WIN 10: Browser öffnet eigenständige links zu Cfos

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:10-01-2015 01
durchgeführt von Max (2016-01-26 22:55:46)
Gestartet von C:\Users\Max\Desktop
Windows 10 Pro (X64) (2015-11-16 21:28:20)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-789052603-3400426100-2553791520-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-789052603-3400426100-2553791520-503 - Limited - Disabled)
Gast (S-1-5-21-789052603-3400426100-2553791520-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-789052603-3400426100-2553791520-1002 - Limited - Enabled)
Max (S-1-5-21-789052603-3400426100-2553791520-1000 - Administrator - Enabled) => C:\Users\Max

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.01.01 - ASUSTeK Computer Inc.)
AMD Catalyst Install Manager (HKLM\...\{F02E145C-56BD-9AED-7816-9067D84A8D28}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.1.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Assassin's Creed Brotherhood (HKLM-x32\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.03 - Ubisoft)
Assassin's Creed II (HKLM-x32\...\Uplay Install 4) (Version:  - Ubisoft)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version:  - Ubisoft)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)
Assassin's Creed Revelations (HKLM-x32\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.00 - Ubisoft)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: 1.12 - Ubisoft)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version:  - Ubisoft)
ASUS ROG Connect (HKLM-x32\...\{C8D566CE-0DC7-47C1-8A7C-80745839F2CD}) (Version: V1.04.16 - ASUSTeK Computer Inc.)
ASUS ROG Connect Plus (HKLM-x32\...\{ECF51D37-52ED-4871-BF8B-FEA34B8B4120}) (Version: 1.00.14 - ASUSTeK Computer Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bigfoot Networks Killer Network Manager (HKLM-x32\...\InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}) (Version:  - )
Bigfoot Networks Killer Network Manager (Version: 6.0.1.146 - Bigfoot Networks) Hidden
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
CPUID ROG CPU-Z 1.57.2 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.57.2 - CPUID, Inc.)
EXPERTool 7.10 (HKLM-x32\...\MySSID_is1) (Version:  - Gainward Co., Ltd)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Intel(R) Network Connections 16.4.68.0 (HKLM\...\PROSetDX) (Version: 16.4.68.0 - Intel)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LightScribe System Software (HKLM-x32\...\{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}) (Version: 1.18.22.2 - LightScribe)
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Magic 2015 (HKLM-x32\...\Steam App 255420) (Version:  - Stainless Games)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.6366.2056 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Might & Magic Heroes VI - Shades of Darkness (HKLM-x32\...\{745D37C2-26F4-4B65-BA13-F9840EBFA75B}) (Version: 2.1.0 - Ubisoft)
Mozilla Firefox 43.0.4 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 de)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.43 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Grafiktreiber 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.43 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6326.1019 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6326.1019 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6326.1019 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6642 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
ROG GameFirst v4.53 (HKLM\...\ROG GameFirst) (Version: 4.53 - cFos Software GmbH, Bonn)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
Sound Blaster X-Fi MB 2 (HKLM-x32\...\{89F922D6-E3E0-4303-AF8E-CE18412E3A18}) (Version: 1.0 - Creative Technology Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
Uplay (HKLM-x32\...\Uplay) (Version: 6.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WD My Cloud (HKLM\...\{3082756C-2147-411F-AE6A-9DCEF0121903}) (Version: 1.0.7.5 - Western Digital Technologies, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
xp-AntiSpy 3.98-2 (HKLM-x32\...\xp-AntiSpy) (Version:  - Christian Taubenheim)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-789052603-3400426100-2553791520-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Max\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0724D89F-2964-4E67-B1DF-11770A038BDB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0BC4217C-1C54-49AD-9B53-EBC9C1425870} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-14] (Microsoft Corporation)
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {1165C73F-5760-4D4C-8E09-A2F2087E0D6B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {1895C5DC-9B8A-42F7-BD06-7DDD815D6931} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {27A5B726-6347-48A3-B7D3-7AEA45154A91} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-01-07] (Microsoft Corporation)
Task: {27BE41A2-5A24-4D33-B726-827E4A3DD7C4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {28DDC7CC-BD99-4D2A-A5D0-F9BA7A743CD1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {2AE5353E-854A-4611-BC51-8E3AC71AFCF0} - System32\Tasks\ASUS\ASUS DigiVRM Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe [2011-04-13] (ASUSTeK Computer Inc.)
Task: {2F1D0625-961F-4F55-91ED-40AD19ECF901} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {30BEE786-6CA3-4E79-AEAC-D75537A4289F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {31ABFF3A-0816-4FFC-A498-A5E73454BC95} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {3494522B-7CBC-45FB-A67C-BBB40F7B05BF} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {401A4A46-D934-480C-A347-BD4C33AF42D7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {442FC306-51F9-46E8-A9D6-1930A9F03439} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] ()
Task: {48A5C1C3-8C3D-429E-8580-377B8C60F5C6} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {49AFB255-9B7A-4CCC-BFF5-C181529ACA44} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {62642132-45E7-432E-9BE2-0FD8645822C9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {6B17609A-8806-43BC-9DDD-6F14D100AB4F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {6B1EF064-9C89-45FC-B92D-CFD5906A4DA8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {78E2224C-38A1-4C2D-B814-64F3C4425572} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7A1941D0-9922-4415-A17B-DA7DF77A3E9D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7C2CAFE3-0620-4323-A91A-E5BB1C497437} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {8A444A29-556B-4DB3-8AC4-851999602328} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {8B0FB947-973B-4278-BDCB-A17326CF6CB1} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {93D365EE-6836-4129-9850-54E63B046707} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {A50BDAA4-ADAC-44CE-B47C-6713CC0B3F2D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-01-07] (Microsoft Corporation)
Task: {A5A215B3-BB5E-4E7E-BF35-ACFE6CA4E859} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
Task: {A5F789C5-059A-4B76-AD2D-F3A47B4AD4F9} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AA94E503-8025-4DCA-85FC-F83E24C06783} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {AB022AD2-A57B-45F0-A1EC-E1CFDF0D740E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AB25AD4B-C232-4A08-B7C8-03AB210B6339} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {AD9DE21A-C307-4179-B273-D437DAB4EE79} - System32\Tasks\ASUS\RC TweakIt Server Execute => C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe [2010-11-23] ()
Task: {AEAE6CEA-8F01-414A-85D4-A8396602CC89} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {B2CBE783-CDB5-4764-ACF9-DDF101DD5AC3} - System32\Tasks\{AC653496-26D6-4CC9-AEBA-70D26E613CD4} => D:\Spiele\Origin\Origin.exe [2015-11-17] (Electronic Arts)
Task: {BB27D39E-DA5F-4FD3-8007-5DF2507CD121} - System32\Tasks\{49224DBE-3D8B-4D89-9AC8-ED5CDF4329B9} => Firefox.exe hxxp://ui.skype.com/ui/0/7.12.0.101/de/go/help.faq.installer?LastError=1618
Task: {BE0FB550-83BE-4E30-8DFF-E5F99F00FCD9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {BE6DF6A0-056E-44E1-A997-C65EC27872E4} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {D74D8E30-D3B8-4380-AA87-2F848D7D7F18} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {DC376D96-7862-4D42-B235-85ECA17108AB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {DCB99DB9-5653-4EFC-AD16-76BD040D10A4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {DEB6AF7A-40AB-4B32-99F9-EBD7E1B9F569} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {DED0ACE7-2594-445E-B503-D20587C2DD3F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {E4B1F661-4E54-46C5-85AF-DB57CC760F16} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {E8E4F9D2-5003-4EB1-A875-0EA6CCF3F1F6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {EA18A1BC-0CA4-4046-AA47-9B11BC550895} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {ED25EB82-A2B5-43E3-90FC-AF29566CA575} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {FBB92958-364B-4CF0-8F30-DC4F3C2CE37F} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [2009-03-30] ()

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2010-12-02 03:15 - 2010-12-02 10:15 - 00915584 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
2011-02-21 14:26 - 2011-02-21 14:26 - 00570368 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
2010-06-13 23:16 - 2010-06-13 23:16 - 02765312 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtCore4.dll
2010-06-13 23:16 - 2010-06-13 23:16 - 00448512 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtXml4.dll
2010-06-13 23:31 - 2010-06-13 23:31 - 10373120 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtGui4.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00252928 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFCommon.dll
2010-06-13 23:17 - 2010-06-13 23:17 - 00919552 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtNetwork4.dll
2010-02-08 13:48 - 2010-02-08 13:48 - 00685568 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\qwt5.dll
2016-01-12 10:39 - 2016-01-07 06:13 - 00162472 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-05-11 07:58 - 2012-10-12 15:59 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-05-19 18:03 - 2015-05-19 18:56 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-11-16 22:14 - 2015-12-16 15:54 - 00126256 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-01-06 23:16 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-05-09 22:02 - 2010-11-23 14:43 - 00105088 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe
2009-03-30 07:32 - 2009-03-30 07:32 - 00032768 ____R () C:\Windows\DAODx.exe
2016-01-06 23:16 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-01-14 14:29 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-14 14:29 - 2016-01-05 02:24 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-06 23:16 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-01-06 23:16 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-14 14:29 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-14 14:29 - 2016-01-05 02:24 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-01-14 14:29 - 2016-01-05 02:26 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00699904 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
2011-02-21 14:26 - 2011-02-21 14:26 - 00571904 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modApplications.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00041984 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFeatures.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00030720 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFraps.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00142336 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modGraph.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00173056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modLCD.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00365056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNetwork.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00287744 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNpu.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00283136 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOptions.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00062976 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOverview.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00054784 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modPing.dll
2011-02-21 14:26 - 2011-02-21 14:26 - 00355328 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modSystemInfo.dll
2015-05-09 22:02 - 2011-05-03 08:50 - 01384064 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\GPU TweakIt Server\GPUTweakit.exe
2016-01-25 08:47 - 2016-01-25 08:47 - 09737216 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.25.22.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00218456 _____ () c:\windows\system32\WerEtw.dll
2015-05-11 07:58 - 2016-01-25 21:48 - 00037376 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2015-05-11 07:58 - 2012-10-12 15:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-05-09 22:02 - 2010-06-24 20:50 - 00094208 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\IccLibDll.dll
2015-05-11 07:39 - 2015-11-12 19:39 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-05-20 22:39 - 2011-03-04 16:33 - 00053248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2015-05-20 22:39 - 2009-05-21 09:14 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2015-05-09 22:21 - 1998-10-31 09:55 - 00005120 _____ () C:\Program Files (x86)\EXPERTool\TBManage.dll
2015-05-11 09:15 - 2015-11-10 20:55 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-05-11 09:15 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-05-11 09:15 - 2015-12-14 21:01 - 02547280 _____ () C:\Program Files (x86)\Steam\video.dll
2015-05-11 09:15 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-05-11 09:15 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-05-11 09:15 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-05-11 09:15 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-05-11 09:15 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-05-11 09:15 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-05-11 09:15 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-05-11 09:15 - 2015-12-14 21:01 - 00804432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-30 16:38 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-12-05 10:21 - 2015-12-05 10:21 - 00933056 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-05-09 21:43 - 2014-09-28 16:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2015-05-11 09:15 - 2015-11-17 01:31 - 47846176 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-05-09 22:02 - 2010-08-09 20:23 - 00175616 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\GPU TweakIt Server\ASUSSERVICE.DLL
2015-05-09 22:02 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\GPU TweakIt Server\pngio.dll
2015-05-11 07:55 - 2009-08-12 19:15 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2016-01-22 20:43 - 2016-01-07 14:33 - 01064104 _____ () C:\Program Files (x86)\Microsoft Office\Root\Office16\ADDINS\UmOutlookAddin.dll
2016-01-22 20:43 - 2016-01-22 20:43 - 00452776 _____ () C:\Program Files (x86)\Microsoft Office\root\Office16\msfad.dll
2016-01-22 20:43 - 2016-01-22 20:43 - 00149160 _____ () C:\Program Files (x86)\Microsoft Office\root\Office16\JitV.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-789052603-3400426100-2553791520-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{5EE1563B-9EBA-4064-BB59-5D1525DFAC5F}] => (Allow) D:\Spiele\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{1C39CCFA-1CA3-408A-A4EC-D8257FEEBF9F}] => (Allow) D:\Spiele\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [UDP Query User{D3B9C42A-71D5-4121-B6A3-5CAC842ED985}D:\spiele\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\spiele\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{2CB0BB1E-4CCA-4139-AAB5-3E49BF2780D4}D:\spiele\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\spiele\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{61DC7A11-AC30-4840-9062-029CC17B655D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BD1D1070-D0F9-47BC-9D60-2462F38109E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FBCEE563-E0F7-4915-BD34-C8BDC2D49B8B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{74EC3532-91A8-4295-81D4-5D53AB9D0421}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FD188B2F-188D-4E42-910E-BC517B993B07}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B3FD8F19-C38D-4A1F-A328-117C5DA0E18B}] => (Allow) D:\Spiele\Heroes of Might & Magic 6 Gold\Might & Magic Heroes VI.exe
FirewallRules: [{15EC995D-13CA-43A2-A3AC-C8E6F80F6008}] => (Allow) D:\Spiele\Heroes of Might & Magic 6 Gold\Might & Magic Heroes VI.exe
FirewallRules: [{55D98BD8-3AC6-4FA0-9770-E2569C4245EA}] => (Allow) D:\Spiele\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{6E1BB2F9-FBEA-4437-94CB-7A14D7F1FB15}] => (Allow) D:\Spiele\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{019E8FC8-DA18-4A14-AAFF-4E8B312E666F}] => (Allow) D:\Spiele\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{B5EEF990-D9BC-4C1E-ADE9-83C1EBBADF7F}] => (Allow) D:\Spiele\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{7337DF93-FE6F-45F8-BAFE-8F541714F985}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{BD8883BE-A555-494E-9610-A729EDC04E87}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5F106695-AED4-452C-8293-0249E453213E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{C1EE15A3-A0EA-4476-8CD5-B3DBCD84CCB2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A854612F-F99F-4616-82FC-97F89219A612}] => (Allow) D:\Spiele\Assassin's Creed III\AC3MP.exe
FirewallRules: [{41103AA7-8AB9-45AD-B107-B686475A429A}] => (Allow) D:\Spiele\Assassin's Creed III\AC3MP.exe
FirewallRules: [{89FB4268-98CC-40B6-A278-B7F9B7D6E02C}] => (Allow) D:\Spiele\Assassin's Creed III\AC3SP.exe
FirewallRules: [{400FE6FF-B5C3-45F1-A658-5058B881AF91}] => (Allow) D:\Spiele\Assassin's Creed III\AC3SP.exe
FirewallRules: [{B83BC3C3-DD68-4761-B052-F13F2E63A321}] => (Allow) D:\Spiele\Assassin's Creed Revelations\AssassinsCreedRevelations.exe
FirewallRules: [{301D13BC-E72A-404E-8F39-FAA58869F22E}] => (Allow) D:\Spiele\Assassin's Creed Revelations\AssassinsCreedRevelations.exe
FirewallRules: [{2E3F73A6-F357-4360-8D09-05499DBE120D}] => (Allow) D:\Spiele\Assassin's Creed Revelations\ACRMP.exe
FirewallRules: [{FE63C294-C17D-4EA3-8C1B-E39BCDE71C54}] => (Allow) D:\Spiele\Assassin's Creed Revelations\ACRMP.exe
FirewallRules: [{642690CF-08AD-4AF5-830D-214E594EEFCD}] => (Allow) D:\Spiele\Assassin's Creed Revelations\ACRSP.exe
FirewallRules: [{33C7D2DE-1659-4F55-892B-54B1CF9C0247}] => (Allow) D:\Spiele\Assassin's Creed Revelations\ACRSP.exe
FirewallRules: [{F1E86ED2-C65B-4CF2-BAE7-871C435D49FF}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{D3C71211-E527-417D-AA2C-FAC32578E5DA}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{59E9C5F2-89E0-4EAB-9646-939F1D047299}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{23FDE565-436A-4F1A-944F-D71555B35552}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{EBE9F974-3BE1-431E-AED3-64BA53092FE4}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{DC1F39C1-07EC-430E-8C72-32F3127CC28B}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{AC07FA5F-E06D-4CCC-8DFB-738FA7EE0CE4}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{5A25B5CC-CE50-46A4-8F40-BF5F472E46B8}] => (Allow) D:\Spiele\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{D91847F4-4CE6-4181-89EB-E8E7AAA4A59A}] => (Allow) D:\Spiele\Assassin's Creed II\UPlayBrowser.exe
FirewallRules: [{C1CC6B1E-F466-4ECD-BC83-257B234D8C45}] => (Allow) D:\Spiele\Assassin's Creed II\UPlayBrowser.exe
FirewallRules: [{356BD6D9-6C83-4998-ACA0-E4D1C920CFD1}] => (Allow) D:\Spiele\Assassin's Creed II\AssassinsCreedIIGame.exe
FirewallRules: [{A86A6106-C267-432B-BFFC-DED35A8FAC2D}] => (Allow) D:\Spiele\Assassin's Creed II\AssassinsCreedIIGame.exe
FirewallRules: [{AE6C1701-CA7F-42E8-B858-A6F8797F8057}] => (Allow) D:\Spiele\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{5831D829-D70E-4657-8A40-503FFFF4A24F}] => (Allow) D:\Spiele\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{5BA4C4C5-1ED9-4A1B-8ED6-3F3829202EB0}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{09264A91-E990-493D-BBD5-ABB7A620F511}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{9F0B3724-F8D0-4E83-8939-41313B2B8DBE}] => (Allow) D:\Spiele\Steam\SteamApps\common\Magic 2015\DotP_D15.exe
FirewallRules: [{B5F376FB-5AC8-48E4-8EEB-AEEB126D2B83}] => (Allow) D:\Spiele\Steam\SteamApps\common\Magic 2015\DotP_D15.exe
FirewallRules: [{C09C50BC-3408-4A09-93F4-8AC216D54BD1}] => (Allow) D:\Spiele\Assassin's Creed Unity\ACU.exe
FirewallRules: [{2E4DA7EE-17C9-487A-BC37-2AE1AEA31CCB}] => (Allow) D:\Spiele\Assassin's Creed Unity\ACU.exe
FirewallRules: [{E0E20AEB-F1E4-4F5D-8523-D72325F1C098}] => (Allow) C:\Users\Max\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{615696C2-57AE-47E0-9089-224D5B8FEF3D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D267024F-D778-4466-891C-E477543E85B4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{99765CC2-5DDA-43C3-B4EB-0658EB3C930F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9822F4B0-AD4B-4FEA-A889-8211E92A63B6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0AE9AC8E-4572-4078-91AB-44F5FDFD509A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8A0371B2-023F-4DEC-8857-C352ADA4832D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{02E3CC77-19E2-49A4-A4BC-A4E69E3C95E0}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{31594FD1-D62C-4380-B0D6-A1E3D125D01E}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [UDP Query User{0FE01771-8B83-4BBF-9B30-9974E94CFAF3}G:\01 vollversion\kaspersky antivirus 2015\kav15.0.2.361de-de.exe] => (Allow) G:\01 vollversion\kaspersky antivirus 2015\kav15.0.2.361de-de.exe
FirewallRules: [TCP Query User{D4E04BA9-1171-44E1-A251-3D8D4DE882C6}G:\01 vollversion\kaspersky antivirus 2015\kav15.0.2.361de-de.exe] => (Allow) G:\01 vollversion\kaspersky antivirus 2015\kav15.0.2.361de-de.exe
FirewallRules: [{67DB5046-0B11-41CE-B3BC-8A2E8B5570A8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{014324B0-8245-4C18-B956-87797ADE9EC3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{11E8E5DC-07DF-4B52-895D-AEFD2A680F85}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{61F6C582-DB70-4C86-A1ED-533F8E5AC90C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2EBCE735-4548-46FD-8066-EB3A67D16457}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3FC2842C-A5FD-4189-BCF9-BEDE57321644}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{27FD0FE5-7137-486E-871A-0376B5830EDD}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{A70EB2FE-6643-4B6B-AD77-AE83C4DB779F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{EFFA32A7-445E-4D1B-998D-6C2A591FDB2E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{13F37C78-41B5-40CF-AE73-1FC543FCD617}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8DF070CC-9822-4B3B-AE8A-B3FAB49A37E6}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{9FB63CB9-659C-416E-B930-E5531F500A7D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{9D9135B8-DA7F-4D16-8498-D908447D9DDB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{40CCCE66-EFF0-484E-A488-6A66640B5594}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [TCP Query User{164C16D1-590F-4910-82DB-73BEA0FC3CA6}D:\spiele\starcraft ii\versions\base38996\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [UDP Query User{D5AAB51D-7B52-4C59-A6CF-8D3EA43E599C}D:\spiele\starcraft ii\versions\base38996\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [{4D253661-7EC5-4D00-AC7B-EBFEF0FD300B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1729C2BF-0EB2-4F3F-A9D9-64B6081E3CBF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B942636E-F4F1-453F-BB0B-FAFF0F82FE2C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{52A59EBF-A980-41DA-A6ED-A961CF60F3DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4B872BB7-D949-41FD-8B7C-45A767A2F820}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A2952326-1625-4E94-841B-3CEC17CAB9EF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{FF968977-24F2-4196-A811-DCDB53F2CF4C}D:\spiele\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [UDP Query User{BD67EEBE-9ABB-49B7-9C98-620126E5AED0}D:\spiele\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii\versions\base39576\sc2_x64.exe

==================== Wiederherstellungspunkte =========================

24-11-2015 13:07:37 Windows Modules Installer
12-01-2016 10:41:22 Windows Update
18-01-2016 21:52:39 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/26/2016 10:52:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAX-HOME)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (01/26/2016 11:38:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AI Suite II.exe, Version: 2.0.0.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10586.0, Zeitstempel: 0x5632da1c
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x000bd8a8
ID des fehlerhaften Prozesses: 0x748
Startzeit der fehlerhaften Anwendung: 0xAI Suite II.exe0
Pfad der fehlerhaften Anwendung: AI Suite II.exe1
Pfad des fehlerhaften Moduls: AI Suite II.exe2
Berichtskennung: AI Suite II.exe3
Vollständiger Name des fehlerhaften Pakets: AI Suite II.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AI Suite II.exe5

Error: (01/26/2016 11:38:28 AM) (Source: aaHMSvc.exe) (EventID: 0) (User: )
Description: Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen

Error: (01/25/2016 09:38:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAX-HOME)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (01/25/2016 07:38:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAX-HOME)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (01/25/2016 08:42:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AI Suite II.exe, Version: 2.0.0.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10586.0, Zeitstempel: 0x5632da1c
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x000bd8a8
ID des fehlerhaften Prozesses: 0x2b78
Startzeit der fehlerhaften Anwendung: 0xAI Suite II.exe0
Pfad der fehlerhaften Anwendung: AI Suite II.exe1
Pfad des fehlerhaften Moduls: AI Suite II.exe2
Berichtskennung: AI Suite II.exe3
Vollständiger Name des fehlerhaften Pakets: AI Suite II.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AI Suite II.exe5

Error: (01/25/2016 08:42:06 AM) (Source: aaHMSvc.exe) (EventID: 0) (User: )
Description: Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen

Error: (01/22/2016 11:52:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAX-HOME)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (01/22/2016 11:00:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAX-HOME)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (01/22/2016 09:34:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAX-HOME)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


Systemfehler:
=============
Error: (01/26/2016 10:53:40 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Bigfoot Networks Killer Service erreicht.

Error: (01/26/2016 10:53:10 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Bigfoot Networks Killer Service erreicht.

Error: (01/26/2016 11:30:28 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Bigfoot Networks Killer Service erreicht.

Error: (01/26/2016 11:29:58 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Bigfoot Networks Killer Service erreicht.

Error: (01/25/2016 09:48:43 PM) (Source: DCOM) (EventID: 10010) (User: MAX-HOME)
Description: NLInternal.SharedRecoActivation

Error: (01/25/2016 09:48:39 PM) (Source: DCOM) (EventID: 10010) (User: MAX-HOME)
Description: {9A4948D9-13FC-4FAC-B60A-FBA6EE0FB11C}

Error: (01/25/2016 09:48:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_44fa9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/25/2016 09:48:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _44fa9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/25/2016 09:48:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_44fa9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/25/2016 09:48:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_44fa9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-01-22 20:50:01.062
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-01-19 15:26:44.894
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.831
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.763
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.694
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.632
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.563
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.474
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.391
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-19 15:26:44.311
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X6 1090T Processor
Prozentuale Nutzung des RAM: 35%
Installierter physikalischer RAM: 8152.27 MB
Verfügbarer physikalischer RAM: 5249.86 MB
Summe virtueller Speicher: 16344.27 MB
Verfügbarer virtueller Speicher: 12432 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:232.35 GB) (Free:169.57 GB) NTFS
Drive d: (Volume) (Fixed) (Total:1397.26 GB) (Free:366.7 GB) NTFS
Drive e: (Volume) (Fixed) (Total:1397.26 GB) (Free:1067.44 GB) NTFS
Drive f: (TREKSTOR) (Fixed) (Total:931.28 GB) (Free:575.74 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 3C9E6E82)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: 3263E2D0)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: A6BE31FE)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: 1A0D94EF)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=0C)

==================== Ende von Addition.txt ============================