| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: DNS-Unlocker auf SteamWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
05.09.2015, 16:36
| #1 |
| |  DNS-Unlocker auf Steam Tag, ich habe ein Problem auf Steam... Undzwar habe ich den Adwarevirus DNS-Unlocker auf Steam drauf und dadurch ist Steam total langsam. Ich hab Steam mehrmals neu installiert, doch es hat nicht geholfen. Malwarebytes etc hab ich ebenfalls doppelt und dreifach durchlaufen lassen.. Was kann ich da tun? |
|
05.09.2015, 17:01
| #2 |
| /// the machine /// TB-Ausbilder    |  DNS-Unlocker auf Steam hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
05.09.2015, 19:02
| #3 |
| | Addition.txt FRST Additions Logfile:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:04-09-2015
durchgeführt von Justin (2015-09-05 19:48:59)
Gestartet von C:\Users\Justin\Downloads
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1863531418-2306248219-523254007-500 - Administrator - Disabled)
Gast (S-1-5-21-1863531418-2306248219-523254007-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1863531418-2306248219-523254007-1003 - Limited - Enabled)
Justin (S-1-5-21-1863531418-2306248219-523254007-1001 - Administrator - Enabled) => C:\Users\Justin
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.07.2004 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8101 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.3001 - Acer Incorporated)
ADB Driver (HKLM\...\{B61F9010-3474-11E4-8C21-0800200C9A66}) (Version: 1.0.0 - Invisibility Ltd)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Age of Empires III - Complete Collection (HKLM-x32\...\Age of Empires III - Complete Collection_is1) (Version: - )
Akamai NetSession Interface (HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Any Video Converter 5.6.2 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2004.0 - Acer Incorporated)
aTube Catcher Version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Combat Arms EU (HKLM-x32\...\Combat Arms EU) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
Eisenbahn.exe Professional 8.0 (HKLM-x32\...\{A0AD98BD-3F7E-4DB9-8053-B65FE270DF26}) (Version: 8.00.0000 - Trend)
Emergency4 (HKLM-x32\...\{9A4C534E-431F-4A17-97D4-D1682B19A054}) (Version: 1.03.001 - )
ERS Berlin (HKLM-x32\...\ERSBerlin_is1) (Version: 1.2.0.0 - ERS Berlin Team)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.2.0.1 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.0.1 Alpha - ETS2MP Team)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Feuer- und Notfallsimulation Wegberg Version 6.0 (HKLM-x32\...\{Wegberg-Modifikation-6-0}_is1) (Version: 6.0 - Marco H.)
Free YouTube to MP3 Converter version 3.12.59.616 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.59.616 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3355 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{93945D16-4C3D-433E-B7E4-3D0D86B284C8}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{6F173435-3F19-4043-BA3D-A46AA8472859}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL-Sprachdienst (HKLM-x32\...\{1D812D86-D8EF-41AC-A518-BA12E1913747}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{5A08C9D1-37AD-4A8D-90D3-33F92C578AA5}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{6F29F195-B11C-3EAD-B883-997BB29DFA17}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 für Windows Desktop - DEU (HKLM-x32\...\{31e4d2a5-b246-4c2d-a7fb-aee157c26b02}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{172423F9-522A-483A-AD65-03600CE4CA4F}) (Version: 9.7.0000 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 1.2.0 - Nexon)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.3 - Notepad++ Team)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.5.1 (HKLM-x32\...\OpenTTD) (Version: 1.5.1 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlanetSide 2 (HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\SOE-PlanetSide 2) (Version: 1.0.3.183 - Sony Online Entertainment)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.25 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.27041 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
RTS Wegberg Version 2.0 (HKLM-x32\...\{RTS-Wegberg-2-0}_is1) (Version: 2.0 - Marco H.)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
System Requirements Lab (HKLM-x32\...\{F89CDED6-B1F1-489F-BA44-698BF6A737C2}) (Version: 6.1.6.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{08738476-725B-407D-B1AC-207712EEDA37}) (Version: 6.1.6.0 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.39052 - TeamViewer)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Unity (HKLM-x32\...\Unity) (Version: 4.6.2f1 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
War Thunder Launcher 1.0.1.532 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Windows-Treiberpaket - Invisibility Ltd (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00005) (HKLM\...\943B64EAB64A25EAF8D3DAC07A3362A2C73C35D1) (Version: 08/27/2012 7.0.0000.00005 - Invisibility Ltd)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
World of Warships (HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1863531418-2306248219-523254007-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Justin\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1863531418-2306248219-523254007-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Justin\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1863531418-2306248219-523254007-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Justin\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1863531418-2306248219-523254007-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Justin\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
26-08-2015 02:37:00 Installiert The Sims 3
27-08-2015 20:56:27 AA11
31-08-2015 12:42:06 Windows Update
03-09-2015 17:35:44 Windows Update
05-09-2015 18:00:54 JRT Pre-Junkware Removal
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2015-08-25 21:08 - 00001150 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {27A31317-E7E1-4B33-9AB6-CE2E6B0C0D0F} - System32\Tasks\{FE635D53-940A-42C4-8B18-8349FE3909D9} => pcalua.exe -a "C:\Users\Justin\Desktop\chaosAD Keybinder\chaosAD Keybinder.exe" -d "C:\Users\Justin\Desktop\chaosAD Keybinder"
Task: {33FBB663-DECB-4A5C-8D6C-9C02A46FED2B} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {382D5D52-3894-49F6-AA65-3AB8653C3105} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {39F97378-9FE6-4A41-98E6-3F062E2ECBA8} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {50720C3A-A810-4CB8-B16C-7BBA0BDD5FA7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-08-13] (Microsoft Corporation)
Task: {518448C5-00E4-4FDA-B926-DACA91C7ACD2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {62F46A07-09A9-4EF5-8546-18CFE1D6C7BF} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files (x86)\CHIP Updater\CHIPUpdater.exe [2014-08-05] (CHIP)
Task: {8314CCA6-15B2-4F36-B787-E5511E1A70A7} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)
Task: {91EFF0A4-B424-47F4-BD5D-089C65A318DE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {A4B427BC-1CE5-40C7-8C0D-D7E3CA04F6C7} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1863531418-2306248219-523254007-1001UA => C:\Users\Justin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-06-04] (Facebook Inc.)
Task: {A66AB983-0F28-4C36-A07B-24809BA45804} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-1863531418-2306248219-523254007-1001
Task: {B3AAD479-A549-4B5A-9252-36E69E00F169} - System32\Tasks\{7B3188DE-06B9-49F7-8408-A8BE4F3086D5} => pcalua.exe -a "C:\Users\Justin\Desktop\Neuer Ordner (2)\Age Of Empires 3 All in One\AGE OF EMPIRES 3\autorun.exe" -d "C:\Users\Justin\Desktop\Neuer Ordner (2)\Age Of Empires 3 All in One\AGE OF EMPIRES 3"
Task: {C5CA51AE-1F7C-4F9B-A1B8-B1CDD326AB26} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1863531418-2306248219-523254007-1001Core => C:\Users\Justin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-06-04] (Facebook Inc.)
Task: {C8F654CF-4404-432F-8D11-C3881916EDCE} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-08-13] (Acer)
Task: {CBDFB962-266A-484B-AC87-53B38928994C} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-23] (Acer Incorporated)
Task: {CE4E985C-2A0B-4D7F-8427-3143897146F1} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-09] ()
Task: {E4D54591-FDA5-4730-9609-DF3E6FAAFE61} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-09-12] (Acer Incorporated)
Task: {E69671B0-598B-4F81-A1B4-7B8D746FB467} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1863531418-2306248219-523254007-1001Core.job => C:\Users\Justin\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1863531418-2306248219-523254007-1001UA.job => C:\Users\Justin\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2015-09-05 19:45 - 2015-09-05 19:45 - 01305416 _____ () C:\Users\Justin\AppData\Local\Temp\is-IK04M.tmp\RazerCortexSetup_6.1.10.0.tmp
2014-02-28 15:33 - 2015-08-05 15:13 - 00153576 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
2014-02-28 15:41 - 2015-08-05 15:13 - 00090088 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-02-28 15:41 - 2015-08-05 15:13 - 00103400 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-02-28 15:42 - 2015-08-05 15:13 - 00260072 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2015-07-01 21:39 - 2015-07-01 21:38 - 00433664 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\soundboard.dll
2015-07-17 14:37 - 2015-07-17 14:37 - 00271360 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\ssleay32.dll
2015-07-17 14:37 - 2015-07-17 14:37 - 01300992 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\LIBEAY32.dll
2015-09-05 17:41 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-09-05 17:41 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-09-05 17:41 - 2015-08-19 22:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll
2015-09-05 17:41 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-09-05 17:41 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-09-05 17:40 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-05 17:40 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-05 17:40 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-05 17:40 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-05 17:40 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-09-05 17:41 - 2015-08-19 22:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-09-05 17:41 - 2015-07-27 03:13 - 00171008 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-09-05 17:41 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\Users\Justin:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:NT
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:NT2
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2
AlternateDataStreams: C:\Users\Justin\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\Justin\Anwendungsdaten:NT
AlternateDataStreams: C:\Users\Justin\Anwendungsdaten:NT2
AlternateDataStreams: C:\Users\Justin\Cookies:gs5sys
AlternateDataStreams: C:\Users\Justin\Lokale Einstellungen:gs5sys
AlternateDataStreams: C:\Users\Justin\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Justin\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\Justin\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Justin\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Justin\AppData\Roaming:NT
AlternateDataStreams: C:\Users\Justin\AppData\Roaming:NT2
AlternateDataStreams: C:\Users\Justin\AppData\Roaming\Ubisoft:NT
AlternateDataStreams: C:\Users\Justin\AppData\Roaming\Ubisoft:NT2
AlternateDataStreams: C:\Users\Justin\AppData\Local\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\Justin\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\Justin\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\sony.com -> sony.com
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Justin\Downloads\11953153_837319946375204_6005182011364846832_n.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: GamesAppIntegrationService => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: NOBU => 3
MSCONFIG\Services: RichVideo64 => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: TuneUp.UtilitiesSvc => 2
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "Avira Systray"
HKLM\...\StartupApproved\Run32: => "Adobe Photo Downloader"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\StartupFolder: => "Facebook Desktop Login.EXE"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "Facebook Update"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "Clownfish"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\StartupApproved\Run: => "WarThunderLauncher"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{FBEC0E58-C1EB-4196-83AA-1C7013633EEC}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{F0F35B2B-F260-4202-A013-672749ECB444}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{6AB90FEA-1DDF-4DAE-A80E-06A86AB07B64}] => (Allow) D:\Crack\SimCity.exe
FirewallRules: [{9A8FC6FC-0DF0-478D-92C9-CD166CE65C70}] => (Allow) D:\Crack\SimCity.exe
FirewallRules: [{7904E351-87A5-4367-880C-8DB676AEDA56}] => (Allow) D:\Crack\SimCity.exe
FirewallRules: [{8112F682-16BB-4D23-832D-8BA45F0E8B66}] => (Allow) D:\Crack\SimCity.exe
FirewallRules: [{B505B659-61D0-4737-A0E1-A8BBEFF0209F}] => (Allow) C:\Program Files (x86)\SimCity\SimCity\SimCity.exe
FirewallRules: [{1CD5196D-C76B-4C9C-87F5-F7D42255766A}] => (Allow) C:\Program Files (x86)\SimCity\SimCity\SimCity.exe
FirewallRules: [{EAA68371-EEEB-43CC-8D58-D93B3C52F054}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{82193EEC-B28B-4559-B334-765F05E401CC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{C548E287-247E-4648-B404-23387C286681}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{05CC39B6-A6BF-4083-B190-51221B358483}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{470ECF2C-7285-407C-AAF7-AEF20A48A7A3}] => (Allow) C:\Users\Justin\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [TCP Query User{AF554B0A-A7D3-4D67-8365-8001FAA83A7B}C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe] => (Allow) C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe
FirewallRules: [UDP Query User{F6908763-9483-4AB1-9213-DF49BBD13994}C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe] => (Allow) C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe
FirewallRules: [{B50C9778-E592-447B-A9E8-B0376BF20531}] => (Allow) C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe
FirewallRules: [{D2FFEFCB-A8CB-493F-BCE8-6DCCA098A278}] => (Allow) C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe
FirewallRules: [TCP Query User{2561D6E7-DAE5-4501-A4F9-37525C48BEC6}C:\users\justin\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\justin\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{B861D7AE-937B-47FA-94D8-4CD1C851BCE8}C:\users\justin\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\justin\appdata\local\akamai\netsession_win.exe
FirewallRules: [{91937A75-F7E4-4C9F-B430-2D7C0838ABB3}] => (Block) C:\users\justin\appdata\local\akamai\netsession_win.exe
FirewallRules: [{F1AC5CD7-2B6D-43EE-8EB5-E2AF4FD86ABB}] => (Block) C:\users\justin\appdata\local\akamai\netsession_win.exe
FirewallRules: [{FA01546E-42DD-432B-A334-CF334CBDA67F}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{59F3B5D4-7A37-4068-83A0-E24525F6A1F6}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{C95476EC-1D39-4E79-8E7D-C3FF27A109D1}] => (Allow) C:\Users\Justin\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{984E34FA-8624-4599-B49B-8912D0D06962}C:\users\justin\desktop\spiele\hacktools\bruteforce\server\bfs.exe] => (Allow) C:\users\justin\desktop\spiele\hacktools\bruteforce\server\bfs.exe
FirewallRules: [UDP Query User{2D22041D-E692-4477-8AB5-41CB96B11CB2}C:\users\justin\desktop\spiele\hacktools\bruteforce\server\bfs.exe] => (Allow) C:\users\justin\desktop\spiele\hacktools\bruteforce\server\bfs.exe
FirewallRules: [{0BF264B5-2ADF-4D22-A468-6BDB90C0ABAE}] => (Block) C:\users\justin\desktop\spiele\hacktools\bruteforce\server\bfs.exe
FirewallRules: [{BD62DE12-C2D1-45AC-A8E4-4BFEF7AEA1C0}] => (Block) C:\users\justin\desktop\spiele\hacktools\bruteforce\server\bfs.exe
FirewallRules: [{0237D86F-0006-4EF5-995E-AD8E94208B41}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{C63C3B6E-9A29-4B5B-A1B8-B868DE533B97}C:\program files (x86)\unity\editor\unity.exe] => (Allow) C:\program files (x86)\unity\editor\unity.exe
FirewallRules: [UDP Query User{EFA98D79-27AD-4863-8093-CD9A2A1553AC}C:\program files (x86)\unity\editor\unity.exe] => (Allow) C:\program files (x86)\unity\editor\unity.exe
FirewallRules: [{78D2772E-4D36-43FD-BA63-74097C638928}] => (Block) C:\program files (x86)\unity\editor\unity.exe
FirewallRules: [{F434D9A2-E73E-49ED-9282-E038214B2660}] => (Block) C:\program files (x86)\unity\editor\unity.exe
FirewallRules: [{165877FC-C3F5-412F-81BA-BF5C61D6268D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9A57AEB0-4CBC-424E-9C4F-8E3C29AFDAFB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{36A77661-A310-486A-982A-D73AFD18517E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4597337F-7CA0-43FF-A94E-246C0218D4D2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5D77C1BD-5671-4197-A78F-8855C7FD8211}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{C376DBF1-F9C9-4012-9720-21955233DAFD}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [TCP Query User{163703D3-2605-4EE0-9151-2D518C16B904}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{58A72814-4DB7-422C-838E-415FB3673A7A}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [{7DCF2903-818B-484E-81D1-2AF4A588C53D}] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [{F58F65D1-1BA2-4607-956C-EE7A0F8D44BE}] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{33CFBA1F-47DB-4CFA-A764-96DB90016CAA}C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe] => (Block) C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe
FirewallRules: [UDP Query User{AF394D5E-51A4-4C91-8EDA-59CB275F4D26}C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe] => (Block) C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe
FirewallRules: [{9DF9EA35-0AE6-4411-86F4-25531BE36CDA}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{8D151BFE-722B-479E-A011-7EEDBE12D65B}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{90D7FC16-43BF-49EB-AF8C-1291FFDA865F}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{B62E475C-C62A-4F0B-8FBE-5BEE9EB38DB5}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{8957F4B2-CA69-4004-88EE-EB69329EBF6F}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{891E830C-9388-4DF1-9B23-B84551182C29}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{7B876E3E-561D-4DFB-A01F-F8D443BD626B}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{2D30562E-0843-4DF1-A7AC-E76502164B62}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [TCP Query User{68610146-E7FF-41C0-9DFF-FCBE12050DE4}C:\warthunder\aces.exe] => (Allow) C:\warthunder\aces.exe
FirewallRules: [UDP Query User{2ACA31BD-DD12-48DA-96C6-E80A69CC66E7}C:\warthunder\aces.exe] => (Allow) C:\warthunder\aces.exe
FirewallRules: [{7B31194C-15A2-4446-BA5A-FD1FD43557B9}] => (Block) C:\warthunder\aces.exe
FirewallRules: [{0FEF3C18-1A8E-4E53-9ED9-16FC874C3B17}] => (Block) C:\warthunder\aces.exe
FirewallRules: [TCP Query User{09A23C44-3B3B-4FF8-B6BF-7FC4261A3B11}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{84D50C7A-1E80-4461-B44F-E7B6A541DCA1}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{0BF57D82-A67B-4192-A447-A81F11FEC4B2}] => (Allow) C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe
FirewallRules: [{1D1DC4A9-0DE3-4FC8-93AE-6AB5ECAC6CF8}] => (Allow) C:\program files (x86)\sixteen tons entertainment\emergency4\em4.exe
FirewallRules: [TCP Query User{E432DE8F-F476-45C6-8EA4-10388DDC9D25}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{0ADA483B-DB8C-48E0-87ED-279ED9407691}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{55F33936-D172-4A7B-BAC4-010A686E679C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{010D6C25-9342-4DF8-84C6-DC9AF47798DD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8BEC726E-B70F-4A69-9F48-37D74ECD94DE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{631DE67C-6E8A-44DC-8A60-FDEC45126145}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{E1C606EC-1C28-4129-9544-75BB74426482}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{136B6025-AFDA-43A2-8AAB-825732B918B3}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{47083E2B-D26F-473C-B2BD-23105A584541}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe
FirewallRules: [{B647A8EE-8218-47BE-BD65-E548B014216E}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe
FirewallRules: [TCP Query User{95300D54-F871-4550-9172-1AAA8D58FD3D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9F841980-5831-4E56-944A-CA9B3037C594}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EEC91AA1-0EFB-499E-A8A7-8305665F3E7B}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{5D9F32B8-0F10-47A6-80C2-67257DB31FEE}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{79E869B6-5508-4F69-A07E-DB02C87B9946}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{1B5602BE-49FF-4085-89F4-AACD5FE8016B}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{5B7EA5A2-BC8E-4BDD-879E-5BBAAF81E256}] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{88F80848-2589-44C4-A28D-DB29A95C9BFB}] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{1C1254FF-BEB4-4AAE-B772-3BCDB352341D}C:\program files\openttd\openttd.exe] => (Allow) C:\program files\openttd\openttd.exe
FirewallRules: [UDP Query User{E08DF0F8-62C5-4533-BABE-E6F10C642FDA}C:\program files\openttd\openttd.exe] => (Allow) C:\program files\openttd\openttd.exe
FirewallRules: [{29B64460-95EF-436D-A125-98373EB8F5D5}] => (Block) C:\program files\openttd\openttd.exe
FirewallRules: [{F7DC2384-4CAC-4B1B-B49F-A09C5A89E590}] => (Block) C:\program files\openttd\openttd.exe
FirewallRules: [{32BC8B00-4BF9-4EC8-8B81-9FAE376F726C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{240280BB-773A-45AE-900A-C2801EAD5ABD}C:\program files (x86)\teamspeak 3 client\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) C:\program files (x86)\teamspeak 3 client\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [UDP Query User{1BCF5DCF-3659-4811-A74D-439578563EAF}C:\program files (x86)\teamspeak 3 client\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) C:\program files (x86)\teamspeak 3 client\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{680F4D40-F924-4E5C-B5E4-4CBD110A4EE8}] => (Block) C:\program files (x86)\teamspeak 3 client\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{9DC06679-BE15-4C62-90F3-B08234B8EFE4}] => (Block) C:\program files (x86)\teamspeak 3 client\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{FE74E055-6967-47EC-9F61-13CF34AED68C}] => (Allow) C:\Program Files (x86)\Steam2\Steam.exe
FirewallRules: [{CBB7CCFD-EDC9-4329-86B3-18236E931D70}] => (Allow) C:\Program Files (x86)\Steam2\Steam.exe
FirewallRules: [{1F45F911-F8AD-43E9-A400-5D7D6B19316B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{486C2F32-616F-4530-9C20-13B7C75543B9}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{BFD6D9D2-1ABC-4934-888A-BBE20E66244E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{FB31A8DA-2D0B-4D43-AFDF-F8812C8BD38B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{F0A7172F-32EA-4ADF-9094-614F1A762235}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{673F0D02-9D05-4EB5-B451-F59FD157D287}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/05/2015 07:11:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 760
Startzeit: 01d0e7fd35a453ef
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 28990bb4-53f1-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 05:41:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: cfc
Startzeit: 01d0e7f0a24dca98
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 95f43a9b-53e4-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 04:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: fb0
Startzeit: 01d0e7e8408ad496
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 3417dc3d-53dc-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 04:25:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
Error: (09/05/2015 03:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1efc
Startzeit: 01d0e7dfdec3e939
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: d24b3d95-53d3-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 02:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 12f4
Startzeit: 01d0e7d77d00f2ce
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 708a8e42-53cb-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 01:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1b74
Startzeit: 01d0e7cf1b3a8716
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 0ec0f0f2-53c3-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 01:05:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 18f4
Startzeit: 01d0e7ca1ac71c4c
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 0e4a307e-53be-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 12:31:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 11ec
Startzeit: 01d0e7c541e0b22d
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 35622110-53b9-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 11:32:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1180
Startzeit: 01d0e7bd00b0b7fe
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: f4370040-53b0-11e5-8294-40f02fae1676
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Systemfehler:
=============
Error: (09/05/2015 07:07:40 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: In der Dateisystemstruktur auf Volume "Acer" wurde eine Beschädigung erkannt.
Die Masterdateitabelle (MFT) beinhaltet einen beschädigten Dateidatensatz. Die Dateireferenznummer ist 0x30000000a84b0. Der Name der Datei ist "<Dateiname kann nicht bestimmt werden>".
Error: (09/05/2015 07:07:37 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: In der Dateisystemstruktur auf Volume "Acer" wurde eine Beschädigung erkannt.
Die Masterdateitabelle (MFT) beinhaltet einen beschädigten Dateidatensatz. Die Dateireferenznummer ist 0x2400000005b93d. Der Name der Datei ist "<Dateiname kann nicht bestimmt werden>".
Error: (09/05/2015 07:07:36 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: In der Dateisystemstruktur auf Volume "Acer" wurde eine Beschädigung erkannt.
Die Masterdateitabelle (MFT) beinhaltet einen beschädigten Dateidatensatz. Die Dateireferenznummer ist 0x2000000005203. Der Name der Datei ist "<Dateiname kann nicht bestimmt werden>".
Error: (09/05/2015 07:07:35 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: In der Dateisystemstruktur auf Volume "Acer" wurde eine Beschädigung erkannt.
Die Masterdateitabelle (MFT) beinhaltet einen beschädigten Dateidatensatz. Die Dateireferenznummer ist 0x1800000003f82f. Der Name der Datei ist "<Dateiname kann nicht bestimmt werden>".
Error: (09/05/2015 06:35:50 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: In der Dateisystemstruktur auf Volume "Acer" wurde eine Beschädigung erkannt.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (09/05/2015 06:03:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/05/2015 06:02:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/05/2015 06:02:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "ePower Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/05/2015 06:02:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "LogMeIn Hamachi Tunneling Engine" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/05/2015 06:02:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "McAfee Firewall Core Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Microsoft Office:
=========================
Error: (09/05/2015 07:11:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2091176001d0e7fd35a453ef4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe28990bb4-53f1-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 05:41:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20911cfc01d0e7f0a24dca984294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe95f43a9b-53e4-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 04:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20911fb001d0e7e8408ad4964294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe3417dc3d-53dc-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 04:25:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\Justin\Downloads\esetsmartinstaller_deu.exe
Error: (09/05/2015 03:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.209111efc01d0e7dfdec3e9394294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exed24b3d95-53d3-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 02:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2091112f401d0e7d77d00f2ce4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe708a8e42-53cb-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 01:41:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.209111b7401d0e7cf1b3a87164294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe0ec0f0f2-53c3-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 01:05:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2091118f401d0e7ca1ac71c4c4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe0e4a307e-53be-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 12:31:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2091111ec01d0e7c541e0b22d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe35622110-53b9-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (09/05/2015 11:32:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20911118001d0e7bd00b0b7fe4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exef4370040-53b0-11e5-8294-40f02fae1676microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
CodeIntegrity:
===================================
Date: 2015-09-05 11:06:30.602
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:29.528
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:28.460
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:27.319
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:26.256
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:25.184
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:24.063
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:22.965
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:21.814
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 11:06:16.752
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU N3520 @ 2.16GHz
Prozentuale Nutzung des RAM: 46%
Installierter physikalischer RAM: 3979.34 MB
Verfügbarer physikalischer RAM: 2141.58 MB
Summe virtueller Speicher: 9979.34 MB
Verfügbarer virtueller Speicher: 7706.53 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:447.69 GB) (Free:256.05 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 17FFD8D5)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
05.09.2015, 19:03
| #4 |
| | DNS-Unlocker auf SteamFRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:04-09-2015
durchgeführt von Justin (Administrator) auf JUSTINPC (05-09-2015 19:46:02)
Gestartet von C:\Users\Justin\Downloads
Geladene Profile: Justin (Verfügbare Profile: Justin)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Chip Digital GmbH) C:\Users\Justin\AppData\Local\Temp\DMR\dmr_72.exe
(Razer Inc. ) C:\Users\Justin\AppData\Local\Temp\DMR\Downloads\fc14996dfa99adfc7baae624196888c5\69b7109efb3fa7c5aefe146e7d86f62a\RazerCortexSetup_6.1.10.0.exe
() C:\Users\Justin\AppData\Local\Temp\is-IK04M.tmp\RazerCortexSetup_6.1.10.0.tmp
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (Der Dateneintrag hat 36 mehr Zeichen).
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Atheros Communications)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Run: [Facebook Update] => C:\Users\Justin\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-06-04] (Facebook Inc.)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Justin\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Run: [WarThunderLauncher] => C:\WarThunder\launcher.exe [6043696 2015-08-13] (Gaijin Entertainment)
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
GroupPolicy: Gruppenrichtline auf Chrome erkannt <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
Tcpip\..\Interfaces\{C3F84BD2-BA9E-4F3A-853C-B685F9E07C9A}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{E00E9F21-1351-41A3-9867-5A9A604CFCF8}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-21-1863531418-2306248219-523254007-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FireFox:
========
FF ProfilePath: C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\mmsbHyyA.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-15] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-08-10] (Nexon)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin HKU\S-1-5-21-1863531418-2306248219-523254007-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Justin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1863531418-2306248219-523254007-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Justin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-11] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\mmsbHyyA.default\searchplugins\google-images.xml [2015-08-06]
FF SearchPlugin: C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\mmsbHyyA.default\searchplugins\google-maps.xml [2015-08-06]
Chrome:
=======
CHR Profile: C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-19]
CHR Extension: (Google Docs) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-19]
CHR Extension: (Google Drive) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-19]
CHR Extension: (YouTube) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-19]
CHR Extension: (Google Search) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-19]
CHR Extension: (Google Sheets) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-19]
CHR Extension: (Avira Browser Safety) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-10-19]
CHR Extension: (Google Docs Offline) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-19]
CHR Extension: (Gmail) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
S2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-26] (Disc Soft Ltd)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-02] (Acer Incorporate)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-07-31] (Electronic Arts)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-12-13] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5436176 2015-02-17] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-12-24] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30352 2015-03-15] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
U0 ebwoeg; C:\Windows\System32\drivers\tafcr.sys [79064 2015-09-01] (Malwarebytes Corporation)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-23] (REALiX(tm))
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)
S3 MotioninJoyXFilter; C:\Windows\System32\drivers\MijXfilt.sys [121416 2012-05-12] (MotioninJoy) [Datei ist nicht signiert]
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-01] (Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 avchv; \SystemRoot\system32\DRIVERS\avchv.sys [X]
S3 cpuz136; \??\C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S1 fkriiyys; \??\C:\Windows\system32\drivers\fkriiyys.sys [X]
R4 gzflt; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.98.0\gzflt.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-05 19:46 - 2015-09-05 19:47 - 00017308 _____ C:\Users\Justin\Downloads\FRST.txt
2015-09-05 19:45 - 2015-09-05 19:46 - 00000000 ____D C:\FRST
2015-09-05 19:45 - 2015-09-05 19:45 - 02188800 _____ (Farbar) C:\Users\Justin\Downloads\FRST64.exe
2015-09-05 19:42 - 2015-09-05 19:42 - 01162528 _____ C:\Users\Justin\Downloads\Razer Cortex Game Booster - CHIP-Installer.exe
2015-09-05 18:17 - 2015-09-05 18:34 - 00000000 ____D C:\Users\Justin\Documents\ETS2MP
2015-09-05 18:17 - 2015-09-05 18:17 - 00001165 _____ C:\Users\Public\Desktop\Play Euro Truck Simulator 2 Multiplayer.lnk
2015-09-05 18:17 - 2015-09-05 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Multiplayer
2015-09-05 18:17 - 2015-09-05 18:17 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2 Multiplayer
2015-09-05 18:10 - 2015-09-05 18:10 - 13258804 _____ C:\Users\Justin\Downloads\ets2mp_20100.zip
2015-09-05 17:59 - 2015-09-05 17:59 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Justin\Desktop\JRT_7600.exe
2015-09-05 17:38 - 2015-09-05 18:32 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-05 17:38 - 2015-09-05 17:38 - 00000939 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-05 17:38 - 2015-09-05 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-05 17:32 - 2015-09-05 17:32 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2
2015-09-05 13:31 - 2015-09-05 13:31 - 00000000 ____D C:\Users\Justin\AppData\Roaming\KY-Programming
2015-09-05 13:25 - 2015-09-05 13:36 - 00000000 ____D C:\Program Files (x86)\KY-Programming
2015-09-05 13:25 - 2015-09-05 13:25 - 01887095 _____ (KY-Programming ) C:\Users\Justin\Downloads\sindheim_setup.exe
2015-09-05 01:53 - 2015-09-05 01:53 - 04523781 _____ C:\Users\Justin\Downloads\teamspeak3-server_win64-3.0.11.4.zip
2015-09-05 01:28 - 2015-09-05 01:28 - 00014670 _____ C:\Users\Justin\Downloads\Feuerwehr.zip
2015-09-05 01:24 - 2015-09-05 01:24 - 00117037 _____ C:\Users\Justin\Downloads\icon.rar
2015-09-01 16:03 - 2015-09-01 16:03 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\tafcr.sys
2015-09-01 16:03 - 2015-09-01 16:03 - 00001207 _____ C:\Viren.txt
2015-09-01 14:41 - 2015-09-01 14:41 - 00000000 ____D C:\750779b487bde38ea91c655f2833
2015-09-01 14:40 - 2015-09-01 14:41 - 00000000 ____D C:\860962ef6ac0024c945d2bcd4bd6f8
2015-08-31 21:03 - 2015-08-31 21:03 - 407616992 _____ C:\Users\Justin\Downloads\Manchester Mod SINGLEPLAYER.zip
2015-08-31 16:38 - 2015-08-31 16:38 - 00003503 _____ C:\Users\Justin\Downloads\CORONA_UPDATE.rar
2015-08-31 15:55 - 2015-08-31 15:56 - 712666797 _____ C:\Users\Justin\Downloads\Mayberry Mod V1.5.zip
2015-08-28 15:20 - 2015-08-28 15:20 - 83200533 _____ C:\Users\Justin\Downloads\Los_Angeles_Mod_v2-5_By_Hoppah.zip
2015-08-28 00:04 - 2015-08-28 00:04 - 04862328 _____ C:\Users\Justin\Downloads\MTS_Navetsea_1302985_navetseaF-INTS3MTSvglamnondefault.7z
2015-08-28 00:03 - 2015-08-28 00:03 - 05536618 _____ C:\Users\Justin\Downloads\MTS_Navetsea_1302994_navetseaF-INTS3MTSvdefault.7z
2015-08-27 23:38 - 2015-08-27 23:38 - 00000017 _____ C:\ProgramData\adaware-installer-reboot-required.tmp
2015-08-27 23:16 - 2015-08-27 23:16 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-27 23:13 - 2015-08-27 23:13 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Justin\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-27 23:00 - 2015-08-27 23:00 - 01553695 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63(1).zip
2015-08-27 21:05 - 2015-08-27 21:05 - 00679936 _____ C:\Users\Justin\Downloads\Detection.msi
2015-08-27 21:02 - 2015-08-27 21:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-08-27 20:58 - 2015-08-27 20:58 - 00033792 ___SH C:\Users\Justin\Desktop\Thumbs.db
2015-08-27 20:56 - 2015-08-27 20:56 - 00000000 ____D C:\ProgramData\Lavasoft
2015-08-27 20:55 - 2015-08-27 20:56 - 02024048 _____ C:\Users\Justin\Downloads\AdAware117WebInstaller.exe
2015-08-27 19:13 - 2015-09-05 16:14 - 00204800 ___SH C:\Users\Justin\Downloads\Thumbs.db
2015-08-27 16:39 - 2015-08-27 16:39 - 02870984 _____ (ESET) C:\Users\Justin\Downloads\esetsmartinstaller_deu.exe
2015-08-27 16:39 - 2015-08-27 16:39 - 00000000 ____D C:\Program Files (x86)\ESET
2015-08-27 16:07 - 2015-08-27 16:34 - 00000000 ____D C:\ProgramData\RogueKiller
2015-08-27 16:07 - 2015-08-27 16:07 - 22720584 _____ C:\Users\Justin\Downloads\RogueKillerX64.exe
2015-08-27 16:07 - 2015-08-27 16:07 - 00037624 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-08-27 15:58 - 2015-08-27 15:58 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Justin\Downloads\sh-remover.exe
2015-08-27 15:49 - 2015-08-27 15:49 - 01476720 _____ C:\Users\Justin\Downloads\SteamSetup.exe
2015-08-27 00:22 - 2015-08-27 00:22 - 01553695 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2015-08-27 00:22 - 2015-08-27 00:22 - 01407606 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1387494_velocitygrass_nomosaic_1_57.zip
2015-08-27 00:22 - 2015-08-27 00:22 - 01401222 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1369833_velocitygrass_nomosaic_1_55.zip
2015-08-27 00:21 - 2015-08-27 00:22 - 01298081 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1346860_velocitygrass_nomosaic_1_50.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 01231074 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1331634_velocitygrass_nomosaic_1_42.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00988546 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1320544_velocitygrass_nomosaic_1_38.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00829340 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1307359_velocitygrass_nomosaic_1_36.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00829318 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1298354_velocitygrass_nomosaic_1_34.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00814316 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1277031_velocitygrass_nomosaic_1_31.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00696341 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1240826_velocitygrass_nomosaic_1_26.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00597157 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1217403_velocitygrass_nomosaic_1_24.zip
2015-08-27 00:21 - 2015-08-27 00:21 - 00596131 _____ C:\Users\Justin\Downloads\MTS_velocitygrass_1222101_velocitygrass_nomosaic_1_22.zip
2015-08-26 22:52 - 2015-08-26 22:54 - 145530222 _____ C:\Users\Justin\Downloads\Kiefersfelden 1.2.2.e4mod
2015-08-26 15:47 - 2015-08-26 16:03 - 00000000 ____D C:\ProgramData\BDLogging
2015-08-26 15:47 - 2015-08-26 15:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-08-26 15:47 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2015-08-26 15:45 - 2015-08-26 15:45 - 00465015 _____ C:\Users\Justin\Downloads\Keybinder.rar
2015-08-26 15:45 - 2015-08-12 22:51 - 00474112 _____ C:\Users\Justin\Desktop\Keybinder.exe
2015-08-26 15:36 - 2015-08-27 21:31 - 00000000 ____D C:\Program Files\Bitdefender
2015-08-26 15:34 - 2015-08-26 15:34 - 02868488 _____ C:\Users\Justin\Downloads\bitdefender_antivirus.exe
2015-08-26 02:40 - 2015-08-26 02:40 - 00000000 ____D C:\Users\Justin\Documents\Electronic Arts
2015-08-26 02:38 - 2015-08-26 02:38 - 00002284 _____ C:\Users\Public\Desktop\Die*Sims™*3.lnk
2015-08-26 02:38 - 2015-08-26 02:36 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2015-08-26 00:44 - 2015-09-02 14:00 - 00002159 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-26 00:44 - 2015-08-26 00:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-26 00:43 - 2015-09-05 18:57 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-26 00:43 - 2015-09-05 10:24 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-26 00:43 - 2015-08-27 23:52 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-26 00:43 - 2015-08-27 23:52 - 00003872 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-25 22:13 - 2015-08-25 22:15 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-08-25 22:13 - 2015-08-25 22:15 - 00000000 ____D C:\Windows\system32\vbox
2015-08-25 21:10 - 2015-08-27 21:31 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-25 21:04 - 2015-08-26 21:20 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-08-23 23:01 - 2015-08-23 23:01 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2015-08-23 22:48 - 2015-08-24 12:58 - 00000000 ____D C:\Users\Justin\Desktop\Neuer Ordner
2015-08-21 23:27 - 2015-08-21 23:28 - 00017571 _____ C:\Windows\DirectX.log
2015-08-21 14:44 - 2015-08-25 14:46 - 00000000 ____D C:\Program Files (x86)\TailCutter
2015-08-21 14:41 - 2015-08-21 14:41 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2015-08-21 14:34 - 2015-08-25 14:46 - 00000000 ____D C:\Program Files (x86)\SystemAid
2015-08-20 22:15 - 2015-08-20 23:02 - 00000000 ____D C:\Program Files (x86)\Train Fever
2015-08-20 14:21 - 2015-09-01 16:05 - 00000850 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2015-08-20 14:21 - 2015-08-21 20:18 - 00000000 ____D C:\Users\Justin\Documents\OpenTTD
2015-08-20 14:21 - 2015-08-20 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2015-08-20 14:20 - 2015-08-20 14:21 - 00000000 ____D C:\Program Files\OpenTTD
2015-08-20 14:05 - 2015-08-21 14:42 - 00000000 ____D C:\Users\Justin\AppData\Local\Loksim3D
2015-08-20 14:04 - 2015-08-21 14:42 - 00000000 ____D C:\Users\Public\Documents\Loksim3D
2015-08-19 12:35 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-19 12:35 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-18 12:06 - 2015-08-18 12:06 - 00003334 _____ C:\Windows\System32\Tasks\AcerCloud
2015-08-16 18:36 - 2015-09-01 16:05 - 00001132 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-08-16 18:36 - 2015-08-16 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-08-14 23:11 - 2015-08-14 23:11 - 00000000 ____D C:\Users\Justin\Tracing
2015-08-14 23:09 - 2015-09-01 16:05 - 00002709 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-14 23:09 - 2015-08-14 23:09 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-14 23:09 - 2015-08-14 23:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-12 17:02 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:02 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 13:19 - 2015-07-19 03:58 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-12 13:19 - 2015-07-18 20:51 - 03704320 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-12 13:19 - 2015-07-18 20:31 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-12 13:19 - 2015-07-18 20:31 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-12 13:19 - 2015-07-18 20:31 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-12 13:19 - 2015-07-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-08-12 13:19 - 2015-07-18 20:29 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-12 13:19 - 2015-07-18 20:29 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-12 13:19 - 2015-07-18 20:28 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-12 13:19 - 2015-07-18 20:12 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-12 13:19 - 2015-07-18 20:10 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-12 13:19 - 2015-07-18 20:09 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-12 13:17 - 2015-06-09 20:27 - 00411133 _____ C:\Windows\system32\ApnDatabase.xml
2015-08-12 13:16 - 2015-07-16 02:29 - 07458648 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-12 13:16 - 2015-07-16 02:29 - 01735000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-12 13:16 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 13:16 - 2015-07-16 02:28 - 01499920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-12 13:16 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-12 13:14 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-12 13:14 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-12 13:14 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-12 13:14 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-12 13:14 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-12 13:14 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-12 13:14 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-12 13:14 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-12 13:14 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-12 13:14 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-12 13:14 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-12 13:14 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-12 13:14 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-12 13:14 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-08-12 13:14 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-12 13:14 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-12 13:14 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-12 13:14 - 2015-07-16 21:45 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-08-12 13:14 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-12 13:14 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-12 13:14 - 2015-07-16 21:38 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-08-12 13:14 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-12 13:14 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-12 13:14 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-12 13:14 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-08-12 13:14 - 2015-07-16 21:13 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-08-12 13:14 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-12 13:14 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-12 13:14 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-12 13:14 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-12 13:14 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-12 13:14 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-08-12 13:14 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-12 13:14 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-12 13:14 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-12 13:14 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-12 13:14 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-08-12 13:14 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-08-12 13:14 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-08-12 13:14 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 13:14 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-12 13:14 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-12 13:14 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-12 13:14 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-08-12 13:14 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-08-12 13:09 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-08-12 13:09 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-08-12 13:09 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-08-12 13:09 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-12 13:09 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 13:09 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 13:09 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 13:09 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-12 13:09 - 2015-05-12 02:24 - 00536920 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-12 13:08 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 13:08 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 13:08 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-12 13:08 - 2015-07-24 20:57 - 04177408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-12 13:08 - 2015-07-24 20:57 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-12 13:08 - 2015-07-24 20:52 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-12 13:08 - 2015-07-24 19:27 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-12 13:08 - 2015-07-24 19:23 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-12 13:08 - 2015-07-14 05:22 - 02529880 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-12 13:08 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-12 13:08 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-12 13:08 - 2015-07-10 19:42 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-12 13:08 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-12 13:08 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 13:08 - 2015-07-10 18:47 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-12 13:08 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-12 13:08 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-12 13:08 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-11 00:16 - 2015-08-11 00:16 - 00000000 ____D C:\Users\Justin\Documents\AdobeStockPhotos
2015-08-11 00:10 - 2015-08-11 00:10 - 00000000 ____D C:\Users\Justin\Documents\Adobe
2015-08-11 00:00 - 2015-08-11 00:00 - 00000000 ____D C:\Users\Public\Documents\Adobe PDF
2015-08-10 23:51 - 2015-08-21 15:03 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-10 18:09 - 2015-08-10 18:09 - 00000000 ____D C:\ProgramData\Nexon
2015-08-10 17:36 - 2015-09-01 16:05 - 00001640 _____ C:\Users\Public\Desktop\Combat Arms EU.lnk
2015-08-10 17:36 - 2015-08-10 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2015-08-10 16:54 - 2015-08-16 23:02 - 00000000 ____D C:\Users\Justin\AppData\Local\NXEPassportClient
2015-08-10 16:19 - 2015-08-10 18:09 - 00000000 ____D C:\ProgramData\NexonEU
2015-08-10 16:17 - 2015-08-10 17:28 - 00000000 ____D C:\Nexon
2015-08-10 16:16 - 2015-08-10 17:00 - 00000000 ____D C:\Users\Justin\AppData\Local\NexonLauncher
2015-08-10 16:15 - 2015-08-10 16:17 - 00000000 ____D C:\Users\Justin\AppData\Roaming\NexonLauncher
2015-08-10 16:14 - 2015-09-01 16:03 - 00002059 _____ C:\Users\Justin\Desktop\Nexon Launcher.lnk
2015-08-10 16:14 - 2015-08-10 16:59 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nexon
2015-08-10 16:14 - 2015-08-10 16:14 - 00000000 ____D C:\Program Files (x86)\Nexon
2015-08-10 13:59 - 2015-08-10 13:59 - 00682280 _____ C:\Windows\SysWOW64\pbsvc.exe
2015-08-10 13:58 - 2015-08-21 14:45 - 00000000 ____D C:\Program Files (x86)\Wolfenstein - Enemy Territory
2015-08-09 14:12 - 2015-08-09 14:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-08-09 14:12 - 2015-08-09 14:12 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-08-09 00:20 - 2015-08-09 00:21 - 00000000 ____D C:\Users\Justin\Documents\Cross Fire
2015-08-09 00:20 - 2015-08-09 00:20 - 00000000 ____D C:\CFLog
2015-08-08 23:05 - 2015-08-08 23:05 - 00000000 ____D C:\Users\Justin\Documents\TacticalIntervention
2015-08-07 20:16 - 2015-08-07 20:16 - 00000000 ____D C:\Users\Justin\AppData\Local\RivalsGaming
2015-08-07 17:40 - 2015-08-07 17:40 - 00000000 ____D C:\Users\Justin\Documents\RivalsGaming
2015-08-06 21:37 - 2015-08-21 14:43 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.5
2015-08-06 01:13 - 2015-08-06 01:13 - 00000000 ____D C:\ProgramData\SystemRequirementsLab
2015-08-06 00:26 - 2015-08-06 00:27 - 00638976 _____ C:\Users\Justin\Documents\Default.mddbs
2015-08-06 00:25 - 2015-08-21 14:42 - 00000000 ____D C:\Manic Digger
2015-08-06 00:25 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\Windows\SysWOW64\dhRichClient3.dll
2015-08-06 00:25 - 2011-03-25 20:42 - 00338432 _____ C:\Windows\SysWOW64\sqlite36_engine.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-21 15:36 - 2013-12-29 19:10 - 00000852 _____ C:\Windows\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2013-12-29 19:10 - 00000712 _____ C:\Windows\system32\Drivers\RTMICEQ0.dat
2015-09-05 19:45 - 2014-12-16 18:31 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-05 19:32 - 2014-06-04 16:27 - 00000950 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1863531418-2306248219-523254007-1001UA.job
2015-09-05 19:27 - 2014-05-26 18:15 - 00000000 ____D C:\Users\Justin\AppData\Roaming\TS3Client
2015-09-05 19:20 - 2015-03-16 21:10 - 02003441 _____ C:\Windows\WindowsUpdate.log
2015-09-05 19:08 - 2014-05-26 15:18 - 00000000 ____D C:\Users\Justin\Documents\Euro Truck Simulator 2
2015-09-05 19:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-09-05 18:04 - 2015-05-23 19:55 - 00000000 ____D C:\Users\Justin\AppData\Roaming\IObit
2015-09-05 18:04 - 2015-05-23 19:55 - 00000000 ____D C:\ProgramData\IObit
2015-09-05 17:50 - 2014-05-26 14:11 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1863531418-2306248219-523254007-1001
2015-09-05 16:37 - 2014-05-26 14:09 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B4E2D854-1FB1-4B21-8074-086999A2FED1}
2015-09-05 16:32 - 2014-06-04 16:27 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1863531418-2306248219-523254007-1001Core.job
2015-09-05 10:25 - 2015-06-21 12:22 - 00000000 ____D C:\WarThunder
2015-09-05 10:25 - 2014-10-02 22:33 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Skype
2015-09-05 10:24 - 2014-05-26 14:08 - 00000000 ___DO C:\Users\Justin\SkyDrive
2015-09-05 01:55 - 2013-12-29 19:33 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-09-05 01:54 - 2014-05-26 18:15 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2015-09-04 21:11 - 2015-08-03 14:53 - 00000000 ____D C:\Users\Justin\Documents\Keybinder
2015-09-02 16:08 - 2014-07-04 23:10 - 00000000 ____D C:\Users\Justin\AppData\Local\CrashDumps
2015-09-02 13:59 - 2015-07-06 13:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-02 13:59 - 2015-06-15 19:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-02 13:49 - 2015-02-19 16:25 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Atheros
2015-09-01 21:03 - 2014-07-31 12:25 - 00000000 ____D C:\Users\Justin\AppData\Local\LogMeIn Hamachi
2015-09-01 16:05 - 2015-07-06 13:35 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-09-01 16:05 - 2015-07-06 13:35 - 00001117 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-09-01 16:05 - 2015-07-01 21:50 - 00001506 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2015-09-01 16:05 - 2015-06-21 12:22 - 00001460 _____ C:\Users\Public\Desktop\WarThunder.lnk
2015-09-01 16:05 - 2015-05-21 21:33 - 00001474 _____ C:\Users\Public\Desktop\Age of Empires 3 - The WarChiefs.lnk
2015-09-01 16:05 - 2015-05-21 21:33 - 00001474 _____ C:\Users\Public\Desktop\Age of Empires 3 - The Asian Dynasties.lnk
2015-09-01 16:05 - 2015-05-21 21:33 - 00001469 _____ C:\Users\Public\Desktop\Age of Empires 3.lnk
2015-09-01 16:05 - 2015-04-26 09:40 - 00001937 _____ C:\Users\Public\Desktop\ERS Berlin starten.lnk
2015-09-01 16:05 - 2015-04-25 16:45 - 00001699 _____ C:\Users\Public\Desktop\RTS Wegberg starten.lnk
2015-09-01 16:05 - 2015-03-15 01:54 - 00001797 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2015-09-01 16:05 - 2015-02-21 16:10 - 00001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-01 16:05 - 2014-12-05 15:40 - 00000896 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-09-01 16:05 - 2014-06-23 22:11 - 00001346 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.de.lnk
2015-09-01 16:05 - 2013-07-09 23:24 - 00002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Games.lnk
2015-09-01 16:03 - 2015-08-01 21:36 - 00001944 _____ C:\Users\Justin\Desktop\Drakensang Online.lnk
2015-09-01 16:03 - 2015-06-30 21:19 - 00000811 _____ C:\Users\Justin\Desktop\World of Warships.lnk
2015-09-01 16:03 - 2015-04-09 00:11 - 00002543 _____ C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2.lnk
2015-09-01 16:03 - 2015-01-29 16:34 - 00001313 _____ C:\Users\Justin\Desktop\Swat4.exe - Verknüpfung.lnk
2015-09-01 16:03 - 2015-01-07 23:46 - 00001031 _____ C:\Users\Justin\Desktop\Notepad++.lnk
2015-09-01 16:03 - 2014-12-13 19:21 - 00002233 _____ C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2015-09-01 16:03 - 2014-11-03 00:04 - 00000840 _____ C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spark.lnk
2015-09-01 16:03 - 2014-05-27 19:59 - 00001219 _____ C:\Users\Justin\Desktop\Any Video Converter.lnk
2015-09-01 16:03 - 2014-05-27 19:57 - 00000574 _____ C:\Users\Justin\Desktop\Fraps.lnk
2015-09-01 16:03 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\Offline Web Pages
2015-09-01 15:42 - 2014-08-23 14:43 - 00000000 ____D C:\Users\Justin\Documents\Bluetooth Folder
2015-08-29 21:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-08-28 21:40 - 2014-06-02 22:58 - 00000000 ____D C:\ProgramData\Origin
2015-08-27 22:41 - 2014-06-07 20:30 - 00000000 ____D C:\AdwCleaner
2015-08-27 21:31 - 2015-06-21 20:27 - 00583850 _____ C:\Windows\PFRO.log
2015-08-27 21:31 - 2015-06-21 14:04 - 00011180 _____ C:\Windows\setupact.log
2015-08-27 21:31 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\ELAMBKUP
2015-08-27 21:31 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-27 21:28 - 2013-08-22 15:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2015-08-27 21:06 - 2014-07-31 22:19 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2015-08-27 19:57 - 2015-06-18 20:14 - 00000000 ____D C:\Program Files (x86)\Awesome Widget ANTP
2015-08-26 21:23 - 2013-12-30 03:31 - 00765582 _____ C:\Windows\system32\perfh007.dat
2015-08-26 21:23 - 2013-12-30 03:31 - 00159366 _____ C:\Windows\system32\perfc007.dat
2015-08-26 21:23 - 2013-11-27 11:55 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-26 15:49 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-08-26 02:38 - 2013-12-29 19:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-26 02:32 - 2015-01-07 22:27 - 00000000 ____D C:\Users\NSIS
2015-08-26 02:21 - 2014-09-23 18:04 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-26 01:38 - 2013-08-22 16:44 - 00476472 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-26 01:36 - 2014-05-26 14:05 - 00000000 ____D C:\Users\Justin
2015-08-26 00:51 - 2014-06-02 23:01 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-08-26 00:49 - 2014-06-02 23:00 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Origin
2015-08-26 00:44 - 2014-05-26 14:16 - 00000000 ____D C:\Program Files (x86)\Google
2015-08-25 21:09 - 2014-06-22 00:31 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-25 21:08 - 2014-12-16 18:31 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2015-08-23 22:54 - 2015-01-01 20:00 - 00000000 ____D C:\Program Files (x86)\GTA - San Andreas
2015-08-22 11:48 - 2014-06-27 16:47 - 00000000 ____D C:\Users\Justin\Documents\GTA San Andreas User Files
2015-08-21 23:29 - 2015-05-21 21:34 - 00000000 ____D C:\Users\Justin\Documents\My Games
2015-08-21 15:03 - 2014-12-01 14:07 - 00000000 ____D C:\ProgramData\Adobe
2015-08-21 15:03 - 2014-05-26 14:05 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Adobe
2015-08-21 14:51 - 2014-10-14 14:51 - 00000000 ____D C:\Program Files\OBS
2015-08-21 14:51 - 2014-10-14 14:51 - 00000000 ____D C:\Program Files (x86)\OBS
2015-08-21 14:44 - 2014-07-30 22:22 - 00000000 ____D C:\ProgramData\MTA San Andreas All
2015-08-21 14:43 - 2014-07-30 22:22 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.4
2015-08-21 14:38 - 2014-12-19 11:36 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2015-08-20 22:14 - 2014-10-07 20:23 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DAEMON Tools Lite
2015-08-20 22:08 - 2014-10-04 20:49 - 00000000 ____D C:\Games
2015-08-19 23:47 - 2014-05-27 20:20 - 00000000 ____D C:\Users\Justin\AppData\Roaming\.minecraft
2015-08-19 12:36 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-08-18 12:06 - 2013-11-27 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-08-18 12:06 - 2013-11-27 12:20 - 00000000 ____D C:\Program Files (x86)\Acer
2015-08-18 12:02 - 2014-05-26 14:08 - 00000000 ____D C:\Users\Justin\AppData\Local\clear.fi
2015-08-16 18:27 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-08-14 23:09 - 2014-10-02 22:32 - 00000000 ____D C:\ProgramData\Skype
2015-08-14 16:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-08-13 14:46 - 2014-05-26 20:28 - 00000000 ____D C:\Windows\system32\MRT
2015-08-13 14:32 - 2014-05-26 20:28 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-13 13:23 - 2014-12-13 22:42 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-13 13:23 - 2014-12-13 22:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-13 02:11 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-13 02:11 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-13 02:10 - 2014-12-10 17:41 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-13 02:10 - 2014-07-09 15:13 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-13 02:10 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-13 02:10 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-12 17:00 - 2014-12-13 22:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 15:45 - 2014-12-16 18:31 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-12 13:58 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 13:58 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-11 23:01 - 2014-09-17 22:52 - 00000000 ____D C:\Users\Justin\AppData\Local\Akamai
2015-08-11 00:17 - 2014-12-01 14:09 - 00000000 ____D C:\Users\Justin\AppData\Local\Adobe
2015-08-10 23:41 - 2014-12-01 14:07 - 00000000 ____D C:\Windows\Downloaded Installations
2015-08-10 15:40 - 2014-05-30 18:07 - 00268952 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2015-08-10 15:40 - 2014-05-30 17:44 - 00268952 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-08-10 14:40 - 2014-05-30 17:44 - 00268952 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-08-10 14:02 - 2014-05-30 18:05 - 00000000 ____D C:\Users\Justin\AppData\Local\PunkBuster
2015-08-08 15:55 - 2015-05-13 20:35 - 00794088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-08 15:55 - 2015-05-13 20:35 - 00179688 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-06 21:32 - 2014-11-16 13:53 - 00000000 ____D C:\Users\Justin\Desktop\Spiele
2015-08-06 19:32 - 2015-06-21 12:22 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2015-08-06 19:13 - 2014-05-26 14:05 - 00000000 ____D C:\Users\Justin\AppData\Local\Packages
2015-08-06 14:32 - 2014-07-21 20:08 - 00000000 ____D C:\Users\Justin\AppData\Roaming\TeamViewer
2015-08-06 01:14 - 2015-04-09 00:49 - 00000000 ____D C:\Users\Justin\Documents\Survarium-Steam
2015-08-06 01:02 - 2015-06-18 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conworld V2
2015-08-06 01:02 - 2015-06-18 19:55 - 00000000 ____D C:\Program Files (x86)\Conworld V2
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-10-15 21:24 - 2014-10-15 21:24 - 1177208 _____ () C:\Users\Justin\AppData\Roaming\AndyCleanupTool.exe
2014-10-15 21:24 - 2014-10-15 21:24 - 1176696 _____ () C:\Users\Justin\AppData\Roaming\AndyCleanVM.exe
2014-06-22 02:03 - 2014-06-22 09:06 - 0000096 _____ () C:\Users\Justin\AppData\Roaming\LauncherSettings_live.cfg
2014-06-22 08:17 - 2014-06-22 08:17 - 0000039 _____ () C:\Users\Justin\AppData\Roaming\TheHunterSettings_live.cfg
2015-01-22 23:20 - 2015-01-22 23:20 - 10124389 _____ () C:\Users\Justin\AppData\Roaming\xulrunner.zip
2014-12-01 14:08 - 2014-12-01 14:09 - 0005632 _____ () C:\Users\Justin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-26 21:09 - 2015-02-26 21:15 - 0005120 _____ () C:\Users\Justin\AppData\Local\file__0.localstorage
2014-12-01 16:29 - 2014-12-01 16:29 - 0001542 _____ () C:\Users\Justin\AppData\Local\recently-used.xbel
2015-08-27 23:38 - 2015-08-27 23:38 - 0000017 _____ () C:\ProgramData\adaware-installer-reboot-required.tmp
2013-12-29 19:10 - 2013-12-29 19:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Justin\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Justin\AppData\Local\Temp\SRLDetectionLibrary6325966446417299253.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-31 17:29
==================== Ende von FRST.txt ============================
|
|
06.09.2015, 07:16
| #5 |
| /// the machine /// TB-Ausbilder | DNS-Unlocker auf Steam Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu DNS-Unlocker auf Steam |
| adware, dns-unlocker, doppel, doppelt, ebenfalls, installier, installiert, locker, mehrmals, neu, problem, steam, total, virus |
Linear-Darstellung
