bdc}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{29da9083-c071-4fe1-8443-3d1fad58c598}: [NameServer] 192.168.178.1
Tcpip\..\Interfaces\{ce6720c6-251d-4ab7-8a8a-f8b63ce173de}: [DhcpNameServer] 192.168.0.1 192.168.0.1
ManualProxies: 1http=127.0.0.1:8082

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-163866912-915633979-1340512146-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-163866912-915633979-1340512146-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-163866912-915633979-1340512146-1001 -> {E6E723A7-46B5-4C92-A0C7-212CA110DA98} URL = 
SearchScopes: HKU\S-1-5-21-163866912-915633979-1340512146-1003 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-163866912-915633979-1340512146-1003 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-11-07] (DVDVideoSoft Ltd.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
BHO-x32: Kein Name -> {451C804F-C205-4F03-B48E-537EC94937BF} -> Keine Datei
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: pdfforge Toolbar -> {B922D405-6D13-4A2B-AE89-08A030DA4402} -> C:\Program Files (x86)\pdfforge Toolbar\IE\23.8\pdfforgeToolbarIE.dll [2015-11-20] (Spigot, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-11-22] (DVDVideoSoft Ltd.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Kein Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  Keine Datei
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
Toolbar: HKLM - pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\23.8\pdfforgeToolbarIE64.dll [2015-11-20] (Spigot, Inc.)
Toolbar: HKLM-x32 - Kein Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  Keine Datei
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\23.8\pdfforgeToolbarIE.dll [2015-11-20] (Spigot, Inc.)
Toolbar: HKU\S-1-5-21-163866912-915633979-1340512146-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.13.0.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 -  Keine Datei
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)

FireFox:
========
FF DefaultProfile: z4l03ruv.default-1494428104936
FF ProfilePath: C:\Users\Leo\AppData\Roaming\TomTom\HOME\Profiles\raxen8ss.default [2016-11-23]
FF Extension: (Kein Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [nicht gefunden]
FF ProfilePath: C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\z4l03ruv.default-1494428104936 [2017-05-28]
FF Homepage: Mozilla\Firefox\Profiles\z4l03ruv.default-1494428104936 -> hxxps://www.google.de/?gws_rd=ssl
FF NetworkProxy: Mozilla\Firefox\Profiles\z4l03ruv.default-1494428104936 -> type", 0
FF Extension: (Video Downloader Professional) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\z4l03ruv.default-1494428104936\Extensions\ffext_basicvideoext@startpage24.xpi [2017-05-19]
FF ProfilePath: C:\Users\Leo\AppData\Roaming\KompoZer\Profiles\qo2jmiju.default [2016-06-11]
FF HKLM-x32\...\Firefox\Extensions: [bonjour4firefox@apple.com] - C:\Program Files (x86)\Bonjour SDK\Bin\FirefoxExtension
FF Extension: (Bonjour Extension for Firefox) - C:\Program Files (x86)\Bonjour SDK\Bin\FirefoxExtension [2013-02-28] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2017-04-04]
FF HKU\S-1-5-21-163866912-915633979-1340512146-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: (Download videos and MP3s from YouTube) - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-11-23] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-24] ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Keine Datei]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll [2013-06-26] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2012-10-02] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2012-10-02] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-163866912-915633979-1340512146-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Leo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-11] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CCMSDK.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\cgpcfg.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CgpCore.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\confmgr.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxlogging.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxmui.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icafile.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icalogon.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npicaN.dll [2012-03-28] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\sslsdk_b.dll [2012-03-19] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\TcpPServ.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Leo\AppData\Roaming\mozilla\plugins\npasperaweb.dll [2013-02-27] (Aspera, Inc. )
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\988562.js [2017-05-09] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\988562.cfg [2017-05-09] <==== ACHTUNG

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://de.search.yahoo.com/?type=971163&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxps://de.search.yahoo.com/?type=971163&fr=yo-yhp-ch"
CHR NewTab: Default -> "chrome-extension://icfefgaiandjaieopcfbidalbebjlhjl/ntp/newtab.html" 
CHR Profile: C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default [2017-03-24]
CHR Extension: (Google Docs) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-08]
CHR Extension: (Adobe Acrobat) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-24]
CHR Extension: (Shopping Assistant) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff [2015-04-09]
CHR Extension: (New Tab Helper) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl [2015-04-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-24]
CHR Extension: (Chrome Media Router) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2016-12-17]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [5044784 2017-01-19] (G DATA Software AG)
R2 AVKService; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe [1022440 2016-12-23] (G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [3236168 2017-01-10] (G Data Software AG)
R2 BotkindSyncService; C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe [182784 2015-04-13] () [Datei ist nicht signiert]
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 cjpcsc; C:\Windows\SysWOW64\cjpcsc.exe [569344 2015-07-31] (REINER SCT)
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [98072 2016-11-01] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [85784 2016-11-01] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [302872 2016-11-01] (CyberLink)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [387944 2016-05-11] (Digital Wave Ltd.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] () [Datei ist nicht signiert]
R2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [341312 2015-02-09] (FileOpen Systems Inc.)
S3 GDBackupSvc; C:\Program Files (x86)\G DATA\InternetSecurity\AVKBackup\AVKBackupService.exe [3991016 2017-01-19] (G DATA Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [3386872 2017-01-10] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [852968 2016-12-23] (G DATA Software AG)
R2 hasplms; C:\Windows\system32\hasplms.exe [4608320 2014-11-27] (SafeNet Inc.)
S2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 Intel(R) Small Business Advantage; C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [49376 2012-02-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 Lotus Notes Single Logon; C:\Windows\SysWOW64\nslsvice.exe [20530 2005-12-01] (IBM Corp) [Datei ist nicht signiert]
R2 MsDtsServer120; C:\Program Files\Microsoft SQL Server\120\DTS\Binn\MsDtsSrvr.exe [216768 2016-09-24] (Microsoft Corporation)
R2 MSSQL$WTSNXEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10_50.WTSNXEXPRESS\MSSQL\Binn\sqlservr.exe [62111072 2011-06-17] (Microsoft Corporation)
S3 MSSQLFDLauncher; C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe [50880 2014-02-21] (Microsoft Corporation)
S3 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [372416 2016-09-24] (Microsoft Corporation)
R2 MSSQLServerOLAPService; C:\Program Files\Microsoft SQL Server\MSAS12.MSSQLSERVER\OLAP\bin\msmdsrv.exe [51156160 2015-04-21] (Microsoft Corporation)
R2 Multi-user Cleanup Service; C:\Program Files (x86)\lotus\notes\ntmulti.exe [57393 2005-12-01] (IBM Corp) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [Datei ist nicht signiert]
S3 Program Manager; C:\Program Files (x86)\Common Files\ProgramManager\ProgramManager.exe [24260 2015-11-25] () [Datei ist nicht signiert]
R2 ReportServer; C:\Program Files\Microsoft SQL Server\MSRS12.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe [2467008 2015-04-21] (Microsoft Corporation)
S4 SQLAgent$WTSNXEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10_50.WTSNXEXPRESS\MSSQL\Binn\SQLAGENT.EXE [431456 2011-06-17] (Microsoft Corporation)
S3 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [613056 2016-09-24] (Microsoft Corporation)
R2 StarMoney 10 OnlineUpdate; C:\Program Files (x86)\StarMoney 10 apoEdition\ouservice\StarMoneyOnlineUpdate.exe [701760 2016-11-25] (Star Finanz-Software Entwicklung und Vertriebs GmbH)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7757040 2017-04-06] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-04-28] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 ampa; C:\Windows\system32\ampa.sys [19568 2015-11-10] () [Datei ist nicht signiert]
S3 ampa; C:\Windows\SysWOW64\ampa.sys [19568 2015-11-10] () [Datei ist nicht signiert]
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [154448 2016-07-11] (RedFox)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [154448 2016-07-11] (RedFox)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
R3 avmaura; C:\Windows\System32\drivers\avmaura.sys [116480 2014-08-01] (AVM Berlin)
S3 cjusb; C:\Windows\system32\DRIVERS\cjusb.sys [36112 2015-03-23] (REINER SCT)
S3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [306536 2011-03-04] ()
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-05-09] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-05-09] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-12-14] (DT Soft Ltd)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [196152 2017-05-21] (G Data Software AG)
S0 GDElam; C:\Windows\System32\DRIVERS\GDElam.sys [117904 2016-04-21] (G Data Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [46104 2017-05-21] (G Data Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [38984 2017-05-21] (G DATA Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [294968 2017-05-21] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [157240 2017-05-21] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [86584 2017-05-21] (G DATA Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [116296 2017-05-21] (G Data Software)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-05-26] (Glarysoft Ltd)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2014-11-27] (SafeNet Inc.)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [153656 2017-05-21] (G Data Software AG)
R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2012-10-20] (Highresolution Enterprises [www.highrez.co.uk])
S3 Ioxmgr64; C:\Windows\System32\Drivers\Ioxmgr64.sys [15544 2015-07-23] (SCHUHFRIED GmbH)
S3 LGDDCDevice; C:\Program Files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys [14336 2009-04-24] () [Datei ist nicht signiert]
S3 LGII2CDevice; C:\Program Files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys [18432 2009-04-24] () [Datei ist nicht signiert]
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [84168 2013-03-15] (Cyberlink Corp.)
R1 RawDisk3; C:\Windows\system32\drivers\rawdsk3.sys [32568 2015-08-16] (EldoS Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-21] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
S3 S332x64; C:\Windows\system32\DRIVERS\S332x64.sys [78336 2013-04-05] (Identive                                                    )
S3 SKYNETU2; C:\Windows\System32\drivers\SkyNETU2_AMD64.SYS [518232 2010-05-10] (TechniSat Digital, S.A.)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [23040 2015-10-30] (Microsoft Corporation)
R0 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [467368 2016-11-04] (IDRIX)
R3 vpnva; C:\Windows\System32\drivers\vpnva64-6.sys [52080 2013-12-13] (Cisco Systems, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [42688 2015-10-30] (Microsoft Corporation)
S3 WofAdk; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wofadk.sys [221888 2015-10-30] (Microsoft Corporation)
S3 WsAudio_Device; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2013-03-25] (Wondershare)
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [29896 2016-11-04] (CyberLink Corp.)
U3 idsvc; kein ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-05-28 13:21 - 2017-05-28 13:22 - 02429952 _____ (Farbar) C:\Users\Leo\Downloads\FRST64(1).exe
2017-05-28 13:17 - 2017-05-28 13:17 - 00000022 _____ C:\Windows\S.dirmngr
2017-05-21 20:47 - 2017-05-21 20:47 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Leo\Downloads\flashplayer25au_ha_install(2).exe
2017-05-21 15:17 - 2017-05-21 15:17 - 04148178 _____ C:\Users\Leo\Downloads\Yamaha HB-Sduro_Tech_Präsi.pdf
2017-05-21 15:17 - 2017-05-21 15:17 - 00790246 _____ C:\Users\Leo\Downloads\BedienungsanleitungBatavusStreamRazerYamaha2015_DE.pdf
2017-05-21 15:16 - 2017-05-21 15:16 - 00356042 _____ C:\Users\Leo\Downloads\bikespeed_RS_Yamaha_Yamaha_Einbauanleitung_DE.pdf
2017-05-21 15:14 - 2017-05-21 15:14 - 06727816 _____ C:\Users\Leo\Downloads\E-Pack_Manual_2016__German.pdf
2017-05-21 15:09 - 2017-05-21 15:09 - 05634730 _____ C:\Users\Leo\Downloads\Haibike_Betriebsanleitung_Yamaha_2016.pdf
2017-05-21 10:43 - 2017-05-21 10:43 - 00116296 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2017-05-21 10:43 - 2017-05-21 10:43 - 00028208 _____ (G DATA Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2017-05-21 10:22 - 2017-05-21 10:22 - 00086584 _____ (G DATA Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2017-05-21 10:22 - 2017-05-21 10:22 - 00046104 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBB64.sys
2017-05-21 10:22 - 2017-05-21 10:22 - 00038984 _____ (G DATA Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys
2017-05-21 10:22 - 2017-05-21 10:22 - 00002133 _____ C:\Users\Public\Desktop\G DATA INTERNET SECURITY.lnk
2017-05-21 10:22 - 2017-05-21 10:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY
2017-05-21 10:21 - 2017-05-21 10:21 - 00294968 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2017-05-21 10:21 - 2017-05-21 10:21 - 00196152 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2017-05-21 10:21 - 2017-05-21 10:21 - 00157240 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2017-05-21 10:21 - 2017-05-21 10:21 - 00153656 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2017-05-21 10:14 - 2017-05-21 10:14 - 00016786 _____ C:\Windows\System32\Tasks\Stackout
2017-05-20 13:43 - 2017-05-21 12:13 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2017-05-20 13:08 - 2017-05-20 13:08 - 00001522 _____ C:\Windows\Tasks\Audio Clipper.job
2017-05-20 11:20 - 2017-05-20 11:21 - 319268864 _____ C:\Users\Leo\Downloads\kav_rescue_10.iso
2017-05-20 11:19 - 2017-05-20 11:19 - 00001524 _____ C:\Users\Leo\Desktop\Kaspersky Security Scan Version 16.0.0.1344 installieren.lnk
2017-05-20 11:13 - 2017-05-20 11:19 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-05-20 11:12 - 2017-05-20 11:13 - 02671128 _____ (Kaspersky Lab) C:\Users\Leo\Downloads\kss16.0.0.1344en_ru_de_fr_es_it_zh-hans_pl_tr_nl_cs_ko_id_pt_ar_vi_hi_zh-hant_fa_10518.exe
2017-05-19 22:49 - 2017-05-19 22:49 - 00751387 _____ C:\Users\Leo\Downloads\video_downloadhelper-6.3.1-fx.zip
2017-05-19 19:58 - 2017-05-19 19:59 - 00085890 _____ C:\Users\Leo\Downloads\Addition.txt
2017-05-19 19:57 - 2017-05-28 13:23 - 00046541 _____ C:\Users\Leo\Downloads\FRST.txt
2017-05-19 19:57 - 2017-05-19 23:05 - 00000000 ____D C:\FRST
2017-05-19 19:56 - 2017-05-19 19:57 - 02429952 _____ (Farbar) C:\Users\Leo\Downloads\FRST64.exe
2017-05-14 10:21 - 2017-05-14 10:21 - 00459146 _____ C:\Users\Leo\Downloads\key1011finder.zip
2017-05-14 10:16 - 2017-05-14 10:16 - 00000154 _____ C:\Users\Leo\Documents\QUADCORE-I5.txt
2017-05-12 20:09 - 2017-05-12 20:09 - 63035592 _____ (Malwarebytes ) C:\Users\Leo\Downloads\mb3-setup-13595.13595-3.1.2.1733(1).exe
2017-05-12 18:43 - 2017-05-12 18:43 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-12 18:43 - 2017-05-12 18:43 - 00001222 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-05-12 18:41 - 2017-05-12 18:41 - 00246352 _____ (Mozilla) C:\Users\Leo\Downloads\Firefox Setup Stub 53.0.2.exe
2017-05-12 18:15 - 2017-05-12 18:15 - 00042898 _____ C:\Users\Leo\Documents\Überlassungsvertrag_Fitzner-Packbier.pdf
2017-05-12 18:12 - 2017-05-12 18:12 - 00157104 _____ C:\Users\Leo\Documents\Jobrad_Angebot_XXL-Feld.pdf
2017-05-12 17:58 - 2017-04-28 05:59 - 00602256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-12 17:58 - 2017-04-28 04:57 - 01813408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-05-12 17:58 - 2017-04-28 04:57 - 00959144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-12 17:58 - 2017-04-28 04:56 - 02945648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-12 17:58 - 2017-04-28 04:56 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-05-12 17:58 - 2017-04-28 04:52 - 05240448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-05-12 17:58 - 2017-04-28 04:45 - 01536600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-12 17:58 - 2017-04-28 03:50 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-05-12 17:58 - 2017-04-28 02:57 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2017-05-12 17:58 - 2017-04-28 02:49 - 00805888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2017-05-12 17:58 - 2017-04-28 02:32 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2017-05-12 17:58 - 2017-04-28 02:25 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-12 17:58 - 2017-04-28 02:06 - 04404736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-05-12 17:58 - 2017-04-28 01:55 - 00339456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-12 17:58 - 2017-04-28 01:29 - 00461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-05-12 17:57 - 2017-04-28 06:32 - 01030416 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-05-12 17:57 - 2017-04-28 06:30 - 07465816 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-12 17:57 - 2017-04-28 06:30 - 02656960 _____ C:\Windows\system32\CoreUIComponents.dll
2017-05-12 17:57 - 2017-04-28 06:30 - 01997840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-12 17:57 - 2017-04-28 06:30 - 01317640 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-05-12 17:57 - 2017-04-28 06:30 - 01098640 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2017-05-12 17:57 - 2017-04-28 06:30 - 00800080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-12 17:57 - 2017-04-28 06:27 - 00754664 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-05-12 17:57 - 2017-04-28 06:08 - 03449168 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2017-05-12 17:57 - 2017-04-28 05:59 - 01862000 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-05-12 17:57 - 2017-04-28 05:59 - 01558280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-12 17:57 - 2017-04-28 05:38 - 01060432 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-05-12 17:57 - 2017-04-28 05:32 - 02608912 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-05-12 17:57 - 2017-04-28 05:32 - 01323272 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-12 17:57 - 2017-04-28 05:31 - 03699280 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-12 17:57 - 2017-04-28 05:31 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-05-12 17:57 - 2017-04-28 05:31 - 00026464 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2017-05-12 17:57 - 2017-04-28 05:28 - 22560744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-05-12 17:57 - 2017-04-28 05:28 - 00566104 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-05-12 17:57 - 2017-04-28 05:27 - 06604992 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-05-12 17:57 - 2017-04-28 05:26 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-05-12 17:57 - 2017-04-28 05:26 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2017-05-12 17:57 - 2017-04-28 05:25 - 06536248 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2017-05-12 17:57 - 2017-04-28 05:24 - 01128104 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2017-05-12 17:57 - 2017-04-28 05:24 - 00625000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2017-05-12 17:57 - 2017-04-28 05:23 - 00609056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-05-12 17:57 - 2017-04-28 05:20 - 01848584 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-12 17:57 - 2017-04-28 05:04 - 00881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-05-12 17:57 - 2017-04-28 04:53 - 01987424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-12 17:57 - 2017-04-28 04:53 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-05-12 17:57 - 2017-04-28 04:52 - 01594928 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-12 17:57 - 2017-04-28 04:31 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-05-12 17:57 - 2017-04-28 04:24 - 00824320 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-05-12 17:57 - 2017-04-28 04:23 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2017-05-12 17:57 - 2017-04-28 04:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-05-12 17:57 - 2017-04-28 04:19 - 01370224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-12 17:57 - 2017-04-28 04:16 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-05-12 17:57 - 2017-04-28 04:15 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-12 17:57 - 2017-04-28 04:13 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-05-12 17:57 - 2017-04-28 04:11 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-12 17:57 - 2017-04-28 04:06 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-05-12 17:57 - 2017-04-28 04:05 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-05-12 17:57 - 2017-04-28 04:03 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-05-12 17:57 - 2017-04-28 04:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll
2017-05-12 17:57 - 2017-04-28 04:01 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2017-05-12 17:57 - 2017-04-28 03:59 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-05-12 17:57 - 2017-04-28 03:58 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-05-12 17:57 - 2017-04-28 03:55 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-12 17:57 - 2017-04-28 03:55 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-05-12 17:57 - 2017-04-28 03:55 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2017-05-12 17:57 - 2017-04-28 03:54 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2017-05-12 17:57 - 2017-04-28 03:53 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-12 17:57 - 2017-04-28 03:53 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-12 17:57 - 2017-04-28 03:52 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-12 17:57 - 2017-04-28 03:51 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-05-12 17:57 - 2017-04-28 03:51 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2017-05-12 17:57 - 2017-04-28 03:50 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-05-12 17:57 - 2017-04-28 03:49 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-05-12 17:57 - 2017-04-28 03:46 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-12 17:57 - 2017-04-28 03:45 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-05-12 17:57 - 2017-04-28 03:41 - 00472576 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-05-12 17:57 - 2017-04-28 03:40 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-05-12 17:57 - 2017-04-28 03:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-05-12 17:57 - 2017-04-28 03:38 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-05-12 17:57 - 2017-04-28 03:38 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-05-12 17:57 - 2017-04-28 03:35 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-12 17:57 - 2017-04-28 03:35 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-12 17:57 - 2017-04-28 03:33 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2017-05-12 17:57 - 2017-04-28 03:32 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2017-05-12 17:57 - 2017-04-28 03:32 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-12 17:57 - 2017-04-28 03:31 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-12 17:57 - 2017-04-28 03:31 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-05-12 17:57 - 2017-04-28 03:31 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2017-05-12 17:57 - 2017-04-28 03:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-12 17:57 - 2017-04-28 03:30 - 00602624 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-12 17:57 - 2017-04-28 03:29 - 02127872 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-12 17:57 - 2017-04-28 03:28 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-05-12 17:57 - 2017-04-28 03:28 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-12 17:57 - 2017-04-28 03:26 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-05-12 17:57 - 2017-04-28 03:24 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-12 17:57 - 2017-04-28 03:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2017-05-12 17:57 - 2017-04-28 03:23 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-05-12 17:57 - 2017-04-28 03:21 - 00256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-05-12 17:57 - 2017-04-28 03:21 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oemlicense.dll
2017-05-12 17:57 - 2017-04-28 03:20 - 04456448 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-05-12 17:57 - 2017-04-28 03:19 - 00865792 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-05-12 17:57 - 2017-04-28 03:19 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-05-12 17:57 - 2017-04-28 03:19 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe
2017-05-12 17:57 - 2017-04-28 03:15 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-12 17:57 - 2017-04-28 03:15 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-05-12 17:57 - 2017-04-28 03:15 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2017-05-12 17:57 - 2017-04-28 03:13 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-12 17:57 - 2017-04-28 03:11 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-05-12 17:57 - 2017-04-28 03:11 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-05-12 17:57 - 2017-04-28 03:10 - 00190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-05-12 17:57 - 2017-04-28 03:07 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2017-05-12 17:57 - 2017-04-28 03:07 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-12 17:57 - 2017-04-28 03:04 - 00386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-05-12 17:57 - 2017-04-28 03:03 - 03586048 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-05-12 17:57 - 2017-04-28 03:03 - 02610176 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2017-05-12 17:57 - 2017-04-28 03:01 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-05-12 17:57 - 2017-04-28 03:00 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2017-05-12 17:57 - 2017-04-28 02:56 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-12 17:57 - 2017-04-28 02:55 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-12 17:57 - 2017-04-28 02:55 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-12 17:57 - 2017-04-28 02:55 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-12 17:57 - 2017-04-28 02:54 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-12 17:57 - 2017-04-28 02:53 - 01729536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-12 17:57 - 2017-04-28 02:51 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-05-12 17:57 - 2017-04-28 02:50 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-12 17:57 - 2017-04-28 02:47 - 04826624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-05-12 17:57 - 2017-04-28 02:47 - 03695104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-05-12 17:57 - 2017-04-28 02:47 - 03404800 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-12 17:57 - 2017-04-28 02:47 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-05-12 17:57 - 2017-04-28 02:46 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licensingdiag.exe
2017-05-12 17:57 - 2017-04-28 02:44 - 07977984 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2017-05-12 17:57 - 2017-04-28 02:43 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2017-05-12 17:57 - 2017-04-28 02:36 - 16985600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-05-12 17:57 - 2017-04-28 02:35 - 03585536 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-05-12 17:57 - 2017-04-28 02:27 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-12 17:57 - 2017-04-28 02:25 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2017-05-12 17:57 - 2017-04-28 02:22 - 04412928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-05-12 17:57 - 2017-04-28 02:22 - 02878976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-12 17:57 - 2017-04-28 02:21 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-05-12 17:57 - 2017-04-28 02:20 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2017-05-12 17:57 - 2017-04-28 02:19 - 06296064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-05-12 17:57 - 2017-04-28 02:16 - 22375424 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-05-12 17:57 - 2017-04-28 02:12 - 04889600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-12 17:57 - 2017-04-28 02:11 - 06312448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-05-12 17:57 - 2017-04-28 02:09 - 13393920 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-12 17:57 - 2017-04-28 02:08 - 03993600 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-05-12 17:57 - 2017-04-28 02:06 - 12139008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-12 17:57 - 2017-04-28 02:05 - 24605184 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-12 17:57 - 2017-04-28 02:04 - 19344896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-12 17:57 - 2017-04-28 02:04 - 03660288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-12 17:57 - 2017-04-28 02:04 - 02911744 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-05-12 17:57 - 2017-04-28 02:04 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-12 17:57 - 2017-04-28 02:03 - 18673152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-05-12 17:57 - 2017-04-28 01:58 - 00821248 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2017-05-12 17:57 - 2017-04-28 01:57 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-05-12 17:57 - 2017-04-28 01:57 - 02604032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-05-12 17:57 - 2017-04-28 01:53 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2017-05-12 17:57 - 2017-04-28 01:50 - 07853568 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-05-12 17:57 - 2017-04-28 01:47 - 05670912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-05-12 17:57 - 2017-04-28 01:45 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2017-05-12 17:36 - 2017-05-12 17:36 - 00004437 _____ C:\Users\Leo\Documents\zerti-untrus.txt
2017-05-12 17:10 - 2017-05-12 17:10 - 63035592 _____ (Malwarebytes ) C:\Users\Leo\Downloads\mb3-setup-13595.13595-3.1.2.1733.exe
2017-05-12 14:09 - 2017-05-12 14:09 - 00001554 _____ C:\Windows\Tasks\Haxi- White 1-5 patch.job
2017-05-10 19:45 - 2017-05-21 10:19 - 281128592 _____ (G DATA Software AG) C:\Users\Leo\Downloads\GDATA_INTERNETSECURITY_BASE_WEU_25.3.0.3.exe
2017-05-10 19:40 - 2017-05-20 10:37 - 00000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2017-05-10 18:10 - 2017-05-14 10:22 - 00000000 ____D C:\transfer
2017-05-10 17:50 - 2017-05-10 17:50 - 00927888 _____ (G DATA Software AG) C:\Users\Leo\Downloads\AVCleaner.exe
2017-05-10 16:55 - 2017-05-10 16:55 - 00000000 ____D C:\Users\Leo\Desktop\Alte Firefox-Daten
2017-05-10 15:55 - 2017-05-10 15:55 - 00000000 ____D C:\Users\Leo\AppData\Local\navi
2017-05-09 19:51 - 2017-05-09 19:51 - 24792608 _____ (Disc Soft Ltd) C:\Users\Leo\Downloads\DTLite1051-0229_paid.exe
2017-05-09 18:41 - 2017-05-10 16:52 - 00000000 ____D C:\Users\Leo\AppData\Local\AppTrailers
2017-05-09 18:41 - 2017-05-10 15:55 - 00000000 ____D C:\ProgramData\VideoMemoryDiagnostic
2017-05-09 18:41 - 2017-05-09 18:41 - 00016856 _____ C:\Windows\System32\Tasks\Haxi- White 1-5 patch
2017-05-09 18:41 - 2017-05-09 18:41 - 00001042 _____ C:\Users\Leo\Desktop\Play Warframe.lnk
2017-05-09 18:41 - 2017-05-09 18:41 - 00001036 _____ C:\Users\Leo\Desktop\Play WarThunder.lnk
2017-05-09 18:41 - 2017-04-27 16:36 - 00000195 _____ C:\Users\Leo\Desktop\Download Video and Audio Online.url
2017-05-09 18:09 - 2017-05-09 18:09 - 00000000 ____D C:\Users\Leo\AppData\Local\Disc_Soft_Ltd
2017-05-09 17:59 - 2017-05-09 17:59 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2017-05-09 17:59 - 2017-05-09 17:59 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2017-05-06 09:23 - 2017-05-06 09:23 - 00051624 _____ C:\Windows\uninstaller.dat
2017-05-05 17:32 - 2017-05-05 17:32 - 00001278 _____ C:\Users\Public\Desktop\CloneDVD2.lnk
2017-05-05 17:19 - 2017-05-05 17:19 - 00001173 _____ C:\Users\Public\Desktop\AnyDVD.lnk
2017-05-05 17:19 - 2017-05-05 17:19 - 00000000 ____D C:\ProgramData\RedFox
2017-05-05 17:19 - 2017-05-05 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RedFox
2017-05-05 17:19 - 2017-05-05 17:19 - 00000000 ____D C:\Program Files (x86)\RedFox
2017-05-05 17:18 - 2017-05-05 17:18 - 00000898 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 6.lnk
2017-05-05 17:18 - 2017-05-05 17:18 - 00000886 _____ C:\Users\Public\Desktop\Total Uninstall 6.lnk
2017-05-05 17:18 - 2017-05-05 17:18 - 00000016 _____ C:\ProgramData\mntemp
2017-05-05 17:18 - 2017-05-05 17:18 - 00000000 ____D C:\ProgramData\Martau
2017-05-05 17:18 - 2017-05-05 17:18 - 00000000 ____D C:\Program Files\Total Uninstall 6
2017-05-05 17:15 - 2017-05-05 17:17 - 26751832 _____ (Gavrila Martau ) C:\Users\Leo\Downloads\Total-Uninstall-Setup-6.19.0.exe
2017-05-05 17:12 - 2017-05-05 18:03 - 33817960 _____ C:\Users\Leo\Downloads\SetupCloneBD1151RedFox.exe
2017-05-05 17:12 - 2017-05-05 17:32 - 05262920 _____ C:\Users\Leo\Downloads\SetupCloneDVD2933RedFox.exe
2017-05-05 17:11 - 2017-05-05 17:18 - 14041456 _____ C:\Users\Leo\Downloads\SetupAnyDVD8120.exe
2017-05-05 14:49 - 2017-05-05 14:49 - 00252722 _____ C:\Users\Leo\Downloads\FRITZ.Box 7490 (UI) 113.06.83_01.01.70_0101.export
2017-05-02 17:49 - 2017-05-02 17:49 - 01201768 _____ (Adobe Systems Incorporated) C:\Users\Leo\Downloads\flashplayer25au_ha_install(1).exe
2017-05-01 15:55 - 2017-05-01 15:55 - 00542263 _____ C:\Users\Leo\Downloads\Hennef_FRITZ.Box 7490 (UI) 113.06.83_01.05.17_1555.export
2017-05-01 15:51 - 2017-05-01 15:52 - 00668775 _____ C:\Users\Leo\Downloads\FRITZ.Box 7490 (UI) 113.06.83_01.05.17_1552.export
2017-05-01 11:49 - 2017-05-01 11:49 - 00145600 _____ C:\Users\Leo\Downloads\Adac.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-05-28 13:22 - 2016-03-11 22:29 - 02767824 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-28 13:22 - 2016-02-13 18:59 - 01139772 _____ C:\Windows\system32\perfh007.dat
2017-05-28 13:22 - 2016-02-13 18:59 - 00304090 _____ C:\Windows\system32\perfc007.dat
2017-05-28 13:22 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2017-05-28 13:21 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-28 13:21 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2017-05-28 13:18 - 2016-11-18 21:48 - 00000000 ____D C:\Users\Leo\AppData\LocalLow\Mozilla
2017-05-28 13:17 - 2016-08-10 18:05 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-05-28 13:17 - 2016-08-10 18:05 - 00000000 __SHD C:\Users\Leo\IntelGraphicsProfiles
2017-05-28 13:17 - 2016-02-13 19:26 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-28 13:17 - 2012-11-05 20:21 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-28 13:11 - 2015-10-30 08:28 - 00524288 ___SH C:\Windows\system32\config\BBI
2017-05-28 12:49 - 2014-08-16 11:23 - 00000000 ____D C:\Users\Leo\AppData\Local\Adobe
2017-05-28 12:48 - 2015-10-30 08:28 - 00032768 ___SH C:\Windows\system32\config\ELAM
2017-05-25 14:20 - 2016-09-11 15:48 - 00001024 ____H C:\AMTAG.BIN
2017-05-25 14:05 - 2013-08-15 22:19 - 00000000 ____D C:\Windows\system32\MRT
2017-05-25 14:03 - 2013-05-16 14:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2017-05-25 14:03 - 2013-05-16 14:52 - 00000000 ____D C:\Program Files (x86)\Acronis
2017-05-25 14:01 - 2012-11-05 19:56 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-25 14:00 - 2013-05-16 14:53 - 00000000 ____D C:\ProgramData\Acronis
2017-05-23 18:48 - 2015-03-27 19:30 - 00000000 ____D C:\Users\Leo\AppData\Roaming\JOSM
2017-05-23 18:45 - 2017-04-07 17:34 - 00000000 ____D C:\Users\Leo\.egvp2_client
2017-05-23 17:04 - 2016-03-12 11:59 - 00000000 ____D C:\Program Files (x86)\StarMoney 10 apoEdition
2017-05-21 20:45 - 2012-11-05 20:53 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-05-21 11:03 - 2012-11-05 20:34 - 00000000 ____D C:\ProgramData\G DATA
2017-05-21 10:20 - 2015-10-30 09:24 - 00000000 ___HD C:\Windows\ELAMBKUP
2017-05-21 10:20 - 2012-11-05 20:34 - 00000000 ____D C:\Program Files (x86)\G Data
2017-05-20 16:58 - 2015-10-30 08:28 - 00000000 ____D C:\Program Files\Audio Clipper
2017-05-20 16:57 - 2014-05-13 19:06 - 00000000 ____D C:\Program Files (x86)\Passware
2017-05-20 11:40 - 2016-03-11 22:30 - 00000000 ____D C:\Users\ReportServer
2017-05-20 11:40 - 2016-03-11 22:30 - 00000000 ____D C:\Users\MSSQLServerOLAPService
2017-05-20 11:40 - 2016-03-11 22:30 - 00000000 ____D C:\Users\MsDtsServer120
2017-05-20 11:19 - 2009-07-14 05:20 - 00000000 ____D C:\Users\Default.migrated
2017-05-20 10:38 - 2012-11-05 21:04 - 00000000 ____D C:\ProgramData\Temp
2017-05-20 10:37 - 2016-11-18 21:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-20 10:37 - 2012-11-10 11:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-20 10:33 - 2012-12-15 11:52 - 00000000 ____D C:\Windows\pss
2017-05-19 21:25 - 2012-11-06 19:38 - 00000000 ____D C:\Users\Leo\AppData\Roaming\SAmAs
2017-05-19 21:16 - 2016-03-13 19:59 - 00000000 ____D C:\Users\Leo\AppData\Local\Deployment
2017-05-19 21:15 - 2012-11-16 20:33 - 00000000 ____D C:\Program Files\Google
2017-05-19 21:15 - 2012-11-14 19:48 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-19 19:44 - 2012-11-14 19:48 - 00000000 ____D C:\Users\Leo\AppData\Local\Google
2017-05-19 19:43 - 2015-05-26 21:26 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
2017-05-19 19:42 - 2012-12-31 15:08 - 00000000 ____D C:\Program Files (x86)\DVBViewer TE2
2017-05-19 19:42 - 2012-12-27 21:55 - 00000000 ____D C:\Program Files (x86)\FRITZ!Fernzugang einrichten
2017-05-19 19:41 - 2016-02-13 19:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-19 19:41 - 2015-04-09 18:59 - 00000000 ____D C:\Program Files (x86)\Corporal
2017-05-19 19:41 - 2012-10-20 06:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-19 19:40 - 2016-02-12 20:57 - 00000000 ____D C:\ProgramData\ZDSupport
2017-05-14 16:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2017-05-12 22:28 - 2017-03-17 20:15 - 00000000 ___RD C:\Users\Leo\Virtual Machines
2017-05-12 22:28 - 2016-02-13 10:22 - 00411912 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ___SD C:\Windows\SysWOW64\F12
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ___SD C:\Windows\system32\F12
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-12 22:25 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-05-12 22:06 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2017-05-12 18:20 - 2015-10-30 08:28 - 00000000 ____D C:\Program Files\Haxi- White 1.5 patch
2017-05-12 17:11 - 2017-04-12 19:28 - 00766583 _____ C:\Users\Leo\Downloads\2016-11-28_Fachhaendler_Formular_Leasinganfrage_JobRad_SFG.pdf
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ___SD C:\Windows\SysWOW64\Configuration
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\setup
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\oobe
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\MUI
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\IME
2017-05-10 18:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\Com
2017-05-10 18:02 - 2013-11-28 19:39 - 00000000 ____D C:\Users\Leo\AppData\Roaming\G Data
2017-05-10 18:02 - 2012-11-16 20:32 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2017-05-10 17:10 - 2015-06-19 17:41 - 00000000 ____D C:\Users\Leo\AppData\Local\Dropbox
2017-05-10 17:10 - 2014-04-27 15:35 - 00000000 ____D C:\Users\Leo\AppData\Roaming\Dropbox
2017-05-10 16:08 - 2012-11-24 15:24 - 00000125 ___SH C:\ProgramData\.zreglib
2017-05-09 18:52 - 2012-11-16 20:34 - 00002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-09 18:52 - 2012-11-16 20:34 - 00002490 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-09 18:31 - 2016-04-24 14:44 - 00001151 _____ C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-05-09 18:31 - 2016-04-24 14:44 - 00001103 _____ C:\Users\Leo\Desktop\Start Tor Browser.lnk
2017-05-09 18:31 - 2016-01-05 22:49 - 00001598 _____ C:\Users\Leo\Desktop\Internet Explorer.lnk
2017-05-09 18:03 - 2012-11-24 16:00 - 00000000 ____D C:\Users\Leo\AppData\Roaming\DAEMON Tools Lite
2017-05-07 20:57 - 2012-11-24 16:42 - 00000000 ____D C:\ProgramData\DVD Shrink
2017-05-07 18:58 - 2013-03-02 19:37 - 00000000 ____D C:\Users\Leo\AppData\Roaming\HandBrake
2017-05-07 16:33 - 2013-02-28 23:42 - 00000000 ____D C:\Users\Leo\AppData\Roaming\vlc
2017-05-06 13:38 - 2016-04-16 20:54 - 00000000 ____D C:\ProgramData\Elaborate Bytes
2017-05-05 18:12 - 2014-12-25 20:42 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-05 18:04 - 2016-04-16 20:54 - 00001250 _____ C:\Users\Public\Desktop\CloneBD.lnk
2017-05-05 17:32 - 2016-04-16 20:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2017-05-05 17:32 - 2012-11-24 15:23 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2017-05-02 17:56 - 2016-03-11 23:08 - 00000000 ____D C:\Users\Leo\AppData\Local\Packages
2017-04-29 17:26 - 2016-02-02 15:16 - 00003658 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d15dbbea352be2
2017-04-29 17:26 - 2016-02-02 15:16 - 00003534 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d15dbbe9c08875
2017-04-29 02:51 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-04-29 02:51 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-28 06:23 - 2016-02-13 19:26 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-11-18 19:01 - 2015-11-14 17:52 - 0000031 _____ () C:\Program Files (x86)\Notes.ini
2017-05-21 10:21 - 2017-05-21 10:21 - 0000000 _____ () C:\Users\Leo\AppData\Roaming\gdfw.log
2017-05-21 10:21 - 2017-05-21 10:21 - 0000779 _____ () C:\Users\Leo\AppData\Roaming\gdscan.log
2015-02-26 23:06 - 2015-09-12 20:57 - 0000479 _____ () C:\Users\Leo\AppData\Roaming\isis.xml
2015-10-24 23:44 - 2016-07-02 11:34 - 0028348 _____ () C:\Users\Leo\AppData\Roaming\phpdesigner.xml
2017-04-13 11:34 - 2017-04-13 11:34 - 0000600 _____ () C:\Users\Leo\AppData\Roaming\winscp.rnd
2014-05-13 19:25 - 2014-05-13 19:25 - 0000096 _____ () C:\Users\Leo\AppData\Local\errorlog.txt
2015-09-11 21:49 - 2015-09-11 21:58 - 0004096 ____H () C:\Users\Leo\AppData\Local\keyfile3.drm
2012-11-15 23:58 - 2012-11-15 23:58 - 0000001 _____ () C:\Users\Leo\AppData\Local\llftool.4.12.agreement
2016-02-28 15:58 - 2016-09-04 11:03 - 0000173 _____ () C:\Users\Leo\AppData\Local\msmathematics.qat.Leo
2015-11-28 14:19 - 2015-12-18 22:39 - 0000600 _____ () C:\Users\Leo\AppData\Local\PUTTY.RND
2012-11-16 00:02 - 2012-11-16 00:02 - 0000017 _____ () C:\Users\Leo\AppData\Local\resmon.resmoncfg
2012-11-24 15:24 - 2017-05-10 16:08 - 0000125 ___SH () C:\ProgramData\.zreglib
2016-08-10 18:03 - 2016-08-10 18:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-05 19:43 - 2014-08-09 17:03 - 0001479 _____ () C:\ProgramData\hpzinstall.log
2017-05-05 17:18 - 2017-05-05 17:18 - 0000016 _____ () C:\ProgramData\mntemp

Einige Dateien in TEMP:
====================
2017-05-09 18:41 - 2017-05-09 18:41 - 29130696 _____ (AppTrailers) C:\Users\Leo\AppData\Local\Temp\AppTrailers.9.1.10amt.exe
2016-10-08 17:06 - 2016-10-08 17:06 - 0387072 _____ (REINER SCT) C:\Users\Leo\AppData\Local\Temp\callback.dll
2017-02-03 16:58 - 2017-02-04 19:46 - 0065536 _____ (Sony DADC Austria AG) C:\Users\Leo\AppData\Local\Temp\drm_dialogs.dll
2016-11-13 19:23 - 2017-02-04 19:46 - 0204800 _____ (Sony DADC Austria AG) C:\Users\Leo\AppData\Local\Temp\drm_dyndata_7400009.dll
2014-09-24 00:42 - 2014-09-24 00:42 - 0013824 _____ () C:\Users\Leo\AppData\Local\Temp\gkey.exe
2016-12-29 14:12 - 2016-12-29 14:12 - 0237568 _____ () C:\Users\Leo\AppData\Local\Temp\infozip2.exe
2016-08-06 12:17 - 2016-08-06 12:17 - 0741440 _____ (Oracle Corporation) C:\Users\Leo\AppData\Local\Temp\jre-8u101-windows-au.exe
2016-10-23 21:24 - 2016-10-23 21:24 - 0737856 _____ (Oracle Corporation) C:\Users\Leo\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-05-20 11:13 - 2017-05-20 11:15 - 2427936 _____ (Kaspersky Lab) C:\Users\Leo\AppData\Local\Temp\kis_setup.exe
2017-05-09 18:41 - 2017-05-09 18:41 - 0024296 _____ () C:\Users\Leo\AppData\Local\Temp\offerpg3.exe
2015-04-13 00:04 - 2015-04-13 00:04 - 0027648 _____ () C:\Users\Leo\AppData\Local\Temp\pkeyui.exe
2017-05-09 18:41 - 2017-05-09 18:41 - 0024298 _____ () C:\Users\Leo\AppData\Local\Temp\Setup.exe
2017-05-09 18:41 - 2017-05-09 18:41 - 1199825 _____ () C:\Users\Leo\AppData\Local\Temp\unins000.exe
2017-05-10 16:52 - 2014-07-07 18:34 - 0157952 _____ () C:\Users\Leo\AppData\Local\Temp\UninstallSer.exe
2017-05-09 18:41 - 2017-05-09 18:41 - 0597261 _____ (VideoBox                                                    ) C:\Users\Leo\AppData\Local\Temp\vbsetup.exe
2017-02-15 21:00 - 2017-02-15 21:00 - 2258760 _____ (Link64 GmbH) C:\Users\Leo\AppData\Local\Temp\vdu_uninstall_995106.exe
2017-05-10 17:46 - 2017-05-10 17:46 - 2258760 _____ (Link64 GmbH) C:\Users\Leo\AppData\Local\Temp\vdu_uninstall_a4228.exe
2017-05-10 17:47 - 2017-05-10 17:47 - 2258760 _____ (Link64 GmbH) C:\Users\Leo\AppData\Local\Temp\vdu_uninstall_a7742.exe
2017-05-10 17:47 - 2017-05-10 17:47 - 2258760 _____ (Link64 GmbH) C:\Users\Leo\AppData\Local\Temp\vdu_uninstall_ac1f7.exe
2017-05-12 17:01 - 2017-05-12 17:01 - 2258760 _____ (Link64 GmbH) C:\Users\Leo\AppData\Local\Temp\vdu_uninstall_b13a1.exe
2017-04-10 17:18 - 2017-04-10 17:18 - 0393216 _____ (VISUS Technology Transfer GmbH) C:\Users\Leo\AppData\Local\Temp\VisusClient.dll
2017-05-07 16:17 - 2017-05-07 16:17 - 30533688 _____ () C:\Users\Leo\AppData\Local\Temp\vlc-2.2.4-win32.exe
2015-04-12 22:08 - 2016-08-11 10:10 - 0050848 _____ () C:\Users\Leo\AppData\Local\Temp\wabk.exe
2017-02-23 08:22 - 2017-02-23 08:22 - 0000000 _____ () C:\Users\Leo\AppData\Local\Temp\xldbfyy1.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-05-19 18:41

==================== Ende von FRST.txt ============================

--- --- ---

Sämtliche AV-Programme plötzlich im Zertifikatsspeicher von Win 10 als "nicht vetrauenswürdige Zertifikate"

Plagegeister aller Art und deren Bekämpfung: Sämtliche AV-Programme plötzlich im Zertifikatsspeicher von Win 10 als "nicht vetrauenswürdige Zertifikate"

FRST.txt

Ähnliche Themen: Sämtliche AV-Programme plötzlich im Zertifikatsspeicher von Win 10 als "nicht vetrauenswürdige Zertifikate"