| |
| |||||||
Log-Analyse und Auswertung: Chinesische Datei in "Zuletzt verwendete Dateien"Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
05.01.2016, 10:56
| #1 |
| |  Chinesische Datei in "Zuletzt verwendete Dateien" Servus, ich habe gestern auf meinem Win10 Rechner (wurde vor drei Monaten von Win8.1 aus geupdatet) wie gesagt unter "Zuletzt verwendete Dateien" eine Datei mit einem chinesischen Namen, der laut einem chinesischen Bekannten, eine sinnlose Zusammensetzung von Zeichen ist, entdeckt. Die Datei ist/war angeblich auf meinem Desktop, ist aber 0 Bytes groß und scheint bereits gelöscht zu sein. Die einzigen Maßnahmen, die ich seither ergriffen habe, sind ein Scan mit Avast Free Antivirus, wobei keine Funde gemeldet wurden und eine Analyse mit FRST. Solltet ihr noch eine Log-Datei von Avast benötigen, einfach sagen welche. Der Ordner hat ja einige zur Auswahl. FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
durchgeführt von Christian (Administrator) auf COMPUTER-CHRIS (05-01-2016 08:40:05)
Gestartet von C:\Users\Christian\Desktop
Geladene Profile: Christian (Verfügbare Profile: Christian)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\MSI\OTPService\OTPService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(MSI) C:\MSI\MSI SUITE\Super-Charger\SuiteChargeService.exe
(MSI) C:\MSI\MSI SUITE\ControlCenter\ComCenService.exe
() C:\MSI\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(MSI) C:\MSI\MSI SUITE\FastBoot\SuiteFastBootService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor) C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
() C:\Windows\System\3DG4me.exe
(Valve Corporation) D:\Tools\Steam\Steam.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(Valve Corporation) D:\Tools\Steam\bin\steamwebhelper.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Talk\TalkMonitor.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [BtTray] => "C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
HKLM\...\Run: [BtvStack] => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2013-05-28] ()
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [546656 2012-11-08] (ROCCAT GmbH)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [558944 2012-11-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [ROCCATTalk] => C:\Program Files (x86)\ROCCAT\Talk\TalkMonitor.EXE [2154496 2011-07-12] (ROCCAT GmbH)
HKLM-x32\...\Run: [MSI Suite] => C:\MSI\MSI SUITE\StartMSISuite.exe [576056 2012-07-05] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-18] (AVAST Software)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe [579056 2014-03-28] (Micro-Star International)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [764472 2012-09-19] ()
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1047536 2014-04-08] (MSI)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (CANON INC.)
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\Run: [Steam] => D:\Tools\Steam\steam.exe [3013200 2016-01-02] (Valve Corporation)
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\Run: [DAEMON Tools Lite] => E:\Sonstiges\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\RunOnce: [Uninstall C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\Policies\system: [DisableLockWorkstation] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-18] (AVAST Software)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{203552de-489d-475a-9ebd-6f60b8078dc5}: [DhcpNameServer] 192.168.182.1
Internet Explorer:
==================
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-31] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-18] (AVAST Software)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-18] (AVAST Software)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei
Toolbar: HKLM - Kein Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Keine Datei
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-2228468060-1932444389-4131102882-1001 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\qtase03e.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-08] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Office Software\PDF-Tools\XChange PDF viewer\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-02-25] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Office Software\PDF-Tools\XChange PDF viewer\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-02-25] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> E:\Video Software\VLC\npvlc.dll [2013-08-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> E:\Video Software\VLC\npvlc.dll [2013-08-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-08] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Office Software\PDF-Tools\XChange PDF viewer\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2013-02-25] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-17] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-17] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Office Software\PDF-Tools\XChange PDF viewer\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2013-02-25] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2228468060-1932444389-4131102882-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Office Software\PDF-Tools\XChange PDF viewer\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2013-02-25] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2013-02-25] (Tracker Software Products (Canada) Ltd.)
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-19]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-18]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\gcswf32.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Profile: C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-07-27]
CHR Extension: (BetterTTV) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-07-08]
CHR Extension: (Poper Blocker) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2015-01-10]
CHR Extension: (YouTube) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-24]
CHR Extension: (Google-Suche) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast Online Security) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-27]
CHR Extension: (Google Mail) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-18]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-18] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
R2 MSIFileSyncMonitor; C:\MSI\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe [9728 2013-01-22] () [Datei ist nicht signiert]
R2 MSI_ComCenService; C:\MSI\MSI SUITE\ControlCenter\ComCenService.exe [75280 2012-04-17] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [83952 2014-03-27] (Micro-Star International)
R2 MSI_OTPService; C:\Program Files (x86)\MSI\OTPService\OTPService.exe [252432 2012-04-12] ()
R2 MSI_SuiteCharger; C:\MSI\MSI SUITE\Super-Charger\SuiteChargeService.exe [122936 2012-10-26] (MSI)
R2 MSI_SuiteFastBoot; C:\MSI\MSI SUITE\FastBoot\SuiteFastBootService.exe [105016 2012-10-26] (MSI)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S2 SkypeUpdate; E:\Kommunikation\Skype\Updater\Updater.exe [327296 2015-07-09] (Skype Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-18] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-18] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-18] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-19] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-18] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-18] (AVAST Software)
R3 athur; C:\Windows\System32\drivers\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-03-30] ()
S3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46016 2012-08-16] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-03-30] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 NTIOLib_1_0_C; C:\MSI\MSI SUITE\NTIOLib_X64.sys [11888 2012-03-30] (MSI) [Datei ist nicht signiert]
R3 NTIOLib_1_0_T; C:\Program Files (x86)\MSI\OTPService\NTIOLib_X64.sys [14136 2009-10-06] (MSI)
R3 NTIOLib_1_1_S; C:\MSI\MSI SUITE\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI)
R3 NTIOLib_SuiteFB; C:\MSI\MSI SUITE\FastBoot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 USBADVAU; C:\Windows\system32\drivers\cm11264.sys [4121088 2012-11-29] (C-Media Electronics Inc)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-05 08:40 - 2016-01-05 08:40 - 00021030 _____ C:\Users\Christian\Desktop\FRST.txt
2016-01-05 08:40 - 2016-01-05 08:40 - 00000000 ____D C:\FRST
2016-01-05 00:39 - 2016-01-05 00:40 - 02370560 _____ (Farbar) C:\Users\Christian\Desktop\FRST64.exe
2016-01-04 23:20 - 2016-01-04 23:24 - 141798160 _____ (Microsoft Corporation) C:\Users\Christian\Downloads\msert (1).exe
2016-01-04 23:12 - 2016-01-04 23:16 - 125829120 _____ C:\Users\Christian\Downloads\msert.exe
2015-12-27 22:52 - 2015-12-27 22:57 - 00000000 ____D C:\Users\Christian\Desktop\GW2
2015-12-27 22:51 - 2015-12-27 22:53 - 00000000 ____D C:\Users\Christian\Desktop\Texte
2015-12-27 22:47 - 2015-12-27 22:49 - 00000000 ____D C:\Users\Christian\Desktop\HS-Screens
2015-12-25 17:44 - 2015-12-25 17:44 - 00000790 _____ C:\Users\Public\Desktop\StarCraft II.lnk
2015-12-25 17:44 - 2015-12-25 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2015-12-25 11:33 - 2016-01-01 21:04 - 00000000 ____D C:\Users\Christian\Documents\StarCraft II
2015-12-18 12:31 - 2015-12-18 12:31 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-12-18 12:31 - 2015-12-18 12:31 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-12-17 23:23 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-17 23:23 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-17 23:23 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-17 23:23 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-17 23:23 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-17 23:23 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-17 23:23 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-17 23:23 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-17 23:23 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-17 23:23 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-17 23:23 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-17 23:23 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-17 23:23 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-17 23:23 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-17 23:23 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-17 23:23 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-17 23:23 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-17 23:23 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-17 23:22 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-17 23:22 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-17 23:22 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-17 23:22 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-17 23:22 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-17 23:22 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-17 23:22 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-17 23:22 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-17 23:22 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-17 23:22 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-17 23:22 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-17 23:22 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-17 23:22 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-17 23:22 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-17 23:22 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-17 23:22 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-17 23:22 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-17 23:22 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-17 23:22 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-17 23:22 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-17 23:22 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-17 23:22 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-17 23:22 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-17 23:22 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-17 23:22 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-17 23:22 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-17 23:22 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-17 23:22 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-17 23:22 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-17 23:22 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-17 23:22 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-17 23:22 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-17 23:22 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-17 23:22 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-17 23:22 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-17 23:22 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-17 23:22 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-17 23:22 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-17 23:22 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-17 23:22 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-17 23:22 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-17 23:22 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-17 23:22 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-17 23:22 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-17 23:22 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-17 23:22 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-17 23:22 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-17 23:22 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-17 23:22 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-17 23:22 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-17 23:22 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-17 23:22 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-17 23:22 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-17 23:22 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-17 23:22 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-17 23:22 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-17 23:22 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-14 19:37 - 2015-12-14 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-14 19:37 - 2015-12-14 19:37 - 00000000 ____D C:\Program Files (x86)\Skype
2015-12-09 11:02 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 11:02 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 11:02 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 11:02 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 11:02 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-09 11:02 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-09 11:02 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-09 11:02 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-09 11:02 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 11:02 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 11:02 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 11:02 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 11:02 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 11:02 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 11:02 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-09 11:02 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 11:02 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 11:02 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 11:02 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 11:02 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 11:02 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 11:02 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 11:02 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 11:02 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 11:02 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 11:02 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 11:02 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-05 08:40 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2016-01-05 08:27 - 2014-05-30 04:07 - 00014480 _____ C:\WINDOWS\SysWOW64\Utility.xml
2016-01-05 08:27 - 2013-03-23 10:40 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-05 08:26 - 2015-01-14 16:24 - 00000509 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-01-05 08:26 - 2013-03-23 12:19 - 00000314 _____ C:\WINDOWS\Tasks\RtlNetworkGenieVistaStart.job
2016-01-05 00:19 - 2013-03-23 10:40 - 00001148 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-04 23:09 - 2014-02-01 01:16 - 00000000 ____D C:\Users\Christian\AppData\Local\Battle.net
2016-01-04 18:49 - 2015-09-09 20:03 - 00000000 ____D C:\Users\Christian\AppData\Roaming\HearthstoneDeckTracker
2016-01-03 02:53 - 2015-12-01 12:35 - 00000000 ____D C:\Users\Christian
2016-01-02 10:46 - 2015-12-01 12:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-02 10:46 - 2015-12-01 12:32 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-01 12:06 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-31 10:54 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-30 19:50 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-29 00:42 - 2013-04-04 12:30 - 00000000 ____D C:\Users\Christian\AppData\Roaming\vlc
2015-12-29 00:32 - 2015-11-25 02:52 - 49731387 _____ C:\Users\Christian\Desktop\GPU-Z Sensor Log.txt
2015-12-27 22:56 - 2014-06-25 02:14 - 00000000 ____D C:\Users\Christian\Desktop\Bastellei
2015-12-27 22:10 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-27 22:10 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-27 11:00 - 2014-04-01 04:16 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Skype
2015-12-26 02:35 - 2014-02-01 01:16 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-12-25 13:03 - 2014-08-23 02:56 - 00000000 ____D C:\Users\Christian\AppData\Local\Glyph
2015-12-25 13:03 - 2014-08-23 02:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph
2015-12-25 13:02 - 2013-03-23 10:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-21 14:35 - 2015-12-01 12:48 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-21 14:35 - 2015-10-30 19:35 - 00775524 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-21 14:35 - 2015-10-30 19:35 - 00155338 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-21 14:35 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-20 08:55 - 2013-03-23 06:26 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-12-20 00:26 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-19 19:36 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-19 19:36 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-19 19:36 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-19 00:32 - 2013-03-23 06:26 - 00451040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-12-19 00:32 - 2013-03-23 06:26 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2015-12-18 12:31 - 2014-08-07 12:11 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-12-18 12:31 - 2013-12-30 12:09 - 00155304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-12-18 12:31 - 2013-03-23 06:26 - 01055560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-12-18 12:31 - 2013-03-23 06:26 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-12-18 12:31 - 2013-03-23 06:26 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-12-18 12:31 - 2013-03-23 06:26 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-12-14 19:37 - 2014-04-01 04:17 - 00000000 ____D C:\Users\Christian\AppData\Local\Skype
2015-12-14 19:37 - 2014-04-01 04:16 - 00002630 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-14 19:37 - 2014-04-01 04:16 - 00000000 ____D C:\ProgramData\Skype
2015-12-12 22:09 - 2013-09-17 04:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-12 22:03 - 2013-03-23 21:01 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-11 10:34 - 2013-03-23 04:21 - 00000000 ____D C:\Users\Christian\AppData\Local\Packages
2015-12-10 20:24 - 2015-12-01 12:28 - 00240064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-10 20:22 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-08 20:33 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-08 10:34 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-12-06 09:37 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2013-03-30 07:26 - 2013-03-30 07:26 - 0003584 _____ () C:\Users\Christian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-20 22:55 - 2014-05-20 22:55 - 0001518 _____ () C:\Users\Christian\AppData\Local\recently-used.xbel
2013-05-23 04:18 - 2013-05-23 04:18 - 0007607 _____ () C:\Users\Christian\AppData\Local\Resmon.ResmonCfg
2015-08-07 11:32 - 2015-08-07 11:32 - 0000000 _____ () C:\Users\Christian\AppData\Local\{4C52EEAB-AB40-4274-993E-481B2FB9D416}
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-31 10:43
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Christian (2016-01-05 08:40:47)
Gestartet von C:\Users\Christian\Desktop
Windows 10 Home (X64) (2015-12-01 12:02:16)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2228468060-1932444389-4131102882-500 - Administrator - Disabled)
Christian (S-1-5-21-2228468060-1932444389-4131102882-1001 - Administrator - Enabled) => C:\Users\Christian
DefaultAccount (S-1-5-21-2228468060-1932444389-4131102882-503 - Limited - Disabled)
Gast (S-1-5-21-2228468060-1932444389-4131102882-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2228468060-1932444389-4131102882-1084 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.1.2245 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software)
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)
Call of Duty(R) 2 (x32 Version: 1.2 - Activision) Hidden
Call of Duty(R) 2 Patch 1.3 (x32 Version: 1.3 - ) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MX920 series Benutzerregistrierung (HKLM-x32\...\Canon MX920 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MX920 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX920_series) (Version: 1.00 - Canon Inc.)
Canon MX920 series On-screen Manual (HKLM-x32\...\Canon MX920 series On-screen Manual) (Version: 7.6.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.123 - MSI)
Cockatrice (HKLM-x32\...\Cockatrice) (Version: - )
Command and Conquer 3: Kane's Wrath (HKLM-x32\...\Steam App 24810) (Version: - EA Los Angeles)
Command and Conquer 3: Tiberium Wars (HKLM-x32\...\Steam App 24790) (Version: - EA Los Angeles)
ControlCenter (HKLM-x32\...\{AF14F0CD-5307-4134-BDFA-15974473C1EE}_is1) (Version: 2.5.060 - MSI)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - )
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version: - FromSoftware, Inc)
Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version: - Vigil Games)
DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - Ihr Firmenname)
Dawn of War - Soulstorm (HKLM-x32\...\{20533183-D42D-4261-A125-956736FBEA8C}) (Version: 1.00.0000 - THQ)
Dawn of War - Soulstorm (x32 Version: 1.00.0000 - THQ) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - )
Dungeon Defenders (HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\Dungeon Defenders) (Version: - )
Freelancer (HKLM-x32\...\Freelancer 1.0) (Version: - )
Genymotion version 2.5.2 (HKLM\...\{6D180286-D4DF-40EF-9227-923B9C07C08A}_is1) (Version: 2.5.2 - Genymobile)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Gun Monkeys (HKLM-x32\...\Steam App 239450) (Version: - Size Five Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Lagarith lossless video codec (Remove Only) (HKLM-x32\...\LAGARITH) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Mozilla Thunderbird 17.0.4 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 17.0.4 (x86 de)) (Version: 17.0.4 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
MPC-HC 1.7.5 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.5 - MPC-HC Team)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.3 - MSI)
MSI Live Update (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.005 - MSI)
MSI SUITE (HKLM-x32\...\{1F025E3A-3074-48A3-A8F3-78E735739491}_is1) (Version: 1.0.029 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.025 - MSI)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
NetworkGenie (HKLM-x32\...\{B416A23D-C2BD-4956-8BAE-5C3BAFF1AC1E}) (Version: 1.00.0000 - MSI)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.5 - Black Tree Gaming)
NVIDIA 3D Vision Controller-Treiber 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.52 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Oracle VM VirtualBox 4.3.12 (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
OTPService (HKLM-x32\...\{B05F7750-8800-4520-9732-9C841246C8E2}_is1) (Version: 1.0.004 - MSI)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.210.0 - Tracker Software Products Ltd)
PhotoFiltre 7 (HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\PhotoFiltre 7) (Version: - )
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.208 - Qualcomm Atheros Communications)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6738 - Realtek Semiconductor Corp.)
Risen (HKLM-x32\...\{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}) (Version: 1.00.0000 - Deep Silver)
ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version: - Roccat GmbH)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version: - Roccat GmbH)
ROCCAT Talk Driver (HKLM-x32\...\{0B2044E4-B4A7-4413-ABB1-99E04C7DF405}) (Version: - Roccat GmbH)
Sennheiser 3D G4ME1 (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392DDDFB6}) (Version: 1.00.0001 - )
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.101 - Skype Technologies S.A.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steam Trading Card Beta Access (HKLM-x32\...\Steam App 202352) (Version: - )
Supreme Commander (HKLM-x32\...\Steam App 9350) (Version: - )
Supreme Commander: Forged Alliance (HKLM-x32\...\Steam App 9420) (Version: - )
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.19617 - TeamViewer)
TERA (HKLM-x32\...\{A2S166A0-F031-4E27-A057-C69733219434}_is1) (Version: 19.04.02.03.hf3 - Gameforge Productions GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
Torchlight (HKLM-x32\...\{4F64A46D-67F7-4497-AEA2-313D4305A5F6}) (Version: 1.15 - JoWooD)
Trillian (HKLM-x32\...\Trillian) (Version: - Cerulean Studios, LLC)
VLC media player 2.0.8 (HKLM\...\VLC media player) (Version: 2.0.8 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - )
Warcraft III: All Products (HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\Warcraft III) (Version: - )
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.126 - MSI)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2228468060-1932444389-4131102882-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0114DEED-75E2-423E-A34D-3CECFC1478A7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {1E1CBF7D-3FE1-4426-B6C0-328BA76C5609} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {2316C389-CFC4-46EA-8B7F-373FC76C0A83} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {2A6D6D40-AFE3-47D1-BA76-9264BC27EA54} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {2D970662-D163-4BA9-BCD4-89E955D0EC00} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {3487015B-0332-44F7-8076-9AE765D9B97D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {34D2B03F-8450-47FF-8DA3-9B3C2D222918} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {4FE5A63C-D78B-43E5-95B2-CC4F347C4707} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {5BB39027-5EB5-4D79-BD17-145CF774B92B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-18] (AVAST Software)
Task: {6DBD9999-FCE2-4D87-A361-4C80C2953424} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {7CAFEA19-A497-44C1-A43C-B39DC28CBFE2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {A3330FD6-B665-44F7-97E4-BF7E2E53DC01} - System32\Tasks\{B3682A62-C451-458A-8BB7-619CF6787569} => pcalua.exe -a "C:\Users\Christian\Desktop\DuoS\DuoS DSEMU\DuoS.exe" -d "C:\Users\Christian\Desktop\DuoS\DuoS DSEMU"
Task: {A5C68CFC-63FB-4C2F-A5B9-860D698F199B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-12] (Microsoft Corporation)
Task: {AB4DAB40-AA3F-4984-B490-0D5900E2B3AB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {CC0623C2-E975-4B16-9FBF-782CA27CCC17} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG
Task: {D1F33F26-E954-49D1-956D-843C7C4070C8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {E568D0A5-C65E-4AAB-9F66-4E438A00713E} - System32\Tasks\RtlNetworkGenieVistaStart => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe [2012-01-05] (Realtek Semiconductor)
Task: {F86118EA-C399-4B3A-AB36-EABEFC81D69E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\RtlNetworkGenieVistaStart.job => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-03-23 10:40 - 2012-04-12 19:59 - 00252432 _____ () C:\Program Files (x86)\MSI\OTPService\OTPService.exe
2013-03-23 12:24 - 2013-01-22 22:35 - 00009728 _____ () C:\MSI\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-01 12:32 - 2015-08-07 01:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-12-03 14:15 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 14:15 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-17 23:22 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-17 23:22 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-17 23:23 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-17 23:23 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-17 23:23 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-17 23:23 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2013-10-05 02:10 - 2013-05-28 15:56 - 00151552 _____ () C:\Windows\System\3DG4me.exe
2015-12-17 10:47 - 2015-12-17 10:47 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-12-10 09:55 - 2015-12-10 09:55 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-12-10 09:55 - 2015-12-10 09:55 - 11542016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-12-01 13:50 - 2015-12-01 13:51 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-12-18 12:31 - 2015-12-18 12:31 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-18 12:31 - 2015-12-18 12:31 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-01 20:06 - 2016-01-01 20:06 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010101\algo.dll
2015-12-18 12:31 - 2015-12-18 12:31 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-02 10:47 - 2016-01-02 10:47 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010200\algo.dll
2016-01-04 19:05 - 2016-01-04 19:05 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2014-05-30 04:03 - 2013-09-17 02:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-03-23 12:18 - 2012-12-05 06:36 - 00148992 ____R () C:\Program Files (x86)\MSI\NetworkGenie\gep.dll
2013-10-05 02:10 - 2012-06-06 08:56 - 00143360 _____ () C:\Windows\System\3DG4me.dll
2015-12-17 10:40 - 2015-12-15 06:54 - 00782336 _____ () D:\Tools\Steam\SDL2.dll
2015-07-04 08:56 - 2015-07-03 17:12 - 04962816 _____ () D:\Tools\Steam\v8.dll
2015-12-30 08:37 - 2016-01-02 00:35 - 02546768 _____ () D:\Tools\Steam\video.dll
2015-07-04 08:56 - 2015-07-03 17:12 - 01556992 _____ () D:\Tools\Steam\icui18n.dll
2015-07-04 08:56 - 2015-07-03 17:12 - 01187840 _____ () D:\Tools\Steam\icuuc.dll
2015-09-24 09:11 - 2015-09-24 01:33 - 02549248 _____ () D:\Tools\Steam\libavcodec-56.dll
2015-09-24 09:11 - 2015-09-24 01:33 - 00491008 _____ () D:\Tools\Steam\libavformat-56.dll
2015-09-24 09:11 - 2015-09-24 01:33 - 00332800 _____ () D:\Tools\Steam\libavresample-2.dll
2015-09-24 09:11 - 2015-09-24 01:33 - 00442880 _____ () D:\Tools\Steam\libavutil-54.dll
2015-09-24 09:11 - 2015-09-24 01:33 - 00485888 _____ () D:\Tools\Steam\libswscale-3.dll
2015-12-30 08:37 - 2016-01-02 00:35 - 00802896 _____ () D:\Tools\Steam\bin\chromehtml.DLL
2015-12-30 08:37 - 2015-12-30 02:51 - 00208896 _____ () D:\Tools\Steam\bin\openvr_api.dll
2013-03-23 12:04 - 2012-07-08 16:31 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\hiddriver.dll
2013-03-23 12:04 - 2012-06-17 11:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2015-12-17 10:40 - 2015-12-15 06:54 - 47846688 _____ () D:\Tools\Steam\bin\libcef.dll
2015-12-18 12:31 - 2015-12-18 12:31 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-17 10:47 - 2015-12-17 10:47 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-12-17 10:47 - 2015-12-17 10:47 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\sony.com -> sony.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Christian\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.182.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\Run32: => "MSI Suite"
HKLM\...\StartupApproved\Run32: => "Super-Charger"
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-2228468060-1932444389-4131102882-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{9C3CAA97-22A0-4537-86BA-ECB62EB5367A}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{E8966868-BBE0-480D-BF41-1C1FEF40A22C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{C55C7908-10CB-4783-BADE-891311ABFEAC}] => (Allow) D:\Tools\Steam\SteamApps\common\Dragon Nest Europe\DragonNest\DragonNest.exe
FirewallRules: [{998415F5-C73E-4CDB-8A2D-8F4D621693D1}] => (Allow) D:\Tools\Steam\SteamApps\common\Dragon Nest Europe\DragonNest\DragonNest.exe
FirewallRules: [UDP Query User{C71C307B-F9FE-4977-8333-77C8D090CA5A}D:\strategie\heroes of the storm\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) D:\strategie\heroes of the storm\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{74C88502-0FF9-4B64-9C65-21CA758A0EF0}D:\strategie\heroes of the storm\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) D:\strategie\heroes of the storm\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{36E32FD7-BD0E-4D88-922A-1338CCA94B94}] => (Block) D:\strategie\heroes of the storm\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [{92CBB381-8601-485D-A0CF-74EC37DA55F4}] => (Block) D:\strategie\heroes of the storm\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{30BD85EC-58D1-4A7E-9CDA-9BB967719318}D:\strategie\heroes of the storm\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) D:\strategie\heroes of the storm\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{FDEA0775-FC40-49CF-ADBE-BDBA3B43A7B1}D:\strategie\heroes of the storm\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) D:\strategie\heroes of the storm\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [{BD5DF1F0-94E3-4CB5-8814-A861191451C1}] => (Block) D:\aufbauspiele\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5DE3A35B-B9E9-4211-9F3B-83DA7455F7C3}] => (Block) D:\aufbauspiele\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{8EE59B56-C212-4487-AC87-48E204022283}D:\aufbauspiele\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\aufbauspiele\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{48E83D6A-148F-4015-A5D4-56C0FEADDA56}D:\aufbauspiele\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\aufbauspiele\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{65C1792D-6B54-463A-924A-AE890698B690}D:\strategie\heroes of the storm\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) D:\strategie\heroes of the storm\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{CB094330-2EE6-4F1C-B89A-E0436A06D46C}D:\strategie\heroes of the storm\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) D:\strategie\heroes of the storm\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [{8B6CCF01-EAAC-479D-B83D-04A2DD86A9FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{600FA967-2DA9-4C43-8B7C-9FC26B926BDE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{142D03BA-BFBB-4D05-9F79-5FE66F85554F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{B9EC976E-6987-4652-B64F-4B1FBF860BDA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{2AC8CC95-806D-41D7-8A5C-E72CC73155AB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{364FAE17-E3AB-4420-B3A0-155A96F65142}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{17CBF4A2-768C-4660-999F-1E0C6D84AEEF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{A5376871-1658-40CD-A898-74E3D0604A42}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{A2A3DBFA-5C98-4C55-B574-29650B65D956}] => (Allow) D:\Tools\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{0A475ECF-6DDD-4ED4-BECC-108FF1AA30E6}] => (Allow) D:\Tools\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{0185E316-E5CC-420C-ADCF-B7BA9C6C7BAE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{960E97D1-6271-40DF-A519-D3D1C21BD5D8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{5820A277-808C-4EFE-909D-C5D4B1E62F21}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{852882B4-2EE7-4F90-8878-D74A456DE0CB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{44EE7716-EE35-4C49-8B68-83970B278995}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{BE22B093-3C7D-42F7-BCA5-174BA79DCE5B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{B99EB808-6DA9-419E-8759-088D5A9533E2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{9381D96F-E0B9-4290-9D6D-67A34BB0C355}] => (Allow) D:\Tools\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{FD4AC09E-8EC8-415E-9D14-8E6707400BC4}] => (Allow) D:\Tools\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{F944ACC7-D0BE-4D0C-A649-3497AAC85760}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{F48EAE5C-4086-4CD2-8DDE-4F5EA66AFA70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{54D84851-F349-4FD4-B948-B42BC8C2BE03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{3B0FB1A1-DCD8-4A0C-A9F0-9933B54C494D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{68D06B10-00EB-4D54-8E4B-FEB82ED29CEB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{460F431C-5F2C-46C4-961E-7E3718DF703C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{3B0C5DF7-50CC-45BC-A98F-DC649891831F}] => (Allow) D:\Tools\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{84DAACE6-0C77-4068-95EC-1DF5DC64A37C}] => (Allow) D:\Tools\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{996CB0F8-FF3F-4A78-8BA8-C93DD12BB34D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{DF13847C-4430-44F6-8CC4-B0CC05954A34}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{79CE0EBF-F290-472B-A24B-F1DD3D1BED3E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{7AE8366B-8D08-4CDC-A851-162448E3ABFC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{1DF1F8C3-FEA1-43CF-89AB-A49039B10A18}] => (Allow) D:\Tools\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{81A6F7BC-DDAF-49C1-A1BB-169180EC859C}] => (Allow) D:\Tools\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{FE761BF6-BB9D-46C3-A358-2759ABA1573A}] => (Allow) D:\Rollenspiele\Diablo III\Diablo III.exe
FirewallRules: [{099A46F4-FD26-4868-8B26-694866A7CD5F}] => (Allow) D:\Rollenspiele\Diablo III\Diablo III.exe
FirewallRules: [{01CD4CCD-0DD4-4401-9C87-97761258B00B}] => (Allow) D:\Tools\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3BB59AB2-5D87-4114-82D8-98A6344E7AA3}] => (Allow) D:\Tools\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{826574B6-18E0-4B69-9A42-64888C66E72D}] => (Allow) D:\Tools\Steam\bin\steamwebhelper.exe
FirewallRules: [{02722AB9-0C1A-41D3-8C1F-FF771DF7B672}] => (Allow) D:\Tools\Steam\bin\steamwebhelper.exe
FirewallRules: [{BCC1247C-6679-42A7-A7BF-2D26097A4775}] => (Allow) D:\Tools\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{EF21EC4D-8033-4470-9ED5-C26BF81B6F47}] => (Allow) D:\Tools\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{EC939393-4754-4329-91C5-99E7CD962C83}] => (Allow) D:\Tools\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{EDC73FDE-8406-4EC0-814F-C328BE6C5586}] => (Allow) D:\Tools\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{6998AD32-0F9E-4E86-BBC7-7952ADD1DCE2}] => (Allow) D:\Tools\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{94D19DB8-F749-4C09-BB7C-77392A6D69B9}] => (Allow) D:\Tools\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{29D49793-A23A-4E37-BF62-35DE0436B196}] => (Allow) D:\Tools\Steam\SteamApps\common\the witcher 2\Launcher.exe
FirewallRules: [{EAA244BA-53FF-43D2-9A6A-64F2EF405BAA}] => (Allow) D:\Tools\Steam\SteamApps\common\the witcher 2\Launcher.exe
FirewallRules: [{4C21BEC2-3301-4D0C-999C-3DCE8F75FE26}] => (Allow) D:\Tools\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{A6B9E27B-2308-42B6-A253-782BFBD8C744}] => (Allow) D:\Tools\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{B8074CE0-F4A0-4552-91BD-821600DBE0AD}] => (Allow) D:\Tools\Steam\SteamApps\common\Gun Monkeys\Gun_Monkeys.exe
FirewallRules: [{63415F5B-C151-43B6-9628-31F520817272}] => (Allow) D:\Tools\Steam\SteamApps\common\Gun Monkeys\Gun_Monkeys.exe
FirewallRules: [{82CB435B-A32A-4414-9806-D53FFDC96B65}] => (Allow) D:\Tools\Steam\SteamApps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{2FDC15A7-1510-4743-AD83-8E1A8A5AEEE2}] => (Allow) D:\Tools\Steam\SteamApps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{0C4F57E5-F348-484B-A9D9-47BF42CEB99A}] => (Allow) D:\Tools\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{F75E8707-BAC4-41A2-99CB-5654E2237DFD}] => (Allow) D:\Tools\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [UDP Query User{52474AC2-03C5-42CF-BBDC-960C61736462}D:\strategie\hearthstone\hearthstone.exe] => (Allow) D:\strategie\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{66810F79-7CA1-4972-8C99-51AE8F79E3C7}D:\strategie\hearthstone\hearthstone.exe] => (Allow) D:\strategie\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{0EE63B3A-1D85-4A78-B8EF-0EA70DCC392B}E:\kommunikation\skype\phone\skype.exe] => (Allow) E:\kommunikation\skype\phone\skype.exe
FirewallRules: [TCP Query User{78CE0C07-9ABF-452D-958E-337C363D3534}E:\kommunikation\skype\phone\skype.exe] => (Allow) E:\kommunikation\skype\phone\skype.exe
FirewallRules: [UDP Query User{1B8C8332-5F7B-498F-AC07-8A7793520E71}D:\lan\dungeon defenders\binaries\win32\dundefgame.exe] => (Block) D:\lan\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [TCP Query User{2CFED951-9669-42CD-B196-F5FCF7814732}D:\lan\dungeon defenders\binaries\win32\dundefgame.exe] => (Block) D:\lan\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [{3E1E1780-1BB9-4B92-9BA1-F937CD6E7302}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{22013C73-8367-44DB-AA8E-2693BF51C77D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [UDP Query User{A99CC01B-2D8D-41F1-9AD7-415E6D78FA19}D:\mmo\guild wars 2\gw2.exe] => (Allow) D:\mmo\guild wars 2\gw2.exe
FirewallRules: [TCP Query User{963038BE-2CF9-455C-B4F9-E34AF6BA372A}D:\mmo\guild wars 2\gw2.exe] => (Allow) D:\mmo\guild wars 2\gw2.exe
FirewallRules: [{5102373A-B614-4CAB-B0D0-E5DDDF535E59}] => (Allow) D:\Tools\Steam\Steam.exe
FirewallRules: [{1B4D3547-817F-4496-9D24-ABF25F31181A}] => (Allow) D:\Tools\Steam\Steam.exe
FirewallRules: [TCP Query User{678A00D1-5AA4-4F14-944F-C626F3F8D971}D:\shooter\quake iii\quake3.exe] => (Allow) D:\shooter\quake iii\quake3.exe
FirewallRules: [UDP Query User{B2F65D36-8AC2-4ED8-800B-602A55135751}D:\shooter\quake iii\quake3.exe] => (Allow) D:\shooter\quake iii\quake3.exe
FirewallRules: [{AB9507E8-349D-4FC6-B427-2C163C5E6EDD}] => (Block) D:\shooter\quake iii\quake3.exe
FirewallRules: [{B7F32F2F-F262-40CF-8F51-81B9497CF5DD}] => (Block) D:\shooter\quake iii\quake3.exe
FirewallRules: [TCP Query User{4D75BB70-DBEE-4229-AFCD-A6E2B979A93A}D:\shooter\counterstrike\hl.exe] => (Allow) D:\shooter\counterstrike\hl.exe
FirewallRules: [UDP Query User{5964AB76-7D19-4815-8BBF-976143E802E5}D:\shooter\counterstrike\hl.exe] => (Allow) D:\shooter\counterstrike\hl.exe
FirewallRules: [{FAE85375-1D43-4658-9FD1-09FBE6B115EC}] => (Block) D:\shooter\counterstrike\hl.exe
FirewallRules: [{2AA352B6-C4C0-4ED1-B81A-8C6FBC1BDBD7}] => (Block) D:\shooter\counterstrike\hl.exe
FirewallRules: [TCP Query User{E915B05A-E68E-4399-914D-69051DDFD766}D:\tools\steam\steamapps\common\natural selection 2\ns2.exe] => (Allow) D:\tools\steam\steamapps\common\natural selection 2\ns2.exe
FirewallRules: [UDP Query User{9402F380-6462-4334-8759-B34B933FF234}D:\tools\steam\steamapps\common\natural selection 2\ns2.exe] => (Allow) D:\tools\steam\steamapps\common\natural selection 2\ns2.exe
FirewallRules: [TCP Query User{A79ACD0C-3308-414A-BE5A-6D9F03F73F66}D:\rennspiele\flatout2\flatout2.exe] => (Allow) D:\rennspiele\flatout2\flatout2.exe
FirewallRules: [UDP Query User{AA0F5899-1026-4736-99A5-690DFDB0A2E3}D:\rennspiele\flatout2\flatout2.exe] => (Allow) D:\rennspiele\flatout2\flatout2.exe
FirewallRules: [{B7AB5DD2-FFE2-4B60-A356-9AA3BA3A9BF9}] => (Block) D:\rennspiele\flatout2\flatout2.exe
FirewallRules: [{E26736F8-CDE9-444E-A559-3B952F1CED83}] => (Block) D:\rennspiele\flatout2\flatout2.exe
FirewallRules: [TCP Query User{632C5B88-F0AB-4889-94D4-D7D6E5FBD6F1}E:\kommunikation\trillian\plugins\skypekit.exe] => (Allow) E:\kommunikation\trillian\plugins\skypekit.exe
FirewallRules: [UDP Query User{7D1EE3B7-A895-49BA-AB05-879180E7AEEB}E:\kommunikation\trillian\plugins\skypekit.exe] => (Allow) E:\kommunikation\trillian\plugins\skypekit.exe
FirewallRules: [{9C173D71-318F-45B9-A425-B3F60D09C806}] => (Block) E:\kommunikation\trillian\plugins\skypekit.exe
FirewallRules: [{A4B2F055-739C-43C5-985B-0AFE039CA239}] => (Block) E:\kommunikation\trillian\plugins\skypekit.exe
FirewallRules: [TCP Query User{0BA936C2-4F97-44C8-B895-ECA7BE3F4C21}D:\tools\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) D:\tools\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [UDP Query User{81DA6E22-1A90-4BC0-9842-A0F66BD89C00}D:\tools\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) D:\tools\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [{B12502B3-DB7F-4531-97AC-AC2F1CBF991B}] => (Block) D:\tools\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [{A1FD8AD3-92E7-4CC2-9785-5A36F5672E62}] => (Block) D:\tools\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [TCP Query User{0C0B302A-ADAC-417D-97BC-CB31A48DEBCA}D:\mmo\tera\tera-launcher.exe] => (Allow) D:\mmo\tera\tera-launcher.exe
FirewallRules: [UDP Query User{FE2B588A-8CE5-40C6-84BC-EF1D4F7AD2B8}D:\mmo\tera\tera-launcher.exe] => (Allow) D:\mmo\tera\tera-launcher.exe
FirewallRules: [{68646525-7D19-4891-A08A-B278873710C7}] => (Block) D:\mmo\tera\tera-launcher.exe
FirewallRules: [{E8109172-D426-4C1D-9E31-8EB5EA15BCE4}] => (Block) D:\mmo\tera\tera-launcher.exe
FirewallRules: [{5783D05E-9229-4928-BC5F-811B8F805667}] => (Allow) D:\Tools\Steam\SteamApps\common\Supreme Commander\bin\SupremeCommander.exe
FirewallRules: [{F48D6515-84B1-4108-98BD-3ED63EA10555}] => (Allow) D:\Tools\Steam\SteamApps\common\Supreme Commander\bin\SupremeCommander.exe
FirewallRules: [{F7BDEBE3-E85F-4FB6-9FCB-D142647E0057}] => (Allow) D:\Tools\Steam\SteamApps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{406E3C9F-85BC-4652-B220-4CC957EEDB0F}] => (Allow) D:\Tools\Steam\SteamApps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [TCP Query User{75A82A5B-4834-46C1-8570-658DFBA68C48}E:\kommunikation\trillian\trillian.exe] => (Allow) E:\kommunikation\trillian\trillian.exe
FirewallRules: [UDP Query User{E3D23042-47DA-455D-AB92-022806E19AA0}E:\kommunikation\trillian\trillian.exe] => (Allow) E:\kommunikation\trillian\trillian.exe
FirewallRules: [{4E0911BA-EE72-4B1D-ADC3-48928DA939CC}] => (Block) E:\kommunikation\trillian\trillian.exe
FirewallRules: [{E51E30ED-EDD9-456C-88FC-4D328F4AE988}] => (Block) E:\kommunikation\trillian\trillian.exe
FirewallRules: [TCP Query User{2563B205-A458-444D-9B31-55504070FB40}D:\tools\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\tools\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [UDP Query User{2AEFE3E7-0269-4A01-9BCF-3923233215C5}D:\tools\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\tools\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{09254827-5D88-4AF9-8C6D-6DED642E31A5}] => (Block) D:\tools\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{BA38EBB6-BA5B-4F63-B3E9-14FABA81BAFD}] => (Block) D:\tools\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{558B8977-499C-4F3D-9E2D-E3F37C3DC9FD}] => (Allow) D:\Tools\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{373C7E5A-B380-4EA8-AE7B-B26048E5A064}] => (Allow) D:\Tools\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{E48F7FD3-B678-45AD-A2FF-2FD0348FCC03}] => (Allow) D:\Tools\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{913350C5-D7C0-42C5-BCE3-42E97405D22A}] => (Allow) D:\Tools\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{3D4B60D0-F4F2-4CC6-936A-24F2758F4564}] => (Allow) D:\Tools\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{F7F3F5FA-D32B-485A-AEE8-5E5F08167966}] => (Allow) D:\Tools\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{09AA64D2-6DC0-48AB-96C1-41042A2A8399}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 Tiberium Wars\CNC3.exe
FirewallRules: [{C0AB36E4-E7A9-4A4F-9354-F13E327BE7FA}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 Tiberium Wars\CNC3.exe
FirewallRules: [{E14CF359-4D8A-4AB8-9328-D694F625593E}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 Tiberium Wars\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{3BC5D437-D5B0-4EFD-BFA3-A461D7FF11A0}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 Tiberium Wars\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{4344165B-032B-4298-856B-3A8BBF2294CC}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 - Kane's Wrath\CNC3EP1.exe
FirewallRules: [{10930278-6136-4B4F-8062-F00ECE104A2E}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 - Kane's Wrath\CNC3EP1.exe
FirewallRules: [{D34DB388-2EC9-452B-BBCC-9C5F0C1F2475}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 - Kane's Wrath\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{E30024D2-2810-413A-B095-F743FFF717B5}] => (Allow) D:\Tools\Steam\SteamApps\common\Command and Conquer 3 - Kane's Wrath\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{248117FA-6EBB-4945-9650-E1A40F2F40AA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{9F4EAC9C-6125-4101-8692-D1D7B470AF13}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6A6B6059-A694-4B64-9CEF-0C07B7E12308}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A0133687-9587-4C59-810C-3A0706BCC8ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F16A9B38-1F35-4B72-A1FD-D57C7BA6D7AB}] => (Allow) E:\Teamview\TeamViewer.exe
FirewallRules: [{B34041A1-616B-4888-B453-414EEE91066C}] => (Allow) E:\Teamview\TeamViewer.exe
FirewallRules: [{01EBDDC1-6BDB-4D95-BD1E-5C9AE964FA1E}] => (Allow) E:\Teamview\TeamViewer_Service.exe
FirewallRules: [{EC4A2D7A-59C3-41E6-A265-186B17559C64}] => (Allow) E:\Teamview\TeamViewer_Service.exe
FirewallRules: [{16524486-4357-42B4-B7D0-CCA146BDB830}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C1D0A5B7-93A5-4654-8064-16FC878BB422}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{43AEE857-852E-4711-9C23-B6775948F653}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D0E67762-FCC5-4598-B5F6-CC67B72B6079}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{DC5945F3-EBE2-44BD-8B99-85DC279D1E38}D:\lan\dow\soulstorm.exe] => (Allow) D:\lan\dow\soulstorm.exe
FirewallRules: [UDP Query User{CB98CF0B-3F85-4904-88D6-9AE83C5B7516}D:\lan\dow\soulstorm.exe] => (Allow) D:\lan\dow\soulstorm.exe
FirewallRules: [TCP Query User{184335AA-1EC4-438C-99B6-730738D70559}D:\shooter\battlefield 1942\bf1942_w32ded.exe] => (Allow) D:\shooter\battlefield 1942\bf1942_w32ded.exe
FirewallRules: [UDP Query User{2750AE99-8AC8-4D88-8C82-3B3C6299A072}D:\shooter\battlefield 1942\bf1942_w32ded.exe] => (Allow) D:\shooter\battlefield 1942\bf1942_w32ded.exe
FirewallRules: [TCP Query User{94AF4C5D-B17B-4949-9006-DBDC2AE9D139}D:\lan\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) D:\lan\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [UDP Query User{341AF518-04C9-4DD4-890C-51E242328322}D:\lan\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) D:\lan\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [TCP Query User{4BA5F58A-91CA-4BFF-87B8-F341CCE78733}D:\tools\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) D:\tools\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [UDP Query User{17B24362-F29B-45C1-8570-C3CEF4EEC436}D:\tools\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) D:\tools\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [TCP Query User{F38291B6-3214-4E6F-9959-A6D9BD3AD2AF}D:\mmo\guild wars 2\gw2.exe] => (Allow) D:\mmo\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{379308AD-5ADE-4896-AD1D-FF1718040768}D:\mmo\guild wars 2\gw2.exe] => (Allow) D:\mmo\guild wars 2\gw2.exe
FirewallRules: [{438E8C44-3DE4-4192-992E-7758352EC71C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{7E4B3AD0-2620-485A-A783-53EE98D7ADE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{CFB13ECE-7951-4DB8-AFF3-53B6314525DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{43086B94-FB56-4DDF-96E1-B362C2B694C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BAC95DC4-4268-4807-9D8C-2AA01B7D0028}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4129CA2F-663F-4C7E-8B8B-A94420EB69D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{1261304C-3B9B-45E9-9DDD-28041728CA81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C6D4C3E4-BDD8-4CE1-A305-03D10F1760B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DD3223C1-4DB9-423D-AF80-DE71EBE2B756}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{48C9F1CF-D2F8-482A-BDF7-164ED79C8FD1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4FC19592-9A50-4C8D-AEB5-35BB5F65FBE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{93032BAE-26F2-42E8-9766-9230646BC84D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4AF48788-1945-4A20-83B1-7087415DB07A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{76B5C035-23E2-475B-9D75-6478EAE0DF1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DA08FF1D-B617-433C-9C88-5A573CCB85C4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B50F90CB-3823-4421-BFDE-99F3837ACB41}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D8A4FB7B-9394-42D4-B82F-BB028A3E420C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4FAF26E4-141F-49D6-9476-164AB3D8FC81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C79E6FD8-9085-48E1-B26E-AED6E1E2DCB2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{73BC68FB-83D9-45EA-ADC4-D439F371ECE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4D2D54BB-334A-4806-921E-42E08E4942E4}] => (Allow) D:\Strategie\Hearthstone\Hearthstone.exe
FirewallRules: [{D05835DF-88FA-4DBC-9568-0A810191AFA6}] => (Allow) D:\Strategie\Hearthstone\Hearthstone.exe
FirewallRules: [{40A3C236-B2BB-436E-9421-EB7B633E0FDF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{8FBEDAA9-DE81-45FC-89AC-E25BBFC377CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{F583BBCB-013E-491C-A10E-0532A692E832}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{79BA110F-1BBF-4FE1-B704-993AEBED7F1A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{95BD2DC1-0FE8-496A-BB86-BB1B3C87DC11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{E0E5F90F-849A-423C-88EC-E088CE567E03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C458E3E8-D3A5-4667-A86C-F1BFDD8EC191}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8A25931A-8DB6-4DE5-830E-CFCD857FAC4F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1E2E59F8-FFB5-4832-9E93-E1C8D259A05E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{D3F3C115-68CD-4CBE-9DA7-1B376A4E70AD}D:\strategie\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) D:\strategie\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [UDP Query User{C290D1AF-D35E-4E2D-9C8F-C337345B9D4F}D:\strategie\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) D:\strategie\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [{686559B2-62C3-4E93-B1EC-6DCAAB7FDCEC}] => (Allow) D:\Tools\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{EA8C714A-1740-4C7E-BC2C-C377B36351DC}] => (Allow) D:\Tools\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
==================== Wiederherstellungspunkte =========================
18-12-2015 10:37:26 Windows Update
25-12-2015 13:02:19 Entfernt League of Legends
30-12-2015 19:50:04 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/05/2016 12:41:00 AM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Der Windows-Anmeldeprozess wurde unerwartet beendet.
Error: (01/05/2016 12:37:03 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Computer-Chris)
Description: Das Paket „Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe+App“ wurde beendet, da das Anhalten zu lange dauerte.
Error: (01/04/2016 04:35:53 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4
Error: (01/03/2016 11:30:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10586.0, Zeitstempel: 0x5632d756
Name des fehlerhaften Moduls: Windows.Gaming.Input.dll, Version: 10.0.10586.0, Zeitstempel: 0x5632da39
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000ed2f
ID des fehlerhaften Prozesses: 0x1f9c
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5
Error: (01/03/2016 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
Error: (01/03/2016 11:01:26 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4
Error: (01/03/2016 02:53:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10586.0, Zeitstempel: 0x5632d756
Name des fehlerhaften Moduls: combase.dll, Version: 10.0.10586.0, Zeitstempel: 0x5632d3ca
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000067e5c
ID des fehlerhaften Prozesses: 0x70
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5
Error: (01/02/2016 04:21:05 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
Error: (01/02/2016 10:47:52 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4
Error: (01/01/2016 09:56:53 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Systemfehler:
=============
Error: (01/05/2016 08:29:33 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/05/2016 12:41:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_5a524ff" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/05/2016 12:41:00 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/04/2016 11:17:25 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/04/2016 11:04:47 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/04/2016 04:38:39 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/04/2016 03:09:01 PM) (Source: DCOM) (EventID: 10010) (User: Computer-Chris)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (01/04/2016 03:08:58 PM) (Source: DCOM) (EventID: 10010) (User: Computer-Chris)
Description: {0002DF02-0000-0000-C000-000000000046}
Error: (01/04/2016 03:08:53 PM) (Source: DCOM) (EventID: 10010) (User: Computer-Chris)
Description: Windows.Media.Capture.Internal.AppCaptureShell
Error: (01/04/2016 03:08:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_4700f0d" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2015-12-30 20:16:58.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-19 19:41:13.491
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-11 16:07:39.621
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-10 20:25:15.805
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-09 10:45:58.831
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-06 09:07:59.949
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-02 03:16:05.398
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-01 12:47:29.216
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-01 12:45:07.213
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-01 12:29:57.213
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 8136.29 MB
Verfügbarer physikalischer RAM: 5852.66 MB
Summe virtueller Speicher: 10312.29 MB
Verfügbarer virtueller Speicher: 7913.63 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:331.07 GB) (Free:282.35 GB) NTFS
Drive d: (Games) (Fixed) (Total:400 GB) (Free:104.15 GB) NTFS
Drive e: (Software) (Fixed) (Total:200 GB) (Free:191.94 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 5ABF455A)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5ABF5A8C)
Partition 1: (Not Active) - (Size=400 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=331.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
|
|
05.01.2016, 14:47
| #2 |
| /// TB-Ausbilder   | Chinesische Datei in "Zuletzt verwendete Dateien" Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop: SystemLook (32 bit) | SystemLook (64 bit)
|
|
09.01.2016, 10:21
| #3 |
| /// TB-Ausbilder | Chinesische Datei in "Zuletzt verwendete Dateien" Fehlende Rückmeldung
__________________Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten. PM an mich falls Du denoch weiter machen willst. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen! |
|
| Themen zu Chinesische Datei in "Zuletzt verwendete Dateien" |
| .dll, antivirus, avast, canon, cpu, defender, desktop, dnsapi.dll, explorer, flash player, home, homepage, installation, launch, mozilla, neustart, onedrive, prozesse, realtek, registry, rundll, scan, security, services.exe, software, super, svchost.exe, system, udp, virtualbox, windows, windowsapps, zuletzt verwendete dateien |
Linear-Darstellung
