| TheGermanEvi | 30.12.2015 00:16 |
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015
durchgeführt von Chris (Administrator) auf CHRISTIAN (30-12-2015 00:03:19)
Gestartet von C:\Users\Chris\Desktop\andy
Geladene Profile: Chris (Verfügbare Profile: Chris)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\HomeTab\WBrokerProductivity.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
() C:\Program Files (x86)\Winter Sports\winter_sports_helper_service.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
() C:\Program Files (x86)\Max Deal\max_deal_helper_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Skiller Pro\Monitor.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-22] (Hewlett-Packard )
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe [594944 2013-12-26] ()
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-06-04] (IDT, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-14] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe [594944 2013-12-26] ()
HKLM-x32\...\Run: [Skiller Pro] => C:\Program Files (x86)\Skiller Pro\Monitor.exe [475136 2014-02-26] ()
HKLM-x32\...\Run: [GoPro Studio Importer] => C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe [3218184 2015-10-02] (GoPro)
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Run: [Spotify Web Helper] => C:\Users\Chris\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-22] (Spotify Ltd)
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Run: [Google Update] => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\MountPoints2: F - "F:\pushinst.exe"
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\MountPoints2: G - "G:\pushinst.exe"
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\MountPoints2: {08a3fc94-38e3-11e3-be6f-7c050792a08a} - "G:\pushinst.exe"
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\MountPoints2: {7f895278-3449-11e4-bee1-bc054303ac4b} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Winlogon: [Shell] C:\windows\explorer.exe [2501368 2015-01-28] (Microsoft Corporation) <==== ACHTUNG
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk [2013-11-22]
ShortcutTarget: simplicheck.lnk -> C:\Program Files (x86)\simplitec\simplicheck\simplicheck.exe (simplitec)
GroupPolicy: Beschränkung - Chrome <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{815F28B3-B234-46E1-BDE4-6C2310172A8F}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{D5276550-19C4-4F1B-8AE4-13A4F4EEDAC8}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.oursurfing.com/web/?type=ds&ts=1433143142&z=2824b43d765ff17bc8de62cg3zbc8c0g2zbc0gazeg&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.oursurfing.com/web/?type=ds&ts=1433143142&z=2824b43d765ff17bc8de62cg3zbc8c0g2zbc0gazeg&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.oursurfing.com/web/?type=ds&ts=1433143142&z=2824b43d765ff17bc8de62cg3zbc8c0g2zbc0gazeg&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.oursurfing.com/web/?type=ds&ts=1433143142&z=2824b43d765ff17bc8de62cg3zbc8c0g2zbc0gazeg&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=de-DE&Src=WD8&Tid=0003446E&OHP=http%3A%2F%2Fwww.v9.com%3Ftype%3Dhp%26ts%3D1438089694%26from%3Dmych123%26uid%3Dwdcxwd10ezex%2D60zf5a0%5Fwd%2Dwmc1s626564765647%26z%3D493da23c6774d4e56aa12d8g6zbcbbdefb2t4m0e8g&OSP=
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://v9.com?type=hp&ts=1450275358&from=mych123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPBDDI6Pk-fpITtt_7-dx2uy24NiqVsjTaQ8QzBK289R-UtezzgdFJrJoTFNdPsPN7wcDhEHINT61ybh_OkJEvNg2kVsESgcvszxCeoipL5hBRO63t-pRVpYrxsZCssKclP6SchR7XybcErrOqZuOtebuEh1ez3wxVGIO7VxA,,&q={searchTerms}
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPBDDI6Pk-fpITtt_7-dx2uy24NiqVsjTaQ8QzBK289R-UtezzgdFJrJoTFNdPsPN7wcDhEHINT61ybh_OkJEvNg2kVsESgcvszxCeoipL5hBRO63t-pRVpYrxsZCssKclP6SchR7XybcErrOqZuOtebuEh1ez3wxVGIO7VxA,,&q={searchTerms}
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=80415&tid=23890&ver=6.4&ts=1401228000000.000000&tguid=80415-23890-1401303159533-D87A4E1BEF66030358A768E0B729C0EF&st=chrome&q=
HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPDSK13/4
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.oursurfing.com/web/?type=ds&ts=1433143142&z=2824b43d765ff17bc8de62cg3zbc8c0g2zbc0gazeg&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&q={searchTerms}
SearchScopes: HKLM -> {378F3F80-13E2-4A26-84A5-37E35F634BFC} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = hxxp://www.default-search.net/search?sid=492&aid=149&itype=a&ver=12692&tm=348&src=ds&p={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://v9.com/web?type=ds&ts=1450275358&from=zzgbkk123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w&q={searchTerms}
SearchScopes: HKLM-x32 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPBDDI6Pk-fpITtt_7-dx2uy24NiqVsjTaQ8QzBK289R-UtezzgdFJrJoTFNdPsPN7wcDhEHINT61ybh_OkJEvNg2kVsESgcvszxCeoipL5hBRO63t-pRVpYrxsZCssKclP6SchR7XybcErrOqZuOtebuEh1ez3wxVGIO7Vxw,,&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.oursurfing.com/web/?type=ds&ts=1433143142&z=2824b43d765ff17bc8de62cg3zbc8c0g2zbc0gazeg&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&q={searchTerms}
SearchScopes: HKLM-x32 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://v9.com/web?type=ds&ts=1450275358&from=zzgbkk123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w&q={searchTerms}
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = hxxp://www.default-search.net/search?sid=492&aid=149&itype=a&ver=12692&tm=348&src=ds&p={searchTerms}
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=80415&st=bs&tid=23890&ver=6.4&ts=1401228000000.000000&tguid=80415-23890-1401303159533-D87A4E1BEF66030358A768E0B729C0EF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://v9.com/web?type=ds&ts=1450275358&from=zzgbkk123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> 5D7A2DD8CCA74493A8545E4370DC5566 URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://v9.com/web?type=ds&ts=1450275358&from=zzgbkk123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.oursurfing.com/web/?utm_source=b&utm_medium=2sq&utm_campaign=install_ie&utm_content=ds&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647&ts=1433143312&type=default&q={searchTerms}
BHO: SmartbarInternetExplorerBHOEngine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-17] (Oracle Corporation)
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll [2015-06-26] (Symantec Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-17] (Oracle Corporation)
BHO-x32: Kein Name -> {10AD2C61-0898-4348-8600-14A342F22AC3} -> Keine Datei
BHO-x32: SmartbarInternetExplorerBHOEngine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\windows\SysWOW64\mscoree.dll [2013-08-22] (Microsoft Corporation)
BHO-x32: Re-markit -> {74CD6F45-BA8A-203B-ED52-F70BA6DA87F3} -> C:\Program Files (x86)\Re-markit-soft\171.dll [2014-05-28] ()
BHO-x32: Kein Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Keine Datei
BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll [2015-06-26] (Symantec Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Kein Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Keine Datei
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09] (Hewlett-Packard)
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
Toolbar: HKLM - Kein Name - {92aa6038-35c9-4666-893f-84716dec281c} - Keine Datei
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll [2015-06-26] (Symantec Corporation)
Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\windows\SysWOW64\mscoree.dll [2013-08-22] (Microsoft Corporation)
Toolbar: HKLM-x32 - HomeTab - {92aa6038-35c9-4666-893f-84716dec281c} - Keine Datei
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll [2015-06-26] (Symantec Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default
FF NewTab: chrome://unitedtb/content/newtab/newtab-page.xhtml
FF DefaultSearchEngine: Web Search
FF SearchEngineOrder.1: Web Search
FF SelectedSearchEngine: Web Search
FF Homepage: hxxp://search.gboxapp.com/
FF Keyword.URL: hxxp://search.certified-toolbar.com?si=80415&tid=23890&ver=6.4&ts=1401228000000.000000&tguid=80415-23890-1401303159533-D87A4E1BEF66030358A768E0B729C0EF&st=chrome&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll [2014-05-17] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll [2014-05-17] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-13] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-13] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-09-12] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-09-12] (NVIDIA Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2014-05-28] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2014-05-28] (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-05-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll [2014-05-08] (Google Inc.)
FF Plugin-x32: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=3 -> C:\Program Files (x86)\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll [Keine Datei]
FF Plugin-x32: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=9 -> C:\Program Files (x86)\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1662367657-1586800259-3932121210-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Chris\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-1662367657-1586800259-3932121210-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Chris\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-1662367657-1586800259-3932121210-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Chris\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-11-09] (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\user.js [2014-05-28]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\11-suche.xml [2014-10-04]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\conduit-search.xml [2014-05-15]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\default-search.xml [2014-05-23]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\englische-ergebnisse.xml [2014-10-04]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\gmx-suche.xml [2014-10-04]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\lastminute.xml [2014-10-04]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\trovi-search.xml [2014-06-04]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\Web Search.xml [2014-06-13]
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\searchplugins\webde-suche.xml [2014-10-04]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml [2014-05-23]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\qone8.xml [2014-05-23]
FF Extension: Frevens Pro 12 - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\extensions\64b40177-65bf-4cac-a921-13ac2f63809b@fd5e37fb-b278-4298-b4f1-375b534b7096.com [2014-07-11] [ist nicht signiert]
FF Extension: MediaPlayer+ - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\extensions\c99f2e2c-e43b-45cb-a50f-b10bac2f33c1@a4314fc7-1c01-4fda-8022-f0e9bd0cb09f.com [2014-07-11] [ist nicht signiert]
FF Extension: Plus-HD-9.3c - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\extensions\hendrxjace@hotmail.com [2014-08-04] [ist nicht signiert]
FF Extension: WEB.DE MailCheck - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\extensions\toolbar@web.de [2014-10-06] [ist nicht signiert]
FF Extension: saver box - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\z65959qm.default\Extensions\8g55.hhd@djhwdfv.edu [2014-06-18] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha2866.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2866\ff => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home145.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home145\ff => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode3725.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode3725\ff => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [ext@RichMediaViewV1release623.net] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release623\ff => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.11.42\coFFPlgn
FF Extension: Norton Identity Safe Toolbar - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.11.42\coFFPlgn [2015-12-29]
FF HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Firefox\Extensions: [{0A3C1416-902A-AAF1-C224-9A1F011F526B}] - C:\Program Files (x86)\Re-markit-soft\171.xpi
FF Extension: Re-markit - C:\Program Files (x86)\Re-markit-soft\171.xpi [2014-05-28] [ist nicht signiert]
Chrome:
=======
CHR HomePage: Default -> hxxp://start.androidnewtab.com/?1=1__PARAM__
CHR StartupUrls: Default -> "hxxp://www.oursurfing.com/?type=hppp&ts=1433143306&z=3d88124dd2f86e991876605g9z5c6cfgazacdc3e3z&from=2sq&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647"
CHR DefaultSearchURL: Default -> hxxp://v9.com/web?type=ds&ts=1450275358&from=zzgbkk123&uid=wdcxwd10ezex-60zf5a0_wd-wmc1s626564765647&z=d7436e95cf378b1852d5fd1g6z4wfe0o4m3w0c9q3w&q={searchTerms}
CHR DefaultSearchKeyword: Default -> v9
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Steam inventory helper) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-11-23]
CHR Extension: (FoxyProxy Standard) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcknhkkoolaabfmlnjonogaaifnjlfnp [2015-05-29]
CHR Extension: (AdBlock) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-04]
CHR Extension: (HQvidPv1.12) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak [2014-05-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Experience Component) - C:\Users\Chris\AppData\Local\Experience Component\Component [2015-12-29]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx [2015-04-18]
CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\Exts\Chrome.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [nhjnmokdaalmckkikjklibeakholpham] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx [2015-04-18]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [Datei ist nicht signiert]
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S4 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107944 2013-01-08] (Condusiv Technologies)
S4 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-05-28] (globalUpdate) [Datei ist nicht signiert] <==== ACHTUNG
S4 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-05-28] (globalUpdate) [Datei ist nicht signiert] <==== ACHTUNG
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-06-07] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-13] (Intel Corporation)
R2 iSafeService; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [118048 2015-04-16] (Elex do Brasil Participações Ltda)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-13] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
R2 NCO; C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe [131144 2015-03-05] (Symantec Corporation)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [276584 2010-03-22] (NVIDIA)
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [333824 2013-06-04] (IDT, Inc.) [Datei ist nicht signiert]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S4 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080 2015-06-25] (TuneUp Software)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S4 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [711344 2015-12-09] (Taiwan Shui Mu Chih Ching Technology Limited) <==== ACHTUNG
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-15] (CyberLink)
S3 cmnxusbser; C:\Windows\system32\DRIVERS\cmnxusbser.sys [146424 2015-11-24] (Wireless Data Device)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [489776 2015-05-27] (Symantec Corporation)
S3 EraserUtilDrv11120; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11120.sys [138360 2011-12-03] (Symantec Corporation)
S3 EraserUtilDrv11313; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11313.sys [142128 2014-07-13] (Symantec Corporation)
S3 EraserUtilDrv11411; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11411.sys [142640 2015-05-01] (Symantec Corporation)
S3 EraserUtilDrv11510; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11510.sys [145200 2015-05-27] (Symantec Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [26024 2013-01-08] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112552 2013-01-08] (Condusiv Technologies)
S3 fwlanusb4; C:\Windows\system32\DRIVERS\fwlanusb4.sys [1293824 2010-10-22] (AVM GmbH) [Datei ist nicht signiert]
S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R1 iSafeKrnl; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [260856 2015-05-14] (Elex do Brasil Participações Ltda)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [53568 2015-04-16] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlKit; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [110112 2015-07-03] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlMon; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [60808 2015-07-13] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlR3; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [103904 2015-07-23] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [52392 2015-04-14] (Elex do Brasil Participações Ltda)
R3 ka6avs; C:\Windows\System32\Drivers\ka6avs.sys [357968 2011-09-15] (Native Instruments GmbH)
R3 ka6usb_svc; C:\Windows\System32\Drivers\ka6usb.sys [82000 2011-09-15] (Native Instruments GmbH)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [49272 2014-12-29] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
R3 nvoclk64; C:\Windows\system32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [31144 2015-06-04] (TuneUp Software)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S4 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [X]
S4 F06DEFF2-5B9C-490D-910F-35D3A91196223; \??\C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]
S3 xspirit; \??\C:\WINDOWS\xspirit.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2099-06-20 10:03 - 10314-06-20 10:03 - 00000000 _____ C:\Users\Chris\AppData\Local\{C43C56DF-543F-4A5B-9BC3-6A2785B798D5}
2015-12-29 17:03 - 2015-12-29 17:03 - 00000000 ____D C:\Users\Chris\AppData\Local\Logitech
2015-12-29 17:03 - 2015-12-29 17:03 - 00000000 ____D C:\ProgramData\LogiShrd
2015-12-29 17:01 - 2015-12-29 17:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-12-29 16:50 - 2015-12-29 17:03 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2015-12-29 16:24 - 2015-12-29 16:38 - 97288008 _____ (Logitech Inc.) C:\Users\Chris\Downloads\LGS_8.76.155_x64_Logitech.exe
2015-12-29 16:23 - 2015-12-29 16:23 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Logitech
2015-12-29 16:23 - 2015-12-29 16:23 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Logishrd
2015-12-29 16:02 - 2015-12-29 16:21 - 91841288 _____ (Logitech Inc.) C:\Users\Chris\Downloads\LGS_8.76.155_x86_Logitech.exe
2015-12-28 11:07 - 2015-12-28 11:07 - 00000958 _____ C:\Users\Chris\Desktop\Open Broadcaster Software.lnk
2015-12-28 11:06 - 2015-12-28 11:07 - 00000000 ____D C:\Program Files (x86)\OBS
2015-12-28 10:55 - 2015-12-28 11:06 - 68037144 _____ C:\Users\Chris\Downloads\OBS_0_657b_With_Browser_Installer.exe
2015-12-28 09:55 - 2015-12-28 09:57 - 00002404 _____ C:\Users\Chris\AppData\Roaming\net.telestream.gameshow.xml
2015-12-28 09:55 - 2015-12-28 09:57 - 00000000 ____D C:\Users\Chris\AppData\Roaming\WirecastCache
2015-12-28 09:55 - 2015-12-28 09:55 - 00000597 _____ C:\ProgramData\ContentToHashDecode.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000140 _____ C:\ProgramData\PublicKeyDecode.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000128 _____ C:\ProgramData\SignatureDecode.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000128 _____ C:\ProgramData\ModulusInBlob.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000128 _____ C:\ProgramData\ModulusBeforeReversal.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000004 _____ C:\ProgramData\KeyInBlob.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000003 _____ C:\ProgramData\ExponentBeforeReversal.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Vara Software
2015-12-28 09:55 - 2015-12-28 09:55 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Gameshow
2015-12-28 09:55 - 2015-12-28 09:55 - 00000000 ____D C:\Users\Chris\AppData\Local\Telestream
2015-12-28 09:55 - 2015-12-28 09:55 - 00000000 ____D C:\ProgramData\Telestream
2015-12-28 09:55 - 2015-12-28 09:55 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-12-28 09:54 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-12-28 09:54 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-12-28 09:54 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-12-28 09:54 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-12-28 09:54 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-12-28 09:54 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2015-12-28 09:54 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-12-28 09:54 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-12-28 09:53 - 2015-12-28 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telestream
2015-12-28 09:53 - 2015-12-28 09:53 - 00000000 ____D C:\Program Files\Telestream
2015-12-28 09:30 - 2015-12-28 09:52 - 153899216 _____ C:\Users\Chris\Downloads\Gameshow_1_3_26301.exe
2015-12-28 06:05 - 2015-12-28 06:05 - 05137248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-28 04:18 - 2015-12-28 04:20 - 00051380 _____ C:\Users\Chris\Desktop\Addition.txt
2015-12-28 04:15 - 2015-12-30 00:03 - 00000000 ____D C:\FRST
2015-12-28 04:14 - 2015-12-28 04:14 - 02370560 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2015-12-28 04:14 - 2015-12-28 04:14 - 00005770 _____ C:\Users\Chris\Documents\cc_20151228_041444.reg
2015-12-27 15:51 - 2015-12-27 15:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Simply Super Software
2015-12-27 15:48 - 2015-12-27 15:48 - 00001162 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2015-12-27 15:48 - 2015-12-27 15:48 - 00000000 ____D C:\Users\Chris\Documents\Simply Super Software
2015-12-27 15:48 - 2015-12-27 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
2015-12-27 15:47 - 2015-12-27 15:48 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2015-12-27 15:47 - 2015-12-27 15:47 - 00000000 ____D C:\ProgramData\Simply Super Software
2015-12-27 15:40 - 2015-12-27 15:40 - 01466656 _____ C:\Users\Chris\Downloads\Trojan Remover - CHIP-Installer.exe
2015-12-27 01:36 - 2015-12-27 01:37 - 01118920 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\NDP452-KB2901954-Web.exe
2015-12-27 01:35 - 2015-12-27 01:37 - 07195928 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\vcredist_x64.exe
2015-12-27 00:59 - 2015-12-27 01:13 - 102983184 _____ C:\Users\Chris\Downloads\clrbrowser4_repack.zip
2015-12-26 22:03 - 2015-12-26 22:04 - 25767004 _____ C:\Users\Chris\Desktop\gzugzu.mp4
2015-12-26 04:42 - 2015-12-26 04:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Multiplatform
2015-12-26 04:32 - 2015-12-26 04:37 - 35873936 _____ C:\Users\Chris\Downloads\OBS-MP-0.12.3-Installer.exe
2015-12-25 19:18 - 2015-12-25 19:19 - 37681152 _____ C:\Users\Chris\Desktop\Tobias fängt Zitrone.m2ts
2015-12-25 19:14 - 2015-12-26 21:51 - 00000000 ____D C:\Users\Chris\Desktop\GoPro HERO4 Videos
2015-12-25 13:58 - 2015-12-25 14:00 - 00000000 ____D C:\Users\Chris\Desktop\GoProHero4
2015-12-25 13:48 - 2015-12-25 13:48 - 00001864 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2015-12-25 13:48 - 2015-12-25 13:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-12-25 13:47 - 2015-12-25 13:48 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-12-25 13:47 - 2015-12-25 13:47 - 00000000 ____D C:\ProgramData\Apple Computer
2015-12-25 13:46 - 2015-12-25 13:46 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-12-25 13:46 - 2015-12-25 13:46 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2015-12-25 13:46 - 2015-12-25 13:46 - 00000000 ____D C:\Users\Chris\AppData\LocalLow\Apple Computer
2015-12-25 13:46 - 2015-12-25 13:46 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple
2015-12-25 13:46 - 2015-12-25 13:46 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-12-25 13:39 - 2015-12-25 13:45 - 42096984 _____ (Apple Inc.) C:\Users\Chris\Downloads\QuickTimeInstaller.exe
2015-12-25 13:37 - 2015-12-25 20:03 - 00000000 ____D C:\Users\Chris\Desktop\Musik Videos
2015-12-25 13:35 - 2015-12-25 13:37 - 00000000 ____D C:\Users\Chris\AppData\Local\GoPro
2015-12-25 13:34 - 2015-12-25 13:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\GoPro
2015-12-25 13:32 - 2015-12-25 13:54 - 00000000 ____D C:\Users\Public\CineForm
2015-12-25 13:32 - 2015-12-25 13:32 - 00000826 _____ C:\Users\Public\Desktop\GoPro Studio.lnk
2015-12-25 13:32 - 2015-12-25 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
2015-12-25 13:32 - 2015-12-25 13:32 - 00000000 ____D C:\Program Files (x86)\GoPro
2015-12-25 13:32 - 2015-12-25 13:32 - 00000000 ____D C:\Program Files (x86)\CineForm
2015-12-25 13:22 - 2015-12-25 13:29 - 121291664 _____ (GoPro, Inc.) C:\Users\Chris\Downloads\GoProStudioPC-2.5.7.549.exe
2015-12-24 22:18 - 2015-12-24 22:22 - 86802432 _____ C:\Users\Chris\Desktop\Ohne Titel.m2ts
2015-12-24 16:15 - 2015-12-24 16:15 - 13869096 _____ C:\Users\Chris\Desktop\Snipah waffenindustrie.wav
2015-12-23 21:17 - 2015-12-23 21:45 - 00000000 ____D C:\Users\Chris\Desktop\Apurensenipah
2015-12-23 20:25 - 2015-12-23 20:25 - 11465986 _____ C:\Users\Chris\Desktop\doubletime machen.wav
2015-12-18 00:00 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-12-18 00:00 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-12-16 22:31 - 2015-12-16 22:31 - 00000000 ____D C:\Users\Chris\AppData\Local\NVIDIA Corporation
2015-12-16 22:31 - 2015-12-16 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-12-16 21:26 - 2015-12-16 22:11 - 93005824 _____ (NVIDIA Corporation ) C:\Users\Chris\Downloads\6.06_nvidia_system_tools.exe
2015-12-15 21:00 - 2015-12-15 21:00 - 00003182 _____ C:\WINDOWS\System32\Tasks\Experience Component
2015-12-15 21:00 - 2015-12-15 21:00 - 00003152 _____ C:\WINDOWS\System32\Tasks\Experience Component2
2015-12-15 21:00 - 2015-12-15 21:00 - 00000000 ____D C:\Users\Chris\AppData\Local\Experience Component
2015-12-13 22:24 - 2015-12-13 22:24 - 00005100 _____ C:\Users\Chris\Downloads\config.rar
2015-12-13 04:08 - 2015-12-13 04:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EVGA
2015-12-13 04:08 - 2015-12-13 04:08 - 00000000 ____D C:\Program Files (x86)\EVGA
2015-12-13 04:08 - 2015-05-27 14:51 - 00156160 _____ C:\WINDOWS\system32\FW1FontWrapper_x64.dll
2015-12-13 04:06 - 2015-12-13 04:06 - 00000000 ____D C:\Program Files (x86)\Geeks3D
2015-12-13 04:02 - 2015-12-13 04:02 - 04810544 _____ (Geeks3D.com ) C:\Users\Chris\Downloads\FurMark_1.10.1_Setup.exe
2015-12-11 15:18 - 2015-12-11 15:19 - 00000000 ____D C:\Users\Chris\Desktop\Zuhältertape_(Vol__4)
2015-12-10 16:05 - 2015-10-10 18:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-12-10 16:04 - 2015-11-05 09:59 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-10 16:04 - 2015-10-05 19:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-12-10 16:04 - 2015-10-05 19:25 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-12-10 16:03 - 2015-11-11 17:21 - 25837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-10 16:03 - 2015-11-11 17:00 - 12856832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-10 16:03 - 2015-11-11 16:44 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-12-10 16:03 - 2015-11-11 16:44 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-12-10 16:03 - 2015-11-11 16:41 - 20366848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-10 16:03 - 2015-11-11 16:12 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-12-10 16:03 - 2015-11-10 01:13 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-10 16:03 - 2015-11-10 01:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-12-10 16:03 - 2015-11-10 01:08 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-10 16:03 - 2015-11-10 01:04 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-12-10 16:03 - 2015-11-10 01:02 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-12-10 16:03 - 2015-11-10 00:46 - 04514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-12-10 16:03 - 2015-11-10 00:41 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-12-10 16:03 - 2015-11-10 00:37 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-12-10 16:03 - 2015-11-10 00:36 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-10 16:03 - 2015-11-10 00:36 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-10 16:03 - 2015-11-10 00:36 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-10 16:03 - 2015-11-10 00:25 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-12-10 16:03 - 2015-11-10 00:17 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-10 16:03 - 2015-11-10 00:14 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-10 16:03 - 2015-11-10 00:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-12-10 16:03 - 2015-11-08 23:15 - 02887168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-10 16:03 - 2015-11-08 23:15 - 00571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-10 16:03 - 2015-11-08 23:04 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-12-10 16:03 - 2015-11-08 23:02 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-12-10 16:03 - 2015-11-08 23:01 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-12-10 16:03 - 2015-11-08 22:32 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-12-10 16:03 - 2015-11-08 22:32 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-12-10 16:03 - 2015-11-08 22:25 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-12-10 16:03 - 2015-11-08 22:18 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-12-10 16:03 - 2015-11-08 22:16 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-10 16:03 - 2015-11-08 22:15 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-10 16:03 - 2015-11-08 22:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-10 16:03 - 2015-11-08 22:14 - 14456832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-10 16:03 - 2015-11-08 22:13 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-10 16:03 - 2015-11-08 21:53 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-12-10 16:03 - 2015-11-08 21:53 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-10 16:03 - 2015-11-08 21:41 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-10 16:03 - 2015-11-08 21:30 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-12-10 15:58 - 2015-11-22 07:59 - 07455064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-10 15:58 - 2015-11-22 07:59 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-10 15:58 - 2015-11-22 07:59 - 01659568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-12-10 15:58 - 2015-11-22 07:59 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-12-10 15:58 - 2015-11-22 07:59 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-12-10 15:58 - 2015-11-22 07:59 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-12-10 15:58 - 2015-11-22 07:58 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-10 15:58 - 2015-11-21 19:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-12-10 15:58 - 2015-11-21 18:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-12-10 15:58 - 2015-11-21 17:59 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-10 15:58 - 2015-11-21 17:49 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-10 15:58 - 2015-11-21 17:47 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-10 15:58 - 2015-11-21 17:40 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-10 15:58 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-10 15:58 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2015-12-10 15:58 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-10 15:58 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2015-12-10 15:58 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2015-12-10 15:58 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2015-12-10 15:58 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2015-12-10 15:58 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2015-12-10 15:58 - 2015-10-22 17:21 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-10 15:58 - 2015-10-22 17:21 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-12-10 15:58 - 2015-10-22 16:58 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-12-10 15:58 - 2015-10-22 16:58 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-12-10 15:58 - 2015-10-22 15:08 - 00513456 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-12-10 15:58 - 2015-10-22 15:08 - 00513456 _____ C:\WINDOWS\system32\locale.nls
2015-12-10 15:57 - 2015-11-09 01:41 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-10 15:57 - 2015-11-08 23:30 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-10 15:57 - 2015-11-08 22:23 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-12-10 15:57 - 2015-11-08 22:13 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-12-10 15:57 - 2015-11-08 22:01 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-10 15:57 - 2015-11-08 21:52 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-12-10 15:57 - 2015-11-08 21:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-10 15:57 - 2015-11-08 21:42 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-10 15:57 - 2015-10-03 20:41 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-12-10 15:57 - 2015-10-03 20:41 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-12-10 15:53 - 2015-11-20 17:58 - 03706880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-10 15:52 - 2015-11-20 23:47 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-10 15:52 - 2015-11-20 19:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-10 15:52 - 2015-11-20 17:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-12-10 15:52 - 2015-11-20 17:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-12-10 15:52 - 2015-11-20 17:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-12-10 15:52 - 2015-11-20 17:44 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-12-10 15:52 - 2015-11-20 17:43 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-12-10 15:52 - 2015-11-20 17:42 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-12-10 15:52 - 2015-11-20 17:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-12-10 15:52 - 2015-11-20 17:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-12-10 15:52 - 2015-11-20 17:28 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-12-10 15:52 - 2015-11-20 17:27 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-12-10 15:52 - 2015-10-28 16:49 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-10 15:52 - 2015-10-28 16:29 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-10 15:52 - 2015-10-11 07:34 - 00468824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-12-10 15:52 - 2015-10-11 07:34 - 00462168 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-12-10 15:52 - 2015-10-11 07:34 - 00443224 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2015-12-10 15:52 - 2015-10-11 07:34 - 00092504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2015-12-10 15:52 - 2015-10-11 07:34 - 00027992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2015-12-10 15:52 - 2015-10-10 19:41 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2015-12-10 15:52 - 2015-10-10 19:41 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2015-12-10 15:52 - 2015-10-10 19:40 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusb.sys
2015-12-10 15:52 - 2015-10-08 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2015-12-10 15:52 - 2015-10-08 16:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2015-12-08 16:17 - 2015-12-08 16:17 - 00180225 _____ C:\Users\Chris\Desktop\Bestellnummer_ 2449575.pdf
2015-12-04 15:23 - 2015-12-04 15:24 - 00000000 ____D C:\Users\Chris\Desktop\GoPro
2015-12-03 18:16 - 2015-12-03 18:16 - 33766236 _____ C:\Users\Chris\Desktop\Duuuuuuuuu.wav
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2099-06-20 10:03 - 2014-06-16 20:19 - 00000000 ____D C:\Users\Chris\AppData\Local\fst_de_40
2015-12-30 00:03 - 2014-06-05 20:36 - 00000000 ___RD C:\Users\Chris\Desktop\andy
2015-12-30 00:03 - 2014-02-18 18:48 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-30 00:02 - 2014-09-24 07:17 - 01980934 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-30 00:02 - 2014-09-24 06:43 - 00841326 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-30 00:02 - 2014-09-24 06:43 - 00191558 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-30 00:02 - 2013-10-19 18:32 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1662367657-1586800259-3932121210-1001
2015-12-30 00:02 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2015-12-30 00:00 - 2013-10-19 18:45 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001UA.job
2015-12-29 23:57 - 2015-01-24 14:35 - 00000000 ____D C:\Users\Chris\AppData\Local\HTC MediaHub
2015-12-29 23:56 - 2015-06-01 08:00 - 00000540 _____ C:\WINDOWS\Tasks\winter_sports_helper_service.job
2015-12-29 23:56 - 2015-05-28 02:00 - 00000510 _____ C:\WINDOWS\Tasks\max_deal_helper_service.job
2015-12-29 23:56 - 2014-10-24 15:19 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-29 23:56 - 2014-05-28 19:53 - 00000918 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-12-29 23:56 - 2014-02-18 18:48 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-29 23:56 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-29 18:28 - 2013-11-29 22:28 - 00000312 _____ C:\WINDOWS\Tasks\SaveSense.job
2015-12-29 17:08 - 2014-03-03 16:08 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2015-12-29 17:07 - 2015-03-17 11:23 - 00003934 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{58816936-2D6C-4B2E-9195-F35EB075E63B}
2015-12-29 17:03 - 2013-10-19 18:45 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001Core.job
2015-12-29 16:52 - 2013-08-22 14:36 - 00000000 ____D C:\Windows
2015-12-29 16:51 - 2015-06-02 15:48 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-29 15:00 - 2014-05-28 19:53 - 00000922 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-12-28 23:41 - 2015-07-13 01:13 - 00000000 ____D C:\Users\Chris\AppData\Roaming\OBS
2015-12-28 13:02 - 2015-01-24 14:35 - 00000000 ____D C:\Users\Chris\AppData\Local\Apple Computer
2015-12-28 11:07 - 2015-07-13 01:13 - 00000000 ____D C:\Program Files\OBS
2015-12-28 10:56 - 2015-09-09 05:09 - 00000000 ____D C:\Users\Chris\AppData\Roaming\obs-studio
2015-12-28 06:31 - 2013-11-22 20:51 - 00000000 ____D C:\Program Files (x86)\MAGIX
2015-12-28 06:29 - 2015-01-13 17:12 - 00000000 ____D C:\Users\Public\Documents\MAGIX
2015-12-28 06:29 - 2013-11-22 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2015-12-28 06:16 - 2015-05-23 21:21 - 00000000 ____D C:\Users\Chris\AppData\Roaming\ICQM
2015-12-28 06:16 - 2014-03-14 20:58 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-12-28 06:00 - 2015-05-19 18:27 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Skype
2015-12-28 05:58 - 2014-10-24 17:48 - 00850944 ___SH C:\Users\Chris\Desktop\Thumbs.db
2015-12-28 04:08 - 2013-10-27 00:08 - 00000000 ____D C:\Users\Chris\AppData\Local\CrashDumps
2015-12-28 04:01 - 2015-06-08 11:58 - 00000000 ____D C:\WINDOWS\Minidump
2015-12-28 03:51 - 2014-10-24 15:23 - 00000000 ____D C:\Users\Chris
2015-12-27 16:01 - 2013-10-19 21:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Audacity
2015-12-27 15:55 - 2013-09-13 19:54 - 00000000 ____D C:\ProgramData\Temp
2015-12-27 15:51 - 2014-05-28 19:55 - 00000000 ____D C:\Program Files (x86)\MediaPlayer+
2015-12-27 15:51 - 2014-05-28 19:53 - 00000000 ____D C:\Program Files (x86)\Frevens Pro 12
2015-12-25 20:02 - 2014-02-08 18:31 - 00000000 ____D C:\Users\Chris\Documents\Vegas Movie Studio HD Platinum 11.0 Projekte
2015-12-25 16:42 - 2015-06-02 15:59 - 00000000 ____D C:\Users\Chris\AppData\Local\Steam
2015-12-25 13:33 - 2013-04-03 16:09 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-25 13:32 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-24 07:17 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2015-12-24 04:26 - 2015-07-26 21:21 - 00000219 _____ C:\Users\Chris\Desktop\Counter-Strike Global Offensive.url
2015-12-23 16:58 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-22 22:50 - 2015-11-29 21:12 - 00000000 ____D C:\Users\Chris\Desktop\AUGEN AUF FB
2015-12-22 22:41 - 2015-04-11 21:06 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-12-22 22:41 - 2015-04-11 21:06 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-12-20 15:54 - 2015-09-08 19:05 - 00000000 ____D C:\Program Files (x86)\Opera
2015-12-20 13:20 - 2015-11-24 18:42 - 00000081 _____ C:\Users\Chris\Desktop\YouTubeDownloaderHD.ini
2015-12-18 14:21 - 2015-04-24 11:59 - 00000000 ____D C:\Users\Chris\AppData\Local\Spotify
2015-12-18 14:18 - 2015-04-24 11:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Spotify
2015-12-16 22:31 - 2014-10-24 15:18 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-12-16 22:31 - 2014-10-24 15:18 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-12-16 22:31 - 2013-09-13 19:49 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-13 04:08 - 2015-05-31 10:01 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-12-13 04:08 - 2015-05-31 10:01 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-12-12 20:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-10 21:39 - 2015-07-15 09:35 - 00000000 ____D C:\Program Files (x86)\WinZipper
2015-12-10 21:35 - 2014-05-24 13:05 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-10 21:35 - 2014-05-24 13:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-10 16:23 - 2014-05-24 13:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-10 16:21 - 2013-10-27 11:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-10 16:13 - 2013-10-27 11:30 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-10 15:54 - 2015-09-08 19:07 - 00003870 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1441735645
2015-12-10 15:54 - 2015-09-08 19:07 - 00001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-12-09 04:39 - 2014-10-28 10:14 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-05 16:55 - 2013-10-19 18:45 - 00004086 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001UA
2015-12-05 16:55 - 2013-10-19 18:45 - 00003706 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001Core
2015-12-05 03:17 - 2015-11-14 20:01 - 00000000 ____D C:\Users\Chris\Desktop\old
2015-12-01 19:56 - 2015-01-10 11:42 - 00000000 ____D C:\Users\Chris\Desktop\Steffii
2015-12-01 18:19 - 2014-09-24 08:46 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 18:19 - 2014-09-24 08:46 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-05-15 16:44 - 2014-05-28 20:34 - 0000320 _____ () C:\Users\Chris\AppData\Roaming\aps.uninstall.scan.results
2015-12-28 09:55 - 2015-12-28 09:57 - 0002404 _____ () C:\Users\Chris\AppData\Roaming\net.telestream.gameshow.xml
2015-06-08 14:55 - 2015-06-13 08:19 - 0000000 _____ () C:\Users\Chris\AppData\Roaming\reparations.exe
2015-06-15 09:04 - 2015-06-15 09:08 - 0000016 _____ () C:\Users\Chris\AppData\Roaming\users.vdf
2013-12-19 18:28 - 2014-10-23 17:33 - 0000211 _____ () C:\Users\Chris\AppData\Roaming\WB.CFG
2015-05-20 21:16 - 2015-05-20 21:16 - 0001495 _____ () C:\Users\Chris\AppData\Local\recently-used.xbel
10314-06-20 10:03 - 10314-06-20 10:03 - 0000000 _____ () C:\Users\Chris\AppData\Local\{C43C56DF-543F-4A5B-9BC3-6A2785B798D5}
2015-06-13 08:17 - 2015-06-13 08:17 - 0000006 __RSH () C:\ProgramData\03404ce119fd6c36b876bfbb131bd3bbdbd9874d
2015-12-28 09:55 - 2015-12-28 09:55 - 0000597 _____ () C:\ProgramData\ContentToHashDecode.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 0000003 _____ () C:\ProgramData\ExponentBeforeReversal.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 0000004 _____ () C:\ProgramData\KeyInBlob.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 0000128 _____ () C:\ProgramData\ModulusBeforeReversal.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 0000128 _____ () C:\ProgramData\ModulusInBlob.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 0000140 _____ () C:\ProgramData\PublicKeyDecode.bin
2015-12-28 09:55 - 2015-12-28 09:55 - 0000128 _____ () C:\ProgramData\SignatureDecode.bin
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-29 23:09
==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:27-12-2015
durchgeführt von Chris (2015-12-30 00:05:59)
Gestartet von C:\Users\Chris\Desktop\andy
Windows 8.1 (X64) (2014-10-24 14:53:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1662367657-1586800259-3932121210-500 - Administrator - Disabled)
Chris (S-1-5-21-1662367657-1586800259-3932121210-1001 - Administrator - Enabled) => C:\Users\Chris
Gast (S-1-5-21-1662367657-1586800259-3932121210-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1662367657-1586800259-3932121210-1004 - Limited - Enabled)
UpdatusUser (S-1-5-21-1662367657-1586800259-3932121210-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.0.0 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
aladin (HKLM-x32\...\{7FFC1B30-70CE-11D5-A8B2-000374890932}) (Version: - )
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.13.3317.03143 - Alcor Micro Corp.) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4134 - DsNET Corp)
Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
AVG 2014 (Version: 14.0.3986 - AVG Technologies) Hidden
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: - AVM Berlin)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Craften Terminal 4.1.2 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.1.2 - Craften.de)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4.6522 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.4.3003 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.2.4016 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.4.2921 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.4.3007 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dojotech Spotify Recorder (HKLM-x32\...\{D149DB2E-392E-48CC-8036-88BECC09C50A}) (Version: 3.2 - Dojotech Software)
DVD Architect Studio 5.0 (HKLM-x32\...\{60A1EC40-30A0-11E0-800D-005056C00008}) (Version: 5.0.128 - Sony)
EaseUS Data Recovery Wizard 8.0 (HKLM-x32\...\EaseUS Data Recovery Wizard 8.0_is1) (Version: - EaseUS)
Easy Setting Box (HKLM-x32\...\{7E750925-00C9-4B23-A1E8-BBFC0955CFD8}) (Version: 1.0.00 - Samsung)
EVGA PrecisionX 16 (HKLM-x32\...\{425A0AAA-B049-4356-A81E-E089BC5AE934}) (Version: 5.3.10 - EVGA Corporation)
Experience Component (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\{B61C40F3-FC79-0206-3F28-4DEF348D4773}) (Version: 1.9.6 - Food Extension corp) <==== ACHTUNG
ExpressCache (HKLM\...\{C123584F-9C84-45E8-AE5F-522328BB79A0}) (Version: 1.0.100.0 - Condusiv Technologies)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free MP4 Video Converter version 5.0.61.805 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.61.805 - DVDVideoSoft Ltd.)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.0.1.1001 - DVDVideoSoft Ltd.)
Frevens Pro 12 (HKLM-x32\...\Frevens Pro 12) (Version: 1.34.5.22 - shift)
fst_de_23 (HKLM-x32\...\fst_de_23_is1) (Version: - fst) <==== ACHTUNG
fst_de_24 (HKLM-x32\...\fst_de_24_is1) (Version: - fst) <==== ACHTUNG
fst_de_40 (HKLM-x32\...\fst_de_40_is1) (Version: - FREE_SOFT_TODAY) <==== ACHTUNG
Gameshow (HKLM\...\{F9CB1DA1-67D9-4080-98DD-58D5567E70F4}) (Version: 1.3.0 - Telestream LLC)
Geeks3D.com FurMark 1.10.1 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D.com)
Genesis (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\cgcxbxm_05281853) (Version: - ) <==== ACHTUNG
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
GoPro App (x32 Version: 5.7.549 - GoPro, Inc.) Hidden
GoPro Studio 2.5.7 (HKLM-x32\...\{b996dca2-156c-4d2c-b9a3-59fac08cef33}) (Version: 2.5.7.549 - GoPro, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HomeTab 6.4 (HKLM-x32\...\{7ac3fd38-27b0-428d-b368-7b0dbd1e78f0}_is1) (Version: 6.4 - SimplyTech LTD) <==== ACHTUNG
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\HPConnectedMusic) (Version: 1.1 (build 77) hp - Meridian Audio Ltd)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6668.4491 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{C88F84E5-AE23-44BD-922C-2ABEACACAF7A}) (Version: 7.2.23.56 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HQvidPv1.12 (HKLM-x32\...\HQvidPv1.12) (Version: 1.34.4.10 - HQvidPv1.12)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.14.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.37.2 - HTC)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6482.0 - IDT)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
KODAK Create@Home Software (für dm) (HKLM-x32\...\{43B8BDF6-13EC-44BE-9EDA-F284C4CA19A6}) (Version: 7.8.1392 - Eastman Kodak Company)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.1 - LoiLo inc.)
LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.4.2 - LoiLo inc)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2014 Trial Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2015 Trial Soundpools (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Screenshare (HKLM-x32\...\MAGIX_{0B6CC8F2-48DA-4620-AADC-D54334649014}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{AD4A2318-33E8-4E3C-90F5-5E91D0EE8572}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
ManyCam 5.0.4 (HKLM-x32\...\ManyCam) (Version: 5.0.4 - Visicom Media Inc.)
MediaPlayer+ (HKLM-x32\...\MediaPlayer+) (Version: 1.34.5.22 - enter) <==== ACHTUNG
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPC Backup (HKLM\...\MyPC Backup) (Version: - JDi Backup Ltd) <==== ACHTUNG
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
Norton Identity Safe (HKLM-x32\...\NST) (Version: 2014.7.11.42 - Symantec Corporation)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 20.5.0.28 - Symantec Corporation)
NVIDIA 3D Vision Treiber 327.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 327.23 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation)
NVIDIA Grafiktreiber 327.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.23 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.23.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.12.3 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 34.0.2036.25 (HKLM-x32\...\Opera 34.0.2036.25) (Version: 34.0.2036.25 - Opera Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.0.02.14151 - Sony Corporation)
Price Meter (remove only) (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Price Meter) (Version: 1.0.5.8 - Price Meter) <==== ACHTUNG
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{F0A8BF4A-972F-41E0-9800-1EFE3BF28266}) (Version: 6.2.9200.30153 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.6208 - CyberLink Corp.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Samplitude Music Studio 2013 (HKLM-x32\...\MAGIX_{C02AB3DD-D476-4EF0-B59B-D4D58A71A5F9}) (Version: 19.0.1.18 - MAGIX AG)
Samplitude Music Studio 2013 (Version: 19.0.1.18 - MAGIX AG) Hidden
Samplitude Music Studio 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.34.0 - SAMSUNG Electronics Co., Ltd.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Should I Remove It (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Should I Remove It (x32 Version: 1.0.4 - Reason Software Company Inc.) Hidden
simplitec simplicheck (HKLM-x32\...\{DF103EDA-7937-4966-8EFB-5EF5C38301F2}) (Version: 1.3.9.0 - simplitec GmbH)
Skiller Pro Driver (HKLM-x32\...\{54C8FBB3-B992-43CB-8F0A-E26228013F88}) (Version: 1.0 - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.)
Snap.Do (HKLM-x32\...\{923521CE-BCFD-4EDC-B755-798350C984DF}) (Version: 11.62.1.16545 - ReSoft Ltd.) <==== ACHTUNG
Spotify (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SupraSavings (x32 Version: 1.0.0.0 - SupraSavings) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Trojan Remover 6.9.3 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.3 - Simply Super Software)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.353 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
Unity Web Player (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for PriceMeter (HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\PriceMeterUpdater) (Version: - Update for PriceMeter) <==== ACHTUNG
Vegas Movie Studio HD Platinum 11.0 (HKLM-x32\...\{4A62FED1-759A-11E0-8248-0013D3D69929}) (Version: 11.0.220 - Sony)
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VIS (HKLM-x32\...\VIS) (Version: - ) <==== ACHTUNG
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita 2 Zusatzcontent (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Bass Machine (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Rock Drums (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita String Ensemble (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita World Percussion (Version: 1.0.0.0 - MAGIX AG) Hidden
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
Vyzex MPD24 (HKLM-x32\...\{ACC12BD4-3AE0-48EF-9441-9625D763F658}_is1) (Version: Vyzex MPD24 v1.00 - Psicraft Designs, Inc.)
WAV To MP3 V2 (HKLM-x32\...\WAV To MP3_is1) (Version: - hxxp://www.WAVMP3.net)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
WinZipper (HKLM-x32\...\WinZipper) (Version: 1.5.129 - Taiwan Shui Mu Chih Ching Technology Limited.) <==== ACHTUNG
YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: 6.6.214 - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Chris\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Chris\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {08DD424F-276B-4887-8E6F-E5001CA02076} - System32\Tasks\Experience Component => Rundll32.exe "C:\Users\Chris\AppData\Local\Experience Component\{2C925C89-3C8D-5D2C-C536-7FC241C30BB6}\ExperienceComponent.dll",#1 <==== ACHTUNG
Task: {164FC22A-0ADD-4BC7-B2ED-9CFA03BDDFF7} - System32\Tasks\Google Updater and Installer => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {1D659DAF-8DEE-47CC-81DF-6EF6094DE125} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-05-28] (globalUpdate) <==== ACHTUNG
Task: {2076B840-3A13-4946-9A31-C068D4076859} - System32\Tasks\Experience Component2 => Rundll32.exe "C:\Users\Chris\AppData\Local\Experience Component\{2C925C89-3C8D-5D2C-C536-7FC241C30BB6}\zksn.dll",#1 <==== ACHTUNG
Task: {253AE27E-E1DA-46C4-BB10-44A320B42F3D} - System32\Tasks\winter_sports_helper_service => C:\Program Files (x86)\Winter Sports\winter_sports_helper_service.exe [2015-06-01] () <==== ACHTUNG
Task: {30C7DF24-8A20-4F42-AB82-B58A71F3561E} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {3A2C2296-4232-4ABA-A438-D065D8AF9D09} - System32\Tasks\{94FE4EAE-C714-445E-8970-465BE2B8BEF2} => pcalua.exe -a "C:\Users\Chris\Desktop\andy\gekauftes Minecraft\mod ect\forge-1.8-11.14.1.1405-installer-win (1).exe" -d "C:\Users\Chris\Desktop\andy\gekauftes Minecraft\mod ect"
Task: {3CB30DC7-AB8B-4F04-A610-7D2CDC27F34C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-18] (Google Inc.)
Task: {3EF47EC6-D86E-4572-8B92-4E6AC0E36020} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
Task: {4353FCA2-6312-47D5-9CC5-3FC5F3324F8A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-06-06] (Hewlett-Packard)
Task: {43D334CF-CC3D-4FDB-BBFF-5F24C7D8A791} - System32\Tasks\Sun Microsystems-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Java\jre6\bin\jusched.exe
Task: {4539F369-E0FD-4E0D-8A29-170E9B764A88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-18] (Google Inc.)
Task: {4680CB08-BC4A-4EE8-A3A5-FB38FB3585E2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company)
Task: {5CFCF07D-DE60-446F-8269-C9A350B1D058} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-10] (Microsoft Corporation)
Task: {6A3A120F-8CE6-488C-A9A1-8B50A67AFDAE} - System32\Tasks\pricemeterwatcher => C:\Users\Chris\AppData\Local\PriceMeter\pricemeterw.exe <==== ACHTUNG
Task: {70D327E5-DB52-49B5-AFCD-37CD11372487} - System32\Tasks\pricemeterdownloader => C:\Users\Chris\AppData\Local\PriceMeter\pricemeterd.exe <==== ACHTUNG
Task: {75B21C2A-E05F-46BC-A36B-EEF2B692DFDF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-06-07] (Hewlett-Packard Company)
Task: {796C0519-0F65-48F6-A90B-11D38B4ADC16} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\HomeTab\WBrowserKeeper.exe [2014-04-09] () <==== ACHTUNG
Task: {79918AEE-C678-465B-BA7C-60DB497A20F2} - System32\Tasks\{3A5CAFF8-F0A5-4F72-A783-F63076DDB967} => Chrome.exe hxxp://ui.skype.com/ui/0/7.4.0.102/de/abandoninstall?source=lightinstaller&page=tsInstall
Task: {85136947-1754-4D29-B9DF-F27606364BD2} - System32\Tasks\pricemetertask => C:\Users\Chris\AppData\Local\PriceMeter\TEMP\pricemeter.exe <==== ACHTUNG
Task: {9B15A9EB-EFF8-4AA3-BB5A-C0657225F8FB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001UA => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9CB65684-583F-477E-B18B-7FB6E66C8D91} - System32\Tasks\SystemSockets\SystemSockets => C:\Program Files (x86)\HomeTab\WBrokerProductivity.exe [2014-01-09] () <==== ACHTUNG
Task: {AEAC3BF7-8910-47FE-AA08-704C09D96326} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-06-07] (Hewlett-Packard Company)
Task: {AF84936D-DE9F-4E94-A70C-FB199DBEB8B5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {B2291622-1214-4F54-9A4B-2BD2E042CD4F} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-05-28] (globalUpdate) <==== ACHTUNG
Task: {B51D77EB-460B-4D53-8045-FCE95DDCB6FD} - System32\Tasks\Browser Updater\Browser Updater => C:\Program Files (x86)\HomeTab\WBrowserUpgrade.exe [2014-02-04] () <==== ACHTUNG
Task: {B5552AC0-7252-4044-AA26-AE45BF5F8D0A} - System32\Tasks\FF Watcher {3E76951C-7BD1-4A14-84E9-B45AF9F57E5D} => C:\Program Files\V-bates\PrefHelper.exe <==== ACHTUNG
Task: {CEED4C2E-11D3-4B24-A80F-42FC8969DB78} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D19F167E-3DAE-4997-89A3-AEDE7C042CAE} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {D8819556-CD10-4DC4-AE35-3F576C5BCAD0} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-12] (CyberLink)
Task: {D8F943AC-33F0-4ADD-AA79-BA54CB841D54} - System32\Tasks\AdobeAAMUpdater-1.0-Christian-Chris => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {DC68EE09-E269-4685-9D4B-F59BEF7746E3} - System32\Tasks\max_deal_helper_service => C:\Program Files (x86)\Max Deal\max_deal_helper_service.exe [2015-05-28] () <==== ACHTUNG
Task: {E324813F-666C-4D57-A6AD-D0801DCAD960} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {E47696E3-768C-4495-B0F9-731F32DF9A42} - System32\Tasks\{1FDCDC90-D484-43D8-B3EE-6451EE42A050} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.4.0.102&LastError=404
Task: {E98610AF-598E-46DC-9421-250F24CA2BC2} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2015-06-25] (TuneUp Software)
Task: {EB19701B-61FB-4BDF-9987-65F462D2B64F} - System32\Tasks\Opera scheduled Autoupdate 1441735645 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)
Task: {ED44F54A-D0FD-4A08-9CF5-E1B2993A8ADB} - \BrowserSafeguard Update Task -> Keine Datei <==== ACHTUNG
Task: {ED481751-4FAC-449E-B90D-026138CE894D} - \Update\Steam.exe -> Keine Datei <==== ACHTUNG
Task: {EED13170-997E-4F7A-8C87-10E7E9319B00} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001Core => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {F892AB0D-3F24-4CB3-842A-4E0DF28D5673} - System32\Tasks\SaveSense => C:\Users\Chris\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ACHTUNG
Task: {FE48C7A4-9F2B-4DB3-970A-40D8189DE02D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001Core.job => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1662367657-1586800259-3932121210-1001UA.job => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\max_deal_helper_service.job => C:\Program Files (x86)\Max Deal\max_deal_helper_service.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\SaveSense.job => C:\Users\Chris\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ACHTUNG
Task: C:\WINDOWS\Tasks\winter_sports_helper_service.job => C:\Program Files (x86)\Winter Sports\winter_sports_helper_service.exe <==== ACHTUNG
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Chris\Desktop\Programme\Google Chrome.lnk -> C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://start.qone8.com/?type=sc&ts=1398337455&from=adks&uid=WDCXWD10EZEX-60ZF5A0_WD-WMC1S626564765647
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-05-28 19:53 - 2014-01-09 08:16 - 00034376 _____ () C:\Program Files (x86)\HomeTab\WBrokerProductivity.exe
2014-12-18 15:10 - 2014-12-18 15:10 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2015-06-01 08:00 - 2015-06-01 08:00 - 00191696 _____ () C:\Program Files (x86)\Winter Sports\winter_sports_helper_service.exe
2015-05-28 02:00 - 2015-05-28 02:00 - 00191719 _____ () C:\Program Files (x86)\Max Deal\max_deal_helper_service.exe
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 22:41 - 2015-11-20 22:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 22:41 - 2015-11-20 22:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-07-24 16:22 - 2014-02-26 13:45 - 00475136 _____ () C:\Program Files (x86)\Skiller Pro\Monitor.EXE
2015-07-24 11:12 - 2015-05-25 11:32 - 00068432 _____ () C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll
2014-12-18 15:06 - 2014-12-18 15:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-12-18 15:08 - 2014-12-18 15:08 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 15:09 - 2014-12-18 15:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 15:08 - 2014-12-18 15:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 15:09 - 2014-12-18 15:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 15:11 - 2014-12-18 15:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 15:14 - 2014-12-18 15:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-12-15 21:00 - 2015-12-15 21:00 - 00025600 _____ () C:\Users\Chris\AppData\Local\Experience Component\{2C925C89-3C8D-5D2C-C536-7FC241C30BB6}\ExperienceComponent.dll
2015-12-15 21:00 - 2015-12-15 21:00 - 00012800 _____ () C:\Users\Chris\AppData\Local\Experience Component\{2C925C89-3C8D-5D2C-C536-7FC241C30BB6}\zksn.dll
2015-12-15 21:00 - 2015-12-15 21:00 - 00011264 _____ () C:\Users\Chris\AppData\Local\Experience Component\{2C925C89-3C8D-5D2C-C536-7FC241C30BB6}\{36175826-BB4D-732B-40AD-BAB7D749918E}.dat
2015-07-24 11:12 - 2015-01-13 05:31 - 00179200 _____ () C:\Program Files (x86)\Elex-tech\YAC\libpng.dll
2013-09-13 19:55 - 2013-03-12 15:51 - 00626240 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-12 22:53 - 2013-03-12 22:53 - 00015424 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-07-24 16:22 - 2014-09-03 14:58 - 00057344 _____ () C:\Program Files (x86)\Skiller Pro\lan.dll
2015-07-24 16:22 - 2012-08-14 21:41 - 00061440 _____ () C:\Program Files (x86)\Skiller Pro\hiddriver.dll
2015-12-16 21:05 - 2015-12-11 04:54 - 01583432 _____ () C:\Users\Chris\AppData\Local\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-16 21:05 - 2015-12-11 04:54 - 00081224 _____ () C:\Users\Chris\AppData\Local\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-24 21:38 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\Chris\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\Temp:CB0AACC9
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-1662367657-1586800259-3932121210-1001\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts
|
Hinweis:
AdwCleaner auf deinen Desktop.