| ONNLEINCHEN | 09.09.2019 04:00 |
Hab Gott sei Dank doch noch gefunden, wo das hin gehört:
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 04-09-2019
durchgeführt von Onnleinchen (Administrator) auf Onnleinchen-PC (Dell Inc. OptiPlex 990) (08-09-2019 02:52:38)
Gestartet von C:\Users\Onnleinchen\Desktop
Geladene Profile: Onnleinchen (Verfügbare Profile: Onnleinchen)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Corel Corporation -> Corel Corporation) C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe
(Corel Corporation -> Corel Corporation) C:\Program Files\WinZip Smart Monitor\WinZipSmartMonitor.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\80.4.126\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\80.4.126\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\80.4.126\QtWebEngineProcess.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\WebProtection\NativeMessagingWP.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVKBackup\AVKBackupService.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IncrediMail, Inc. -> IncrediMail Ltd.) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
(IncrediMail, Inc. -> IncrediMail Ltd.) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIREE.EXE
(Solvusoft Corporation -> Solvusoft Corporation) C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Vladislavas Jarmalis -> Mixesoft Project) C:\Users\Onnleinchen\AppData\Local\Mixesoft\AppNHost\appnhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe [2907792 2012-07-18] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [Ashampoo Backup] => "C:\Program Files\Ashampoo\Ashampoo Backup 2016\bin\backupClient-ab.exe" --hidden
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5888320 2019-09-05] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [CommonToolkitTray_Solvusoft] => C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe [1685192 2018-03-06] (Solvusoft Corporation -> Solvusoft Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\program files (x86)\g data\internetsecurity\avkkid\avkcks.exe <==== ACHTUNG
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Run: [appnhost] => C:\Users\Onnleinchen\AppData\Local\Mixesoft\AppNHost\appnhost.exe [453176 2014-08-08] (Vladislavas Jarmalis -> Mixesoft Project)
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIREE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Run: [IncrediMail] => C:\Program Files (x86)\IncrediMail\bin\IncMail.exe [444424 2017-04-07] (IncrediMail, Inc. -> IncrediMail Ltd.)
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Run: [OpenOffice Updater] => C:\Users\Onnleinchen\AppData\Roaming\OpenOffice Updater\Updater.exe [365704 2019-06-04] (Zugriff verweigert) [Datei ist nicht signiert] <==== ACHTUNG
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\MountPoints2: E - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\MountPoints2: {66d27beb-f3d6-11e6-8e15-782bcb9c4bb9} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\MountPoints2: {de2dc848-cb51-11e5-b7b2-806e6f6e6963} - D:\InstallNavi.exe
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {09E8A7EB-2899-4A87-A5A1-E5AE240FE92F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-09] (Google Inc -> Google Inc.)
Task: {0C70195C-91A5-4253-A54E-DDA0713D3203} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {0E38EED3-BC9E-485E-97C8-A0BDA30086FB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1BB6464E-6905-4750-9512-5FAC8CC198D0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [1457208 2019-08-14] (Adobe Inc. -> Adobe)
Task: {2114133A-979A-433C-85DF-76BE298165B0} - System32\Tasks\{836A3526-4E4C-47E8-8938-CB51983CEC7D} => C:\Windows\system32\pcalua.exe -a "C:\Users\Onnleinchen\Desktop\Photoshop free.exe"
Task: {2A814003-0C10-495A-8015-295FFC74938B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6638296 2016-02-12] (Piriform Ltd -> Piriform Ltd)
Task: {35A244A6-1AA9-4F31-A6AF-8E7C9267C992} - System32\Tasks\{6B75602A-6536-4E82-AE97-EAD607047105} => C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe [444424 2017-04-07] (IncrediMail, Inc. -> IncrediMail Ltd.)
Task: {4737E91E-C672-4555-8B54-23C3EC8E1074} - System32\Tasks\Norton Security Scan for Onnleinchen => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.80\Nss.exe [848456 2018-03-13] (Symantec Corporation -> Symantec Corporation)
Task: {4C680FB1-91CD-46A5-951B-A547C53D5488} - System32\Tasks\{59C3703F-7958-4D2D-A780-5D4C889FF541} => C:\Users\Onnleinchen\Pictures\Rohrverleger_v6.2.exe
Task: {604C9BD4-9C68-4921-AD94-D1B619568DC0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-16] (Adobe Inc. -> Adobe)
Task: {63009950-4B87-4DF4-9F84-2DEA4CD37D9B} - System32\Tasks\EPSON XP-342 343 345 Series Update {F1659FF1-7995-4709-86BB-E4924C25419B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSREE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {6AE75E8A-2F4B-40BC-AB42-24C932B05837} - System32\Tasks\Start WinZip Driver Updater for Onnleinchen-PC@Onnleinchen(logon) => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [30796072 2019-08-09] (Corel Corporation -> Corel Corporation)
Task: {7A3EE85E-2F77-4E71-B594-426C848474A9} - System32\Tasks\{B9CA9C00-C2F2-4396-85A1-6615CD9DF882} => C:\Users\Onnleinchen\Pictures\Rohrverleger_v6.2.exe
Task: {8410E61B-9158-444C-B5AA-B1290D5BD3F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-09] (Google Inc -> Google Inc.)
Task: {85CACBF6-309F-4B94-B41C-ACBB6604019D} - System32\Tasks\{07D79115-4F6F-4144-A66E-4B9B01F3F87E} => C:\Windows\system32\pcalua.exe -a D:\setup.exe -d D:\
Task: {8FBFF8AC-FA52-4F0D-9665-D4F11B8AC352} - System32\Tasks\Start WinZip Driver Updater Update => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [30796072 2019-08-09] (Corel Corporation -> Corel Corporation)
Task: {90216462-79A1-412A-A3FC-1160D9461A28} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {992ECDC2-8058-4BFA-8785-66633172CD38} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A9497151-A01A-46CA-A6A7-3E3ABB5AE593} - System32\Tasks\{E9E4F0FC-6FC3-4407-8B35-2292173D0FA4} => C:\Users\Onnleinchen\Pictures\Rohrverleger_v6.2.exe
Task: {ADD26EB7-5FD9-490D-9271-52367E63C475} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe [1452600 2019-08-16] (Adobe Inc. -> Adobe)
Task: {C60E22C2-7D05-4E5A-A670-D415C2737851} - System32\Tasks\Start WinZip Driver Updater Schedule => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [30796072 2019-08-09] (Corel Corporation -> Corel Corporation)
Task: {CFB92938-E423-4F20-A9D5-125C38F606D5} - System32\Tasks\{87D410A5-E718-4557-9C35-132C5023A8EB} => C:\Users\Onnleinchen\Documents\EigDat altPut\Rohrverleger_v6.2.exe [311995 2016-02-12] (RegExLab's Friends Group(Created by J2E 1.8 Trial, RegExLab.com)) [Datei ist nicht signiert]
Task: {D61C818F-DBF7-486B-A06C-AF7FACBEC561} - System32\Tasks\{11136802-17DE-45F0-ABD5-F37EA3E116AE} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\WinZip Driver Updater\Uninstall.exe"
Task: {D8964B27-BBB1-4836-A8E2-44F0F1B205B9} - System32\Tasks\{5E297A91-BC70-431E-A0F5-4408BAE76413} => C:\Windows\system32\pcalua.exe -a C:\Users\Onnleinchen\Desktop\SeagateToolkit.exe -d C:\Users\Onnleinchen\Desktop
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON XP-342 343 345 Series Update {F1659FF1-7995-4709-86BB-E4924C25419B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSREE.EXE:/EXE:{F1659FF1-7995-4709-86BB-E4924C25419B} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\Start WinZip Driver Updater for Onnleinchen-PC@Onnleinchen(logon).job => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A1BF8577-BAFE-483F-A791-CBC3B01CAD9C}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www1.online/?w=RD4345
SearchScopes: HKLM -> DefaultScope {92300A55-3F8B-41D3-A6FD-06D9D0D29019} URL = hxxps://www1.online/?w=RD4345&q={searchTerms}
SearchScopes: HKLM -> {92300A55-3F8B-41D3-A6FD-06D9D0D29019} URL = hxxps://www1.online/?w=RD4345&q={searchTerms}
SearchScopes: HKU\S-1-5-21-379827610-3931315717-2115784761-1000 -> DefaultScope {92300A55-3F8B-41D3-A6FD-06D9D0D29019} URL = hxxps://www1.online/?w=RD4345&q={searchTerms}
SearchScopes: HKU\S-1-5-21-379827610-3931315717-2115784761-1000 -> {92300A55-3F8B-41D3-A6FD-06D9D0D29019} URL = hxxps://www1.online/?w=RD4345&q={searchTerms}
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2018-02-02] [Legacy] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_238.dll [2019-08-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_238.dll [2019-08-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1228198.dll [2017-02-27] (Adobe Systems, Inc.) [Datei ist nicht signiert]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR StartupUrls: Default -> "chrome://newtab/"
CHR Profile: C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default [2019-09-08]
CHR Extension: (Google Übersetzer) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2018-07-23]
CHR Extension: (SMSfromBrowser) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\agbaigfmkcoigbnnahacjcpiflnaknnc [2019-06-18]
CHR Extension: (PackageTracer) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\amcpnjkikckoopgapojdkjlflnhdbiol [2019-06-30]
CHR Extension: (Mogicons) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgpffljkgjmijjdmjbdppndoojdgboe [2019-06-13]
CHR Extension: (Weava Highlighter - PDF & Web) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbnaodkpfinfiipjblikofhlhlcickei [2019-02-28]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-30]
CHR Extension: (Adobe Acrobat) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-16]
CHR Extension: (Trusted Shops-Erweiterung für Google Chrome) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2019-08-30]
CHR Extension: (Click&Clean) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2019-08-30]
CHR Extension: (Symbols & Smileys) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gponajbpomilcmbmfoipobkikeopjjhp [2019-01-24]
CHR Extension: (G DATA WebProtection) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\iokapgenfjiafbmphhhcgmgkobiiomcp [2019-02-02]
CHR Extension: (Emoji Keyboard by JoyPixels™) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdjnhgkpapgippgcgkfcbpdpcgifncb [2019-08-30]
CHR Extension: (Skype) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-05-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-06-29]
CHR Extension: (gemoji-chrome) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbmhomembgkmpjkgppjmofejjejonkb [2019-01-24]
CHR Extension: (FilmFanatic) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojcggonafbneajjmkpkcigabaobmge [2019-06-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-23]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2019-08-30]
CHR Extension: (Chrome Media Router) - C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-01]
CHR Profile: C:\Users\Onnleinchen\AppData\Local\Google\Chrome\User Data\System Profile [2018-05-21]
CHR HKU\S-1-5-21-379827610-3931315717-2115784761-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Onnleinchen\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2019-06-27]
CHR HKU\S-1-5-21-379827610-3931315717-2115784761-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [5931744 2018-11-07] (G DATA Software AG -> G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe [3682832 2018-09-25] (G DATA Software AG -> G Data Software AG)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [462704 2018-12-07] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-09-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 GDBackupSvc; C:\Program Files (x86)\G Data\InternetSecurity\AVKBackup\AVKBackupService.exe [5936264 2018-09-25] (G DATA Software AG -> G DATA Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe [3799200 2018-10-30] (G DATA Software AG -> G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [1461416 2018-11-06] (G DATA Software AG -> G DATA Software AG)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12001112 2019-08-29] (TeamViewer GmbH -> TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-12-06] (Microsoft Windows -> Microsoft Corporation)
R2 WinZip Smart Monitor Service; C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe [1451304 2019-08-08] (Corel Corporation -> Corel Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-01-06] (Symantec Corporation -> Symantec Corporation)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [47664 2019-01-10] (G DATA Software AG -> G DATA Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [38984 2018-07-20] (G DATA Software AG -> G DATA Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [458288 2019-01-10] (G DATA Software AG -> G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [206880 2019-01-10] (G DATA Software AG -> G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [76960 2019-01-10] (G DATA Software AG -> G DATA Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [125640 2018-03-07] (G DATA Software AG -> G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [216728 2019-01-10] (G DATA Software AG -> G Data Software AG)
S3 htcnprot; C:\Windows\System32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider)
R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [3008144 2012-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-29] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-09-08 02:45 - 2019-09-08 02:46 - 001053784 _____ (Slimware Utilities Holdings, Inc.) C:\Users\Onnleinchen\Desktop\DriverUpdate-setup-4f427a8c-a57c-4dd0-b8ef-074795386392.exe
2019-09-08 02:43 - 2019-09-08 02:43 - 001615360 _____ (Farbar) C:\Users\Onnleinchen\Desktop\FRST64 (1).exe
2019-09-07 17:08 - 2019-09-07 17:10 - 000000000 ____D C:\Users\Onnleinchen\Documents\Hakan
2019-09-07 00:30 - 2019-09-07 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-09-05 14:18 - 2019-09-05 14:18 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-09-05 14:18 - 2019-09-05 14:18 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-09-05 14:18 - 2019-09-05 14:18 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-09-05 14:18 - 2019-09-05 14:18 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2019-09-04 04:59 - 2019-09-04 04:59 - 000091067 _____ C:\Users\Onnleinchen\Documents\img20190904_04590890.pdf
2019-09-03 10:14 - 2019-09-03 10:55 - 000000000 ____D C:\Users\Onnleinchen\Desktop\maln
2019-09-03 08:01 - 2019-09-03 08:01 - 000012511 _____ C:\Users\Onnleinchen\Desktop\0.jpeg
2019-08-30 10:40 - 2019-08-30 10:40 - 000000000 ____D C:\Program Files (x86)\Browser Files
2019-08-30 10:07 - 2019-08-30 10:07 - 000003432 _____ C:\Windows\System32\Tasks\Start WinZip Driver Updater Schedule
2019-08-30 10:07 - 2019-08-30 10:07 - 000003364 _____ C:\Windows\System32\Tasks\Start WinZip Driver Updater Update
2019-08-30 10:07 - 2019-08-30 10:07 - 000000910 _____ C:\Users\Public\Desktop\WinZip Driver Updater.lnk
2019-08-30 10:06 - 2019-08-30 11:00 - 000000338 _____ C:\Windows\Tasks\Start WinZip Driver Updater for Onnleinchen-PC@Onnleinchen(logon).job
2019-08-30 10:06 - 2019-08-30 10:06 - 000002630 _____ C:\Windows\System32\Tasks\Start WinZip Driver Updater for Onnleinchen-PC@Onnleinchen(logon)
2019-08-27 19:54 - 2019-08-27 19:54 - 001151544 _____ (Google LLC) C:\Users\Onnleinchen\Desktop\ChromeSetup.exe
2019-08-23 04:37 - 2019-08-23 04:37 - 000072556 _____ C:\Users\Onnleinchen\AppData\Roaming\PhotoPad.dmp
2019-08-16 14:17 - 2019-08-16 14:17 - 000004486 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-08-16 14:15 - 2019-08-16 14:16 - 001207336 _____ (Adobe Inc) C:\Users\Onnleinchen\Desktop\flashplayer32pp_xa_install.exe
2019-08-14 01:43 - 2019-08-06 00:58 - 000397432 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 01:43 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-08-14 01:43 - 2019-08-04 05:37 - 025754624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 01:43 - 2019-08-04 04:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-08-14 01:43 - 2019-08-04 04:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-08-14 01:43 - 2019-08-04 04:04 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 01:43 - 2019-08-04 04:03 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-08-14 01:43 - 2019-08-04 04:02 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 01:43 - 2019-08-04 04:02 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-08-14 01:43 - 2019-08-04 04:02 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-08-14 01:43 - 2019-08-04 04:01 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-08-14 01:43 - 2019-08-04 03:55 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-08-14 01:43 - 2019-08-04 03:54 - 005775872 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-08-14 01:43 - 2019-08-04 03:54 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-08-14 01:43 - 2019-08-04 03:52 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-08-14 01:43 - 2019-08-04 03:51 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 01:43 - 2019-08-04 03:51 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-08-14 01:43 - 2019-08-04 03:51 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-08-14 01:43 - 2019-08-04 03:50 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-08-14 01:43 - 2019-08-04 03:43 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-08-14 01:43 - 2019-08-04 03:40 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-08-14 01:43 - 2019-08-04 03:34 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-08-14 01:43 - 2019-08-04 03:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-08-14 01:43 - 2019-08-04 03:33 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-08-14 01:43 - 2019-08-04 03:30 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-08-14 01:43 - 2019-08-04 03:29 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-08-14 01:43 - 2019-08-04 03:27 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-08-14 01:43 - 2019-08-04 03:25 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-08-14 01:43 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-08-14 01:43 - 2019-08-04 03:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-08-14 01:43 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-08-14 01:43 - 2019-08-04 03:14 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 01:43 - 2019-08-04 03:14 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 01:43 - 2019-08-04 03:12 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 01:43 - 2019-08-04 03:12 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-08-14 01:43 - 2019-08-04 03:11 - 015390720 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 01:43 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-08-14 01:43 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-08-14 01:43 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-08-14 01:43 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-08-14 01:43 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-08-14 01:43 - 2019-08-04 03:01 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 01:43 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-08-14 01:43 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-08-14 01:43 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-08-14 01:43 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-08-14 01:43 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-08-14 01:43 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-08-14 01:43 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-08-14 01:43 - 2019-08-04 02:50 - 001566208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-08-14 01:43 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-08-14 01:43 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-08-14 01:43 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-08-14 01:43 - 2019-08-04 02:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-08-14 01:43 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-08-14 01:43 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-08-14 01:43 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-08-14 01:43 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-08-14 01:43 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-08-14 01:43 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-08-14 01:43 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-08-14 01:43 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-08-14 01:43 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-08-14 01:43 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-08-14 01:43 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-08-14 01:43 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-08-14 01:43 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-08-14 01:43 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-08-14 01:43 - 2019-07-30 04:25 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-08-14 01:43 - 2019-07-30 04:23 - 005552568 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 01:43 - 2019-07-30 04:23 - 000710072 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-08-14 01:43 - 2019-07-30 04:23 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 01:43 - 2019-07-30 04:23 - 000155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-08-14 01:43 - 2019-07-30 04:23 - 000097208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-08-14 01:43 - 2019-07-30 04:22 - 001671000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-08-14 01:43 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-08-14 01:43 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-08-14 01:43 - 2019-07-30 04:19 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:17 - 001319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-08-14 01:43 - 2019-07-30 04:16 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-08-14 01:43 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-08-14 01:43 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-08-14 01:43 - 2019-07-30 03:51 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-08-14 01:43 - 2019-07-30 03:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-08-14 01:43 - 2019-07-30 03:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 01:43 - 2019-07-30 03:51 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-08-14 01:43 - 2019-07-30 03:48 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-08-14 01:43 - 2019-07-30 03:48 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-08-14 01:43 - 2019-07-30 03:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-08-14 01:43 - 2019-07-30 03:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-08-14 01:43 - 2019-07-30 03:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-08-14 01:43 - 2019-07-30 03:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-08-14 01:43 - 2019-07-30 03:47 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-08-14 01:43 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-08-14 01:43 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-08-14 01:43 - 2019-07-30 03:44 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-08-14 01:43 - 2019-07-30 03:44 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-08-14 01:43 - 2019-07-30 03:44 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-08-14 01:43 - 2019-07-30 03:44 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-08-14 01:43 - 2019-07-30 03:44 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 01:43 - 2019-07-30 03:44 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-08-14 01:43 - 2019-07-30 03:43 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-08-14 01:43 - 2019-07-30 03:43 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-08-14 01:43 - 2019-07-30 03:43 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-08-14 01:43 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-08-14 01:43 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-08-14 01:43 - 2019-07-30 03:43 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-08-14 01:43 - 2019-07-30 03:43 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-08-14 01:43 - 2019-07-19 05:30 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-08-14 01:43 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-08-14 01:43 - 2019-07-13 10:36 - 000289720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-08-14 01:43 - 2019-07-13 10:35 - 001894840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 01:43 - 2019-07-13 10:35 - 000385464 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-08-14 01:43 - 2019-07-13 10:35 - 000378808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-08-14 01:43 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-08-14 01:43 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2019-08-14 01:43 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-08-14 01:43 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-08-14 01:43 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-08-14 01:43 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2019-08-14 01:43 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2019-08-14 01:43 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 001077760 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-08-14 01:43 - 2019-07-13 10:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-08-14 01:43 - 2019-07-13 10:31 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-08-14 01:43 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-08-14 01:43 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-08-14 01:43 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-08-14 01:43 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll
2019-08-14 01:43 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-08-14 01:43 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-08-14 01:43 - 2019-07-04 03:14 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
==================== Ein Monat (geänderte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-09-08 03:20 - 2019-05-23 04:52 - 000031793 _____ C:\Users\Onnleinchen\Desktop\FRST.txt
2019-09-08 02:52 - 2019-05-23 04:51 - 000000000 ____D C:\FRST
2019-09-08 02:37 - 2018-02-02 15:37 - 000000911 _____ C:\Windows\Tasks\EPSON XP-342 343 345 Series Update {F1659FF1-7995-4709-86BB-E4924C25419B}.job
2019-09-08 02:32 - 2016-02-12 05:40 - 000001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2019-09-07 04:15 - 2009-07-14 06:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-07 04:15 - 2009-07-14 06:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-07 00:30 - 2016-02-12 05:40 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-09-06 13:32 - 2016-02-12 05:40 - 000001208 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-09-05 11:12 - 2016-02-16 14:03 - 000000000 ____D C:\Users\Onnleinchen\Documents\Postbank Online-Banking_files
2019-09-04 04:52 - 2011-04-12 09:43 - 000699092 _____ C:\Windows\system32\perfh007.dat
2019-09-04 04:52 - 2011-04-12 09:43 - 000149232 _____ C:\Windows\system32\perfc007.dat
2019-09-04 04:52 - 2009-07-14 07:13 - 001619284 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-04 04:52 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-08-30 13:28 - 2016-02-09 21:55 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-08-30 13:27 - 2019-01-23 09:31 - 000000977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-08-30 13:27 - 2019-01-23 09:31 - 000000965 _____ C:\Users\Public\Desktop\TeamViewer 14.lnk
2019-08-30 11:36 - 2019-07-04 16:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2019-08-30 11:36 - 2019-03-28 05:22 - 000000000 ____D C:\ProgramData\WinZip
2019-08-30 11:16 - 2019-06-27 06:45 - 000000000 ___RD C:\Users\Onnleinchen\Google Drive
2019-08-30 11:00 - 2018-12-17 18:44 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2019-08-30 11:00 - 2018-12-17 18:44 - 000000150 _____ C:\Windows\SysWOW64\winsevr.dat
2019-08-30 11:00 - 2018-12-17 18:43 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2019-08-30 10:57 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-30 10:40 - 2016-02-09 18:39 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-30 10:40 - 2016-02-09 18:39 - 000002297 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-30 10:39 - 2019-03-01 05:17 - 000000000 ____D C:\Users\Onnleinchen\AppData\Roaming\OpenOffice Updater
2019-08-30 10:30 - 2019-03-28 05:22 - 000000000 ____D C:\Program Files\WinZip Driver Updater
2019-08-28 03:28 - 2017-05-18 00:02 - 000052224 ___SH C:\Users\Onnleinchen\Documents\Thumbs.db
2019-08-27 14:38 - 2019-03-28 05:22 - 000000000 ____D C:\Program Files\WinZip Smart Monitor
2019-08-22 14:11 - 2016-02-09 20:19 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-21 13:27 - 2016-02-12 05:40 - 000004208 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2019-08-21 13:27 - 2016-02-12 05:40 - 000003956 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2019-08-16 14:17 - 2016-02-09 21:30 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-08-16 14:17 - 2016-02-09 21:30 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-08-16 14:17 - 2016-02-09 21:30 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-08-16 14:17 - 2016-02-09 21:30 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-08-16 14:17 - 2016-02-09 21:30 - 000000000 ____D C:\Windows\system32\Macromed
2019-08-16 14:16 - 2016-02-10 20:08 - 000000000 ____D C:\Users\Onnleinchen\AppData\Local\Adobe
2019-08-15 14:36 - 2018-07-19 02:06 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-08-14 17:36 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2019-08-14 15:45 - 2018-03-14 16:16 - 000004516 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-08-14 03:30 - 2009-07-14 06:45 - 000351200 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-14 03:25 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 03:08 - 2016-03-07 01:39 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 03:05 - 2016-03-07 01:39 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-13 16:44 - 2017-12-23 18:06 - 000000000 ____D C:\Windows\System32\Tasks\NCH Software
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ================
2016-04-01 19:33 - 2016-04-01 19:33 - 003743984 _____ () C:\Users\Onnleinchen\IncrediBackup_de (1).exe
2019-08-23 04:37 - 2019-08-23 04:37 - 000072556 _____ () C:\Users\Onnleinchen\AppData\Roaming\PhotoPad.dmp
2016-02-29 20:27 - 2016-02-29 20:27 - 000005120 _____ () C:\Users\Onnleinchen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-02-10 20:35 - 2016-02-10 20:35 - 000000848 _____ () C:\Users\Onnleinchen\AppData\Local\recently-used.xbel
2016-09-01 19:25 - 2016-09-01 19:36 - 000007619 _____ () C:\Users\Onnleinchen\AppData\Local\resmon.resmoncfg
2016-08-28 17:37 - 2016-08-28 17:37 - 000000000 _____ () C:\Users\Onnleinchen\AppData\Local\{0324334D-BDCE-4196-B3D3-02F36D1C3ED3}
==================== FLock ================
2015-10-15 16:40 C:\Windows\CSC
==================== SigCheck ===============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
LastRegBack: 2019-08-31 01:06
==================== Ende von FRST.txt ============================
--- --- --- Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 08-09-2019
durchgeführt von Onnleinchen (09-09-2019 04:53:10)
Gestartet von C:\Users\Onnleinchen\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-02-04 15:29:23)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-379827610-3931315717-2115784761-500 - Administrator - Disabled)
Onnleinchen (S-1-5-21-379827610-3931315717-2115784761-1000 - Administrator - Enabled) => C:\Users\Onnleinchen
Gast (S-1-5-21-379827610-3931315717-2115784761-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-379827610-3931315717-2115784761-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: G DATA INTERNET SECURITY (Enabled - Up to date) {A9C56A9B-ECCD-57EA-78F6-92511DA1C885}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: G DATA INTERNET SECURITY (Enabled - Up to date) {12A48B7F-CAF7-5864-4246-A92366268238}
FW: G DATA INTERNET SECURITY (Enabled) {91FEEBBE-A6A2-56B2-53A9-3B64E3728FFE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.238 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.238 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.238 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.8.198 - Adobe Systems, Inc.)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AppNHost 1.0.5.1 (HKLM-x32\...\{A8CB86C7-CD4C-4C4F-AF6A-33D1CAC63562}) (Version: 1.0.5.1 - Mixesoft Project)
Backup and Sync from Google (HKLM\...\{768C0072-2FD2-4934-9824-B2A1E81AEA5D}) (Version: 3.45.5545.5747 - Google, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
Desktopicon amazon.de (HKLM\...\DesktopIconAmazon) (Version: 1.0.1 - )
DrawPad Graphic Design Software (HKLM-x32\...\DrawPad) (Version: 4.00 - NCH Software)
Dropbox (HKLM-x32\...\Dropbox) (Version: 80.4.126 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Easy Photo Scan (HKLM-x32\...\{93AEF2AF-86FB-42AD-8392-5DAEC0638B1A}) (Version: 1.00.0012 - Seiko Epson Corporation)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.0 - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{F05A434E-D3CF-4B44-9D3E-779D42090781}) (Version: 2.8.0.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{60A3CB9F-4429-4C7A-AA97-77CC4FE10671}) (Version: 4.4.9 - Seiko Epson Corporation)
EPSON XP-342 343 345 Series Printer Uninstall (HKLM\...\EPSON XP-342 343 345 Series) (Version: - Seiko Epson Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.54.0.0 - Seiko Epson Corporation)
FastStone Image Viewer 7.0 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.0 - FastStone Soft)
Fences (HKLM\...\{10CD364B-FFCC-48BE-B469-B9622A033075}) (Version: 1.0 - Stardock Corporation) Hidden
Fences (HKLM-x32\...\Fences) (Version: - Stardock Corporation)
FileViewPro (HKLM\...\FileViewPro_is1) (Version: 1.9.8.18 - Solvusoft Corporation)
G DATA INTERNET SECURITY (HKLM-x32\...\G DATA INTERNET SECURITY) (Version: 25.5.4.21 - G DATA Software AG)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
IncrediBackup (HKLM-x32\...\{D44222FB-31A2-4D2B-B222-D0C5599F28D0}) (Version: 1.0.0.1087 - Ihr Firmenname) Hidden
IncrediBackup (HKLM-x32\...\IncrediBackup) (Version: 1.0.0.1087 - IncrediMail Ltd.)
IncrediMail (HKLM-x32\...\{C8842F80-0E07-4424-916D-9F6B6A9968E4}) (Version: 6.6.0.5328 - IncrediMail) Hidden
IncrediMail 2.5 (HKLM-x32\...\IncrediMail) (Version: 6.6.0.5328 - IncrediMail Ltd.)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Microsoft .NET Framework 4.7.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office 97, Professional Edition (HKLM-x32\...\Office8.0) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.6.1.80 - Symantec Corporation)
OpenOffice 4.1.6 (HKLM-x32\...\{3651624F-019F-4B39-8AE4-A2423CE1986F}) (Version: 4.16.9790 - Apache Software Foundation)
OpenOffice Updater (HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\OpenOffice Updater) (Version: 1.1.10 - OpenOffice) <==== ACHTUNG
Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
PhotoPad Foto-Editor (HKLM-x32\...\PhotoPad) (Version: 3.17 - NCH Software)
PhotoStage Slideshow Producer (HKLM-x32\...\PhotoStage) (Version: 5.13 - NCH Software)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5931 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.5.5819 - TeamViewer)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.5.5.51 - Seagate)
TranscendElite Version 3.2 (HKLM-x32\...\{9BD0C0A0-1DCE-49BF-841F-668D010F605A}_is1) (Version: 3.2 - Transcend Information, Inc.)
VideoPad Video-Editor (HKLM-x32\...\VideoPad) (Version: 6.26 - NCH Software)
Websuche (Chrome) (HKLM-x32\...\Websuche) (Version: - Websuche) <==== ACHTUNG
WinThruster (HKLM\...\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}) (Version: 1.31.0 - Solvusoft Corporation) Hidden <==== ACHTUNG
WinThruster (HKLM\...\WinThruster) (Version: 1.31.0 - Solvusoft Corporation) <==== ACHTUNG
WinZip Driver Updater (HKLM\...\WinZip Driver Updater) (Version: 5.29.2.2 - Corel Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
HKU\S-1-5-21-379827610-3931315717-2115784761-1000\...\ChromeHTML: -> <==== ACHTUNG
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G Data\InternetSecurity\AVK\ShellExt64.dll [2019-08-29] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264} => C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2010-06-22] (Stardock Corporation -> Stardock)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G Data\InternetSecurity\Shredder\Reisswlf64.dll [2019-08-29] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264} => C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2010-06-22] (Stardock Corporation -> Stardock)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264} => C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2010-06-22] (Stardock Corporation -> Stardock)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G Data\InternetSecurity\AVK\ShellExt64.dll [2019-08-29] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers6: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264} => C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2010-06-22] (Stardock Corporation -> Stardock)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G Data\InternetSecurity\Shredder\Reisswlf64.dll [2019-08-29] (G DATA Software AG -> G DATA Software AG)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
|
