Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [SPOILER] Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:09-08-2015
- durchgeführt von Admin 2 (Administrator) auf STEVENS-PC (10-08-2015 19:47:02)
- Gestartet von C:\Users\Admin 2\Downloads
- Geladene Profile: Admin 2 & (Verfügbare Profile: Admin & Admin 2)
- Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
- Internet Explorer Version 11 (Standard-Browser: Chrome)
- Start-Modus: Normal
- Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Prozesse (Nicht auf der Ausnahmeliste) =================
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
- (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
- (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
- (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
- () C:\Program Files\EslWire\service\WireHelperSvc.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
- (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
- () C:\Windows\SysWOW64\PnkBstrA.exe
- (Realtek) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
- (Realtek Semiconductor Corp.) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
- (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
- (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
- (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
- (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
- (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
- (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
- (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
- (Turtle Entertainment GmbH) C:\Program Files\EslWire\wire.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
- (Microsoft Corporation) C:\Windows\System32\dllhost.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
- (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone Pure Optical Mouse\KonePureOpticalMonitor.exe
- (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.exe
- (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
- (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
- (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
- ==================== Registry (Nicht auf der Ausnahmeliste) ==================
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
- HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
- HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
- HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7406392 2012-11-29] (Logitech Inc.)
- HKLM-x32\...\Run: [RoccatKonePureOptical] => C:\Program Files (x86)\ROCCAT\Kone Pure Optical Mouse\KonePureOpticalMonitor.exe [561152 2014-01-20] (ROCCAT GmbH)
- HKLM-x32\...\Run: [RoccatKonePure] => C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE [561152 2013-10-23] (ROCCAT GmbH)
- HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008 2015-07-28] (Avira Operations GmbH & Co. KG)
- HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG)
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
- HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2015-06-18] (Malwarebytes Corporation)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1000-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003\...\Run: [ESL Wire] => C:\Program Files\EslWire\wire.exe [3771904 2014-12-09] (Turtle Entertainment GmbH)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003\...\Run: [EADM] => C:\Users\Admin 2\Documents\Origin\Origin.exe [3632472 2015-06-11] (Electronic Arts)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003\...\Run: [Adobe Updater] => C:\Users\Admin 2\Downloads\TS3-RC1 Sound Pack (1).exe [364544 2015-06-22] (Teamspeak)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003\...\Run: [GoogleChromeAutoLaunch_1B9BBA035323A7AB3FB479E65125B48B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863560 2015-07-31] (Google Inc.)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ESL Wire] => C:\Program Files\EslWire\wire.exe [3771904 2014-12-09] (Turtle Entertainment GmbH)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EADM] => C:\Users\Admin 2\Documents\Origin\Origin.exe [3632472 2015-06-11] (Electronic Arts)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Adobe Updater] => C:\Users\Admin 2\Downloads\TS3-RC1 Sound Pack (1).exe [364544 2015-06-22] (Teamspeak)
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_1B9BBA035323A7AB3FB479E65125B48B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863560 2015-07-31] (Google Inc.)
- ==================== Internet (Nicht auf der Ausnahmeliste) ====================
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
- ProxyEnable: [S-1-5-21-1339075205-1264806086-473018771-1000-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0] => Internet Explorer proxy ist aktiviert.
- ProxyServer: [S-1-5-21-1339075205-1264806086-473018771-1000-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0] => http=127.0.0.1:49200;https=127.0.0.1:49200
- ProxyEnable: [S-1-5-21-1339075205-1264806086-473018771-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => Internet Explorer proxy ist aktiviert.
- ProxyServer: [S-1-5-21-1339075205-1264806086-473018771-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => http=127.0.0.1:49200;https=127.0.0.1:49200
- HKU\S-1-5-21-1339075205-1264806086-473018771-1000-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/de-de/?ocid=iehp
- HKU\S-1-5-21-1339075205-1264806086-473018771-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/de-de/?ocid=iehp
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startseite24.net
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/de-de/?ocid=iehp
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startseite24.net
- HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/de-de/?ocid=iehp
- SearchScopes: HKLM -> DefaultScope {324C2397-0ADA-4B79-B38D-965FC13DF7C9} URL = http://www.startseite24.net/?q={searchTerms}
- SearchScopes: HKLM -> {324C2397-0ADA-4B79-B38D-965FC13DF7C9} URL = http://www.startseite24.net/?q={searchTerms}
- SearchScopes: HKU\S-1-5-21-1339075205-1264806086-473018771-1003 -> DefaultScope {324C2397-0ADA-4B79-B38D-965FC13DF7C9} URL = http://www.startseite24.net/?q={searchTerms}
- SearchScopes: HKU\S-1-5-21-1339075205-1264806086-473018771-1003 -> {324C2397-0ADA-4B79-B38D-965FC13DF7C9} URL = http://www.startseite24.net/?q={searchTerms}
- SearchScopes: HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {324C2397-0ADA-4B79-B38D-965FC13DF7C9} URL = http://www.startseite24.net/?q={searchTerms}
- SearchScopes: HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {324C2397-0ADA-4B79-B38D-965FC13DF7C9} URL = http://www.startseite24.net/?q={searchTerms}
- BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
- BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-29] (Oracle Corporation)
- BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
- BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-29] (Oracle Corporation)
- BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
- BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05] (Symantec Corporation)
- BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
- Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
- Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
- Tcpip\..\Interfaces\{773A1933-7AED-4608-B8CA-F6309C292ED1}: [DhcpNameServer] 7.254.254.254
- Tcpip\..\Interfaces\{BBF73704-BCD3-4995-B9D3-720ADEA6CD27}: [NameServer] 192.168.178.34,192.168.178.1
- FireFox:
- ========
- FF ProfilePath: C:\Users\Admin 2\AppData\Roaming\Mozilla\Firefox\Profiles\lxwf66eq.default
- FF Homepage: hxxp://www.startseite24.net
- FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-14] ()
- FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
- FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-29] (Oracle Corporation)
- FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-29] (Oracle Corporation)
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
- FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
- FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
- FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
- FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
- FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
- FF Extension: Avira Browser Safety - C:\Users\Admin 2\AppData\Roaming\Mozilla\Firefox\Profiles\lxwf66eq.default\Extensions\abs@avira.com [2015-08-06]
- FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.0.0.100\coFFPlgn
- FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.0.0.100\coFFPlgn [2015-08-10]
- FF HKU\S-1-5-21-1339075205-1264806086-473018771-1000-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
- FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-11-18]
- FF HKU\S-1-5-21-1339075205-1264806086-473018771-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
- FF HKU\S-1-5-21-1339075205-1264806086-473018771-1003\...\Firefox\Extensions: [{ba2c82b0-7fa8-11e4-b4a9-0800200c9a66}] - C:\Users\ADMIN2~1\AppData\Local\Temp\search.xpi
- FF HKU\S-1-5-21-1339075205-1264806086-473018771-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Firefox\Extensions: [{ba2c82b0-7fa8-11e4-b4a9-0800200c9a66}] - C:\Users\ADMIN2~1\AppData\Local\Temp\search.xpi
- Chrome:
- =======
- CHR Profile: C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default
- CHR Extension: (ProxFlow) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-07-12]
- CHR Extension: (Google Slides) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-21]
- CHR Extension: (Google Docs) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-21]
- CHR Extension: (Google Drive) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-21]
- CHR Extension: (YouTube) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-21]
- CHR Extension: (Adblock Plus) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-11]
- CHR Extension: (Steam inventory helper) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-05-15]
- CHR Extension: (Google Search) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-21]
- CHR Extension: (Lounge Assistant) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjonnlehciedbcidabdglnnihcncbml [2015-05-15]
- CHR Extension: (Google Sheets) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-21]
- CHR Extension: (Snapchat) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffhmgkndiponacbgjgcbklgchfkmahog [2015-02-27]
- CHR Extension: (Avira Browser Safety) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-01-04]
- CHR Extension: (LoungeDestroyer) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-06-20]
- CHR Extension: (agar.io server browser) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-06-19]
- CHR Extension: (Norton Identity Safe) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-11-21]
- CHR Extension: (CS:GO Lounge Bump Bot) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhfkidfnhjcjjamcbdepeohblphlamgk [2015-01-17]
- CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-15]
- CHR Extension: (Steam Trader Helper) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoahihokddepjlegpenefeaahdkojog [2015-01-17]
- CHR Extension: (Norton Security Toolbar) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-12-09]
- CHR Extension: (Chrome Web Store Payments) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-21]
- CHR Extension: (Gmail) - C:\Users\Admin 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-21]
- CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
- CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
- CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-21]
- CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
- CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
- CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-21]
- ==================== Dienste (Nicht auf der Ausnahmeliste) ========================
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
- S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [887128 2015-07-28] (Avira Operations GmbH & Co. KG)
- R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-07-28] (Avira Operations GmbH & Co. KG)
- R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-07-28] (Avira Operations GmbH & Co. KG)
- S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1213072 2015-07-28] (Avira Operations GmbH & Co. KG)
- R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [218816 2015-07-02] (Avira Operations GmbH & Co. KG)
- S3 celavimushost; C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [123608 2015-06-06] (altPUG LLC)
- R2 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2014-01-28] ()
- R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
- S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
- R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [276336 2015-03-07] (Symantec Corporation)
- R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
- R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
- S3 Origin Client Service; C:\Users\Admin 2\Documents\Origin\OriginClientService.exe [1997168 2015-06-11] (Electronic Arts)
- R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-03] ()
- R2 Realtek11nSU; C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [Datei ist nicht signiert]
- S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [796624 2015-07-14] (Tunngle.net GmbH)
- S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
- ===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
- R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [162528 2015-07-28] (Avira Operations GmbH & Co. KG)
- R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-07-28] (Avira Operations GmbH & Co. KG)
- R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG)
- R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-03-10] (Avira Operations GmbH & Co. KG)
- R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\BASHDefs\20141209.001\BHDrvx64.sys [1587416 2014-10-24] (Symantec Corporation)
- R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
- R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-11] (Symantec Corporation)
- R1 ESEADriver2; C:\Users\Admin 2\AppData\Local\Temp\ESEADriver2.sys [362312 2015-07-12] ()
- R0 ESLWireAC; C:\Windows\System32\drivers\ESLWireACD.sys [92448 2015-08-04] (<Turtle Entertainment>)
- R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\IPSDefs\20141231.001\IDSvia64.sys [637656 2014-11-18] (Symantec Corporation)
- S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
- R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880 2015-08-10] (Malwarebytes Corporation)
- S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
- S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\VirusDefs\20141231.033\ENG64.SYS [129752 2014-11-02] (Symantec Corporation)
- S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\VirusDefs\20141231.033\EX64.SYS [2137304 2014-11-02] (Symantec Corporation)
- R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
- R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
- S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
- R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
- R0 SymDS; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
- R0 SymEFA; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
- R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-11-02] (Symantec Corporation)
- R1 SymIRON; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
- R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
- R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
- U0 vihlcevm; C:\Windows\System32\drivers\yehw.sys [79064 2015-08-10] (Malwarebytes Corporation)
- S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
- S3 MSICDSetup; \??\D:\CDriver64.sys [X]
- S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
- ==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
- ==================== Ein Monat: Erstellte Dateien und Ordner ========
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
- 2015-08-10 19:47 - 2015-08-10 19:47 - 00025821 _____ C:\Users\Admin 2\Downloads\FRST.txt
- 2015-08-10 19:46 - 2015-08-10 19:47 - 00000000 ____D C:\FRST
- 2015-08-10 19:45 - 2015-08-10 19:45 - 02171392 _____ (Farbar) C:\Users\Admin 2\Downloads\FRST64.exe
- 2015-08-10 17:21 - 2015-08-10 17:21 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\yehw.sys
- 2015-08-10 16:37 - 2015-08-10 16:37 - 00001946 _____ C:\Users\Admin 2\Desktop\MalWare.txt
- 2015-08-10 16:15 - 2015-08-10 16:17 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
- 2015-08-10 16:15 - 2015-08-10 16:15 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Admin 2\Downloads\mbam-setup-2.1.8.1057.exe
- 2015-08-10 16:15 - 2015-08-10 16:15 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
- 2015-08-10 16:15 - 2015-08-10 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
- 2015-08-10 16:15 - 2015-08-10 16:15 - 00000000 ____D C:\ProgramData\Malwarebytes
- 2015-08-10 16:15 - 2015-08-10 16:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
- 2015-08-10 16:15 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
- 2015-08-10 16:15 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
- 2015-08-10 16:15 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
- 2015-08-10 15:29 - 2015-08-10 15:29 - 00000000 ____D C:\Users\Admin 2\Downloads\Autoruns
- 2015-08-10 15:28 - 2015-08-10 15:28 - 00593693 _____ C:\Users\Admin 2\Downloads\Autoruns.zip
- 2015-08-06 13:54 - 2015-08-06 13:54 - 01293704 _____ (Mojang) C:\Users\Admin 2\Downloads\Minecraft.exe
- 2015-08-06 13:02 - 2015-08-06 13:02 - 00000000 ____D C:\Users\Admin 2\Tracing
- 2015-08-04 19:04 - 2015-08-04 19:04 - 00000000 _____ C:\Windows\SysWOW64\Access.dat
- 2015-08-04 15:46 - 2015-08-09 16:51 - 00000000 ____D C:\ProgramData\Tunngle
- 2015-08-04 15:46 - 2015-08-04 16:43 - 00000000 ____D C:\Users\Admin 2\AppData\Roaming\Tunngle
- 2015-08-04 15:46 - 2015-08-04 15:46 - 00000000 ____D C:\Users\Admin 2\Documents\Tunngle
- 2015-08-04 15:45 - 2015-08-04 15:47 - 00000000 ____D C:\Program Files (x86)\Tunngle
- 2015-08-04 15:45 - 2015-08-04 15:45 - 00000991 _____ C:\Users\Public\Desktop\Tunngle.lnk
- 2015-08-04 15:45 - 2015-08-04 15:45 - 00000000 ____D C:\Users\Public\Documents\Tunngle
- 2015-08-04 15:45 - 2015-08-04 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
- 2015-08-04 15:45 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
- 2015-08-03 01:48 - 2015-08-03 01:49 - 00000000 ____D C:\Program Files\Virtual Audio Cable
- 2015-08-03 01:48 - 2015-08-03 01:48 - 00110368 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
- 2015-08-03 01:48 - 2015-08-03 01:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
- 2015-08-02 23:22 - 2015-08-02 23:22 - 00000000 ____D C:\Windows\SysWOW64\Adobe
- 2015-07-31 11:10 - 2015-08-10 15:45 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
- 2015-07-30 20:38 - 2015-07-30 20:38 - 317204801 _____ C:\Windows\MEMORY.DMP
- 2015-07-30 20:38 - 2015-07-30 20:38 - 00352016 _____ C:\Windows\Minidump\073015-23727-01.dmp
- 2015-07-30 20:38 - 2015-07-30 20:38 - 00000000 ____D C:\Windows\Minidump
- 2015-07-29 17:49 - 2015-07-29 17:49 - 00000000 ____D C:\ProgramData\Sun
- 2015-07-29 17:49 - 2015-07-29 17:48 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
- 2015-07-29 17:48 - 2015-07-29 17:48 - 00000000 ____D C:\ProgramData\Oracle
- 2015-07-29 17:48 - 2015-07-29 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
- 2015-07-29 17:48 - 2015-07-29 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
- 2015-07-29 17:48 - 2015-07-29 17:48 - 00000000 ____D C:\Program Files\Java
- 2015-07-29 17:40 - 2015-07-29 17:41 - 00000000 ____D C:\Users\Admin 2\Desktop\.minecraft backup
- 2015-07-29 17:39 - 2015-07-29 17:44 - 00000000 ____D C:\Users\Admin 2\Desktop\Shader Install
- 2015-07-29 14:01 - 2015-07-29 14:00 - 00378154 _____ C:\Users\Admin 2\Desktop\ShadersMod-v2.4.12mc1.8.jar
- 2015-07-28 11:35 - 2015-07-25 20:07 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
- 2015-07-28 11:35 - 2015-07-25 20:04 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
- 2015-07-28 11:35 - 2015-07-25 20:04 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
- 2015-07-28 11:35 - 2015-07-25 20:03 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
- 2015-07-28 11:35 - 2015-07-25 20:03 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
- 2015-07-28 11:35 - 2015-07-25 20:03 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
- 2015-07-28 11:35 - 2015-07-25 20:03 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
- 2015-07-28 11:35 - 2015-07-25 19:55 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
- 2015-07-26 15:24 - 2015-07-26 15:24 - 00000000 ____D C:\Users\Admin 2\Downloads\runtime
- 2015-07-22 17:59 - 2015-07-22 17:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
- 2015-07-22 17:57 - 2015-07-22 17:57 - 00000000 ____D C:\Users\Admin 2\Documents\My Games
- 2015-07-22 17:56 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
- 2015-07-22 15:17 - 2015-07-22 15:17 - 00000000 ____D C:\Users\Admin 2\AppData\Local\CEF
- 2015-07-21 13:39 - 2015-07-15 05:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
- 2015-07-21 13:39 - 2015-07-15 05:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
- 2015-07-21 13:39 - 2015-07-15 05:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
- 2015-07-21 13:39 - 2015-07-15 05:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
- 2015-07-21 13:39 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
- 2015-07-21 13:39 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
- 2015-07-21 13:39 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
- 2015-07-21 13:39 - 2015-07-15 04:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
- 2015-07-21 13:39 - 2015-07-15 03:59 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
- 2015-07-21 13:39 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
- 2015-07-20 12:31 - 2015-07-27 20:01 - 00000040 _____ C:\Users\Admin 2\Desktop\da.txt
- 2015-07-19 16:02 - 2015-07-19 16:03 - 199027603 _____ C:\Users\Admin 2\Desktop\Antje.mp4
- 2015-07-19 15:52 - 2015-07-18 16:02 - 664253203 _____ C:\Users\Admin 2\Desktop\819.mp4
- 2015-07-15 13:04 - 2015-07-09 19:58 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
- 2015-07-15 13:04 - 2015-07-09 19:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
- 2015-07-15 13:04 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
- 2015-07-15 13:04 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
- 2015-07-15 13:04 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
- 2015-07-15 13:04 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
- 2015-07-15 13:04 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
- 2015-07-15 13:04 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
- 2015-07-15 13:04 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
- 2015-07-15 13:04 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
- 2015-07-15 13:04 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
- 2015-07-15 13:04 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
- 2015-07-15 13:04 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
- 2015-07-15 13:04 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
- 2015-07-15 13:04 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
- 2015-07-15 13:04 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
- 2015-07-15 13:04 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
- 2015-07-15 13:04 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
- 2015-07-15 13:04 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
- 2015-07-15 13:04 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
- 2015-07-15 13:04 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
- 2015-07-15 13:04 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
- 2015-07-15 13:04 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
- 2015-07-15 13:04 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
- 2015-07-15 13:04 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
- 2015-07-15 13:04 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
- 2015-07-15 13:04 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
- 2015-07-15 13:04 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
- 2015-07-15 13:04 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
- 2015-07-15 13:04 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
- 2015-07-15 13:04 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
- 2015-07-15 13:04 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
- 2015-07-15 13:04 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
- 2015-07-15 13:04 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
- 2015-07-15 13:04 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
- 2015-07-15 13:04 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
- 2015-07-15 13:04 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
- 2015-07-15 13:03 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
- 2015-07-15 13:03 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
- 2015-07-15 13:03 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
- 2015-07-15 13:03 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
- 2015-07-15 13:03 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
- 2015-07-15 13:03 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
- 2015-07-15 13:03 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
- 2015-07-15 13:03 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
- 2015-07-15 13:03 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
- 2015-07-15 13:03 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
- 2015-07-15 13:03 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
- 2015-07-15 13:03 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
- 2015-07-15 13:03 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
- 2015-07-15 13:03 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
- 2015-07-15 13:03 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
- 2015-07-15 13:03 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
- 2015-07-15 13:03 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
- 2015-07-15 13:03 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
- 2015-07-15 13:03 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
- 2015-07-15 13:03 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
- 2015-07-15 13:03 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
- 2015-07-15 13:03 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
- 2015-07-15 13:03 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
- 2015-07-15 13:03 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
- 2015-07-15 13:03 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
- 2015-07-15 13:03 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
- 2015-07-15 13:03 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
- 2015-07-15 13:03 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
- 2015-07-15 13:03 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
- 2015-07-15 13:03 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
- 2015-07-15 13:03 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
- 2015-07-15 13:03 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
- 2015-07-15 13:03 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
- 2015-07-15 13:03 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
- 2015-07-15 13:03 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
- 2015-07-15 13:03 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
- 2015-07-15 13:03 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
- 2015-07-15 13:03 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
- 2015-07-15 13:03 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
- 2015-07-15 13:03 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
- 2015-07-15 13:03 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
- 2015-07-15 13:03 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
- 2015-07-15 13:03 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
- 2015-07-15 13:03 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
- 2015-07-15 13:03 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
- 2015-07-15 13:03 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
- 2015-07-15 13:03 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
- 2015-07-15 13:03 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
- 2015-07-15 13:03 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
- 2015-07-15 13:03 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
- 2015-07-15 13:03 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
- 2015-07-15 13:03 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
- 2015-07-15 13:03 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
- 2015-07-15 13:03 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
- 2015-07-15 13:03 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
- 2015-07-15 13:03 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
- 2015-07-15 13:03 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
- 2015-07-15 13:03 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
- 2015-07-15 13:03 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
- 2015-07-15 13:03 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
- 2015-07-15 13:03 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
- 2015-07-15 13:03 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
- 2015-07-15 13:03 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
- 2015-07-15 13:03 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
- 2015-07-15 13:03 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
- 2015-07-15 13:03 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
- 2015-07-15 13:03 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
- 2015-07-15 13:03 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
- 2015-07-15 13:03 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
- 2015-07-15 13:03 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
- 2015-07-15 13:03 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
- 2015-07-15 13:03 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
- 2015-07-15 13:03 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
- 2015-07-15 13:03 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
- 2015-07-15 13:03 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
- 2015-07-15 13:03 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
- 2015-07-15 13:03 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
- 2015-07-15 13:03 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
- 2015-07-13 21:37 - 2015-07-13 22:15 - 118293617 _____ C:\Users\Admin 2\Desktop\kratschisucks.dem
- 2015-07-13 21:13 - 2015-07-13 21:13 - 00000000 ____D C:\Users\Public\Downloads\Norton
- 2015-07-13 18:31 - 2015-07-13 19:22 - 161741010 _____ C:\Users\Admin 2\Desktop\werdasliestisteincarl.dem
- ==================== Ein Monat: Geänderte Dateien und Ordner ========
- (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
- 2015-08-10 19:46 - 2014-11-25 17:14 - 00000000 ____D C:\Users\Admin 2\AppData\Roaming\Skype
- 2015-08-10 19:46 - 2014-11-02 00:31 - 00000000 ____D C:\Program Files (x86)\Steam
- 2015-08-10 19:45 - 2014-11-21 20:50 - 00000000 ____D C:\Users\Admin 2\AppData\Roaming\TS3Client
- 2015-08-10 18:59 - 2014-11-29 13:09 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
- 2015-08-10 18:52 - 2014-11-02 00:21 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- 2015-08-10 15:50 - 2009-07-14 06:45 - 00028720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2015-08-10 15:50 - 2009-07-14 06:45 - 00028720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2015-08-10 15:45 - 2014-11-01 23:49 - 01102079 _____ C:\Windows\WindowsUpdate.log
- 2015-08-10 15:42 - 2015-01-11 14:15 - 00000000 ____D C:\Users\Admin 2\AppData\Local\ESL Wire Game Client
- 2015-08-10 15:42 - 2014-11-02 00:21 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- 2015-08-10 15:42 - 2009-07-14 06:51 - 00066212 _____ C:\Windows\setupact.log
- 2015-08-10 15:41 - 2014-11-02 00:18 - 00000000 ____D C:\ProgramData\NVIDIA
- 2015-08-10 15:41 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
- 2015-08-09 20:21 - 2015-01-11 15:45 - 00000000 ____D C:\Users\Admin 2\Documents\ESL Match Media
- 2015-08-09 17:55 - 2015-02-22 17:59 - 00000000 ____D C:\Users\Admin 2\AppData\Roaming\.minecraft
- 2015-08-09 01:42 - 2015-06-20 20:13 - 00000000 ____D C:\Users\Admin 2\AppData\Roaming\OBS
- 2015-08-06 13:04 - 2015-04-19 09:40 - 00003856 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1429429238
- 2015-08-06 13:04 - 2015-04-19 09:40 - 00000000 ____D C:\Program Files (x86)\Opera
- 2015-08-06 13:02 - 2014-11-21 20:43 - 00000000 ____D C:\Users\Admin 2
- 2015-08-06 02:01 - 2014-11-02 00:16 - 01593956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
- 2015-08-06 02:01 - 2011-04-12 09:43 - 00699416 _____ C:\Windows\system32\perfh007.dat
- 2015-08-06 02:01 - 2011-04-12 09:43 - 00149556 _____ C:\Windows\system32\perfc007.dat
- 2015-08-06 02:01 - 2009-07-14 07:13 - 01593956 _____ C:\Windows\system32\PerfStringBackup.INI
- 2015-08-05 11:55 - 2014-11-02 00:22 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
- 2015-08-05 11:28 - 2014-11-23 15:24 - 00064408 _____ C:\Users\Admin 2\AppData\Local\GDIPFONTCACHEV1.DAT
- 2015-08-05 11:26 - 2009-07-14 06:45 - 00295360 _____ C:\Windows\system32\FNTCACHE.DAT
- 2015-08-04 20:05 - 2015-01-11 15:46 - 00092448 _____ (<Turtle Entertainment>) C:\Windows\system32\Drivers\ESLWireACD.sys
- 2015-08-02 14:47 - 2014-11-01 23:43 - 00000000 ____D C:\Windows\Panther
- 2015-08-02 14:43 - 2015-07-10 19:28 - 00000000 ___HD C:\$Windows.~BT
- 2015-07-31 21:27 - 2010-11-21 05:47 - 00379800 _____ C:\Windows\PFRO.log
- 2015-07-30 17:57 - 2014-12-13 19:55 - 00000000 ____D C:\Users\Admin 2\AppData\Local\CrashDumps
- 2015-07-30 12:15 - 2015-01-03 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
- 2015-07-30 12:15 - 2014-12-21 11:48 - 00000000 ____D C:\ProgramData\Package Cache
- 2015-07-28 23:16 - 2014-11-03 14:38 - 00000000 ___SD C:\Windows\system32\CompatTel
- 2015-07-28 19:39 - 2015-01-03 12:55 - 00162528 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
- 2015-07-28 19:39 - 2015-01-03 12:55 - 00141416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
- 2015-07-25 14:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
- 2015-07-25 10:16 - 2015-04-04 18:43 - 00000000 ___SD C:\Windows\system32\GWX
- 2015-07-22 17:56 - 2014-11-02 00:09 - 00101270 _____ C:\Windows\DirectX.log
- 2015-07-20 11:33 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
- 2015-07-19 00:31 - 2014-11-03 15:19 - 00000000 ___RD C:\Program Files (x86)\Skype
- 2015-07-19 00:31 - 2014-11-03 15:19 - 00000000 ____D C:\ProgramData\Skype
- 2015-07-17 13:38 - 2015-05-17 10:02 - 00000000 ____D C:\Users\Admin 2\Desktop\Images
- 2015-07-16 22:24 - 2015-04-04 18:43 - 00000000 ___SD C:\Windows\SysWOW64\GWX
- 2015-07-16 12:47 - 2014-11-02 00:21 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
- 2015-07-16 12:47 - 2014-11-02 00:21 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
- 2015-07-16 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
- 2015-07-16 12:42 - 2014-12-11 16:00 - 00000000 ____D C:\Windows\system32\appraiser
- 2015-07-15 20:06 - 2014-12-28 00:55 - 00000000 __SHD C:\Users\Admin 2\AppData\Local\EmieUserList
- 2015-07-15 20:06 - 2014-12-28 00:55 - 00000000 __SHD C:\Users\Admin 2\AppData\Local\EmieSiteList
- 2015-07-15 20:06 - 2014-12-28 00:55 - 00000000 __SHD C:\Users\Admin 2\AppData\Local\EmieBrowserModeList
- 2015-07-14 20:59 - 2014-11-29 13:09 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
- 2015-07-14 20:59 - 2014-11-29 13:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
- 2015-07-14 20:59 - 2014-11-29 13:09 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
- 2015-07-14 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
- 2015-07-13 21:14 - 2014-11-02 00:27 - 00000000 ____D C:\ProgramData\Norton
- ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
- 2015-06-22 17:44 - 2015-06-22 17:44 - 0000170 _____ () C:\Users\Admin 2\AppData\Roaming\fuckyounod32.vbs
- Einige Dateien in TEMP:
- ====================
- C:\Users\Admin\AppData\Local\Temp\avgnt.exe
- C:\Users\Admin\AppData\Local\Temp\devcon64.exe
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite10027.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite11996.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite12093.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite12151.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite14651.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite17312.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite19064.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite21022.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite25223.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite28695.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite32699.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite32767.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite41427.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite42957.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite51795.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite55164.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite55228.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite62468.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite70836.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite76429.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite76649.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite79102.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite82435.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite85728.dll
- C:\Users\Admin\AppData\Local\Temp\System.Data.SQLite98193.dll
- C:\Users\Admin\AppData\Local\Temp\uninstall.exe
- C:\Users\Admin 2\AppData\Local\Temp\avgnt.exe
- C:\Users\Admin 2\AppData\Local\Temp\EslWireSetup-1.18.0.8101-x64.exe
- C:\Users\Admin 2\AppData\Local\Temp\nvSCPAPI.dll
- C:\Users\Admin 2\AppData\Local\Temp\nvSCPAPI64.dll
- C:\Users\Admin 2\AppData\Local\Temp\nvStereoApiI.dll
- C:\Users\Admin 2\AppData\Local\Temp\nvStInst.exe
- C:\Users\Admin 2\AppData\Local\Temp\OpenOffice_4.1.1_Win_x86_install_de.exe
- C:\Users\Admin 2\AppData\Local\Temp\Quarantine.exe
- C:\Users\Admin 2\AppData\Local\Temp\SkypeSetup.exe
- C:\Users\Admin 2\AppData\Local\Temp\sqlite3.dll
- C:\Users\Admin 2\AppData\Local\Temp\vcredist_x64.exe
- ==================== Bamital & volsnap Check =================
- (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
- C:\Windows\system32\winlogon.exe => Datei ist digital signiert
- C:\Windows\system32\wininit.exe => Datei ist digital signiert
- C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
- C:\Windows\explorer.exe => Datei ist digital signiert
- C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
- C:\Windows\system32\svchost.exe => Datei ist digital signiert
- C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
- C:\Windows\system32\services.exe => Datei ist digital signiert
- C:\Windows\system32\User32.dll => Datei ist digital signiert
- C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
- C:\Windows\system32\userinit.exe => Datei ist digital signiert
- C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
- C:\Windows\system32\rpcss.dll => Datei ist digital signiert
- C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
- C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
- C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
- LastRegBack: 2015-08-05 15:15
- ==================== Ende von log ============================ [/SPOILER]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement